Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/JS0VJXI1_VTH3Tx7pMNgITI9fSs.roa
File: JS0VJXI1_VTH3Tx7pMNgITI9fSs.roa (raw, json)
Hash identifier: emiItVA+ASKZvRK+UWUMLTSOSeqr5MymnLOqy/C/MAg=
Subject key identifier: 25:2D:15:25:72:35:FD:54:C7:DD:3C:7B:A4:C3:60:21:32:3D:7D:2B
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018ED31585765D14D228BFF22C5DED83C029
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/JS0VJXI1_VTH3Tx7pMNgITI9fSs.roa
Signing time: Fri 12 Apr 2024 16:13:06 +0000
ROA not before: Fri 12 Apr 2024 16:13:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 12 Apr 2024 17:05:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d3:15:85:76:5d:14:d2:28:bf:f2:2c:5d:ed:83:c0:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 12 16:13:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=252d15257235fd54c7dd3c7ba4c36021323d7d2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:58:92:ce:30:63:12:90:be:ac:c5:4d:bd:1b:
b4:22:25:30:41:db:5f:52:e5:4b:06:54:ba:b2:54:
ea:bf:10:98:9a:55:93:b7:7f:9a:c9:47:33:2e:20:
ae:87:14:1e:43:c2:d7:bb:33:ef:8e:2c:0b:8b:e0:
78:23:d4:ac:ec:4b:03:25:0a:c3:22:49:1a:5a:79:
be:a0:cd:64:9b:04:25:2f:1e:04:08:79:22:89:68:
ed:28:62:22:22:c5:26:5c:62:01:99:8b:ef:2b:5b:
eb:42:fd:b0:ac:51:6b:9d:47:99:04:ef:50:94:7f:
1e:a5:cd:be:d5:06:b4:83:7d:a3:b0:8f:da:d9:85:
0a:dc:8a:e4:6f:54:7d:82:fb:18:89:ef:3a:f8:82:
96:c9:4b:9b:c9:18:f2:2f:af:15:3e:87:88:99:1e:
28:34:04:a4:32:5d:43:ba:6e:14:73:39:6c:fa:72:
94:c3:57:19:2b:65:81:80:d0:42:c6:87:97:77:06:
53:17:87:15:ab:53:a3:f4:cf:37:dc:d2:6c:8b:19:
c6:d4:e0:d3:23:e4:3c:58:d6:9f:f6:6b:6b:7a:90:
9a:83:09:4a:09:6b:2e:ee:72:99:1e:db:db:89:29:
06:2e:26:7b:27:a4:d0:42:da:83:33:3d:59:b4:6b:
da:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:2D:15:25:72:35:FD:54:C7:DD:3C:7B:A4:C3:60:21:32:3D:7D:2B
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/JS0VJXI1_VTH3Tx7pMNgITI9fSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a3:9f:80:0f:4d:71:74:ef:a5:25:e3:2c:b3:2d:30:80:6c:0c:
6c:2f:e6:9d:86:42:59:9b:6c:ce:8b:0a:63:64:07:2d:63:7d:
92:3a:85:1c:ef:27:f8:5e:42:f7:9a:4d:82:2a:35:f8:0e:b5:
9e:0f:18:af:49:f9:32:b5:9a:15:dc:f6:13:d4:87:60:b9:a7:
47:6a:a0:3e:ea:46:d9:cf:98:9b:cf:ef:02:a4:77:df:8d:09:
ef:3a:57:23:09:c7:e9:63:ee:1e:32:99:4b:57:12:46:19:8d:
25:d7:96:66:5d:c0:33:eb:86:3b:7f:72:b2:64:b9:1d:7d:9c:
79:0f:74:33:02:c4:12:cc:3c:9c:14:76:54:25:0a:f9:d5:7f:
3f:73:69:c7:a9:20:3b:03:d6:24:fe:cb:95:aa:7c:59:13:dc:
56:f2:a2:15:7b:68:4c:1c:1f:2f:50:e4:2a:22:2c:20:83:a9:
e5:d7:c3:31:d7:09:a5:9d:78:5c:61:04:55:b6:89:17:f5:27:
a0:55:ec:85:cb:ad:0a:9c:2c:1b:d2:05:9a:49:9b:a2:53:0a:
a5:ba:98:7f:db:1b:d1:b7:54:65:32:8f:79:5c:de:b8:e1:f2:
d0:66:c8:68:79:9b:ba:a9:83:28:99:65:47:36:2c:e6:bb:16:
31:22:50:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 22:55:24 2024 by rpki-client on console.sobornost.net