Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Kn7aro0hrly0pS-Zcegv2UXV3L8.roa
File: Kn7aro0hrly0pS-Zcegv2UXV3L8.roa (raw, json)
Hash identifier: CuHVy8IrqLMHsbNEB4xM5nF+ircQJe/BH+R5Khsq+og=
Subject key identifier: 2A:7E:DA:AE:8D:21:AE:5C:B4:A5:2F:99:71:E8:2F:D9:45:D5:DC:BF
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CBDA5550D3BA7011170E8B9DC49A1792F
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Kn7aro0hrly0pS-Zcegv2UXV3L8.roa
Signing time: Sun 31 Dec 2023 02:12:58 +0000
ROA not before: Sun 31 Dec 2023 02:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:bd:a5:55:0d:3b:a7:01:11:70:e8:b9:dc:49:a1:79:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 31 02:12:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a7edaae8d21ae5cb4a52f9971e82fd945d5dcbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:39:c3:11:65:8d:e9:ca:f6:10:ab:aa:e8:15:
0a:b1:01:a1:c9:ee:09:04:d8:ea:67:36:2d:bc:4e:
49:89:7b:51:7f:b4:47:32:8e:06:37:a5:3f:e8:a1:
32:dd:f7:27:67:f8:47:2e:56:67:f9:f4:bf:09:3d:
aa:32:30:d5:d0:fa:da:e5:9b:d8:b8:73:9b:3e:b6:
ed:b9:88:e4:18:d6:f4:a1:ff:68:97:95:44:44:12:
80:55:1b:87:7a:50:03:eb:d3:0c:b8:1f:8b:35:6f:
e9:43:52:4a:9a:25:78:df:9e:1d:36:6d:a2:b1:39:
8a:c6:39:65:82:08:8e:8b:24:a4:81:00:25:84:af:
83:5d:8e:8e:68:31:96:c5:d5:d8:c0:58:93:a6:ea:
cf:0a:ab:9e:31:72:60:af:b8:9e:5d:5f:33:c0:de:
76:cf:47:2d:65:3b:de:22:f7:d3:98:80:15:1a:ed:
83:7b:25:72:03:79:b9:f7:06:89:fe:20:01:f8:05:
fa:4a:1f:0b:1e:2e:3c:ca:f3:07:d2:73:26:e8:a3:
92:64:a0:88:ac:e3:d1:c5:3c:09:31:5d:fe:ea:08:
e0:a4:83:08:99:c0:8f:8b:35:2b:a9:6a:f9:e0:83:
52:48:fb:85:53:4b:ba:fa:f0:b5:fa:eb:10:91:82:
1c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:7E:DA:AE:8D:21:AE:5C:B4:A5:2F:99:71:E8:2F:D9:45:D5:DC:BF
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Kn7aro0hrly0pS-Zcegv2UXV3L8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
71:93:bf:25:d5:69:47:7f:29:57:28:cc:67:a8:3c:c3:6e:5d:
5a:0f:92:fc:55:2b:9f:07:fc:2f:78:54:e2:1a:ba:44:7b:95:
30:12:02:fb:4d:44:76:2c:73:28:c6:dc:38:37:a4:c3:a5:b1:
8d:73:70:3b:08:70:e6:ca:2d:42:d3:c6:f4:ab:da:b4:5d:5c:
4c:14:7b:2a:5b:f7:07:8a:90:76:6b:8e:b4:33:96:23:49:04:
26:fe:26:ab:f9:f2:94:2c:1a:7d:9c:63:fb:f6:10:2c:46:a9:
58:59:57:fa:ae:5d:57:fa:24:34:7e:a7:54:85:3f:b6:43:66:
20:f0:1b:d4:59:1b:fe:94:4e:86:d0:a1:68:65:64:51:73:d1:
74:fe:3a:2e:ba:fc:5f:3f:0f:60:11:62:25:31:27:3c:22:75:
26:dd:9f:3c:f8:ae:d1:af:ae:0d:cb:cc:a3:0f:cc:64:5e:2a:
2d:f1:50:b0:a5:b4:63:11:e2:0d:24:60:ce:cf:ef:4a:a3:85:
11:af:6f:63:e3:04:1e:af:ff:9b:92:2b:93:cd:86:15:fd:08:
c7:51:22:4d:e2:39:ea:06:f5:95:57:58:e8:d9:9d:04:57:03:
9f:9f:ae:06:ff:38:d9:43:bd:67:4d:b2:98:48:ea:34:c7:b6:
84:8e:cb:89
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYy9pVUNO6cBEXDoudxJoXkvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjMxMjMxMDIxMjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYTdlZGFhZThkMjFhZTVjYjRhNTJmOTk3MWU4MmZkOTQ1ZDVkY2JmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgjnDEWWN6cr2EKuq6BUKsQGhye4J
BNjqZzYtvE5JiXtRf7RHMo4GN6U/6KEy3fcnZ/hHLlZn+fS/CT2qMjDV0Pra5ZvY
uHObPrbtuYjkGNb0of9ol5VERBKAVRuHelAD69MMuB+LNW/pQ1JKmiV4354dNm2i
sTmKxjllggiOiySkgQAlhK+DXY6OaDGWxdXYwFiTpurPCqueMXJgr7ieXV8zwN52
z0ctZTveIvfTmIAVGu2DeyVyA3m59waJ/iAB+AX6Sh8LHi48yvMH0nMm6KOSZKCI
rOPRxTwJMV3+6gjgpIMImcCPizUrqWr54INSSPuFU0u6+vC1+usQkYIcHQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFCp+2q6NIa5ctKUvmXHoL9lF1dy/MB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvS243YXJvMGhybHkwcFMtWmNlZ3YyVVhWM0w4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAHGTvyXVaUd/KVcozGeo
PMNuXVoPkvxVK58H/C94VOIaukR7lTASAvtNRHYscyjG3Dg3pMOlsY1zcDsIcObK
LULTxvSr2rRdXEwUeypb9weKkHZrjrQzliNJBCb+Jqv58pQsGn2cY/v2ECxGqVhZ
V/quXVf6JDR+p1SFP7ZDZiDwG9RZG/6UTobQoWhlZFFz0XT+Oi66/F8/D2ARYiUx
JzwidSbdnzz4rtGvrg3LzKMPzGReKi3xULCltGMR4g0kYM7P70qjhRGvb2PjBB6v
/5uSK5PNhhX9CMdRIk3iOeoG9ZVXWOjZnQRXA5+frgb/ONlDvWdNsphI6jTHtoSO
y4k=
Generated at Sun Dec 31 05:00:46 2023 by rpki-client on console.sobornost.net