Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/J1DwcePu1JhYUEeemipar9Ssods.roa
File: J1DwcePu1JhYUEeemipar9Ssods.roa (raw, json)
Hash identifier: +qdhR1ODvLYEqMPydLfPeeYyqfat3aiY/Q3t+jerJPA=
Subject key identifier: 27:50:F0:71:E3:EE:D4:98:58:50:47:9E:9A:2A:5A:AF:D4:AC:A1:DB
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CB91C71DA5F06D1012203FCA110E12653
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/J1DwcePu1JhYUEeemipar9Ssods.roa
Signing time: Sat 30 Dec 2023 05:04:58 +0000
ROA not before: Sat 30 Dec 2023 05:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18c:b91b:e091/128 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b9:1c:71:da:5f:06:d1:01:22:03:fc:a1:10:e1:26:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 30 05:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2750f071e3eed4985850479e9a2a5aafd4aca1db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:de:68:ae:09:44:b9:90:01:53:0e:15:ea:de:
73:20:bf:54:5a:13:6e:40:3d:b0:c2:7e:92:bf:1e:
b4:a5:6b:32:e2:74:45:1f:04:07:29:4f:bd:ca:c5:
4c:fa:f7:e6:81:c3:d0:76:45:0a:80:dd:2d:6b:f4:
4a:73:33:37:94:35:eb:a7:bb:ea:8d:52:57:c4:19:
dd:ad:51:62:04:69:ed:9c:59:3e:28:34:c2:e1:fe:
85:51:de:5d:6e:a2:7a:57:ce:34:77:93:e5:51:2c:
6e:36:20:36:18:ff:05:06:ad:9b:3f:80:9f:74:68:
69:94:30:60:1c:ac:2f:d4:92:56:3c:66:24:48:88:
30:16:b4:0c:78:6d:1c:d2:24:8e:5a:42:65:f6:7f:
60:1e:c8:6c:7c:84:ea:fd:14:69:e1:91:3c:c3:c3:
19:71:69:ef:1b:31:2d:0e:6b:22:f0:bb:ad:ad:e1:
b0:77:52:f4:ab:ac:82:0e:f9:0d:5a:88:48:f2:70:
68:12:e8:2f:43:74:2a:a2:6f:13:cc:30:35:a6:7a:
fe:f2:88:9a:3c:ea:b1:9b:9f:50:25:50:74:c7:9d:
43:89:0a:15:0c:a1:ef:34:f8:2a:4e:f5:18:f1:a2:
68:39:ed:9e:f9:d3:7d:5e:e6:3f:18:4b:fb:dc:d3:
a9:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:50:F0:71:E3:EE:D4:98:58:50:47:9E:9A:2A:5A:AF:D4:AC:A1:DB
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/J1DwcePu1JhYUEeemipar9Ssods.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
61:b9:5d:77:0e:e3:0e:8a:46:f3:81:08:bd:24:0c:0c:3b:2f:
9e:f3:33:0c:1f:f8:19:8a:98:a6:84:e5:14:2a:86:97:67:3f:
d4:61:90:06:af:a6:53:27:d1:49:a5:dd:90:4c:4e:95:23:3a:
8b:04:56:4d:bc:29:0f:fa:17:30:91:ab:45:04:51:a9:f4:32:
cc:85:d6:cd:11:50:5c:c1:3d:35:54:7c:56:49:f1:12:68:ff:
5a:5b:92:24:9c:47:67:f3:6e:53:ee:c5:af:83:28:73:f5:a8:
35:f5:82:3e:f3:f6:3d:0a:ae:9e:c4:e2:ee:45:7f:0b:8b:1a:
ab:b1:28:e4:ff:77:ea:66:52:fd:c8:23:2b:d1:a9:50:8e:09:
10:f1:0c:6c:b8:47:9e:f8:94:c7:96:b5:02:b4:0d:e1:74:c8:
32:cc:93:10:fe:45:f5:03:25:cb:f3:f7:f9:07:d8:90:15:ab:
bd:2d:c6:7a:a9:c0:6f:3a:8e:4e:a0:4e:5a:ee:a2:9b:5d:92:
a2:69:1b:62:e2:70:06:96:8c:c7:af:35:e4:2e:8c:23:85:ee:
d1:3c:03:65:5a:32:03:bc:8a:47:a9:60:a6:e3:32:7b:6f:e2:
1c:31:f0:b3:85:c8:a3:71:c5:d7:3d:11:3d:8b:c5:11:f7:bd:
69:5d:94:74
-----BEGIN CERTIFICATE-----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Generated at Sat Dec 30 07:40:10 2023 by rpki-client on console.sobornost.net