Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/PKUwrEptc2YdUydtvEeqisTO8Kk.roa
File: PKUwrEptc2YdUydtvEeqisTO8Kk.roa (raw, json)
Hash identifier: mfHh3ePeEsao3beOPJh33uilbns1tk9XUsSxtsokHBw=
Subject key identifier: 3C:A5:30:AC:4A:6D:73:66:1D:53:27:6D:BC:47:AA:8A:C4:CE:F0:A9
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E3D84EBD90E3CF202247B90E572EDD440
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/PKUwrEptc2YdUydtvEeqisTO8Kk.roa
Signing time: Thu 14 Mar 2024 15:11:45 +0000
ROA not before: Thu 14 Mar 2024 15:11:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
Validation: Failed, certificate revoked on Thu 14 Mar 2024 16:04:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3d:84:eb:d9:0e:3c:f2:02:24:7b:90:e5:72:ed:d4:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 14 15:11:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3ca530ac4a6d73661d53276dbc47aa8ac4cef0a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:43:d0:5b:2d:00:89:9a:ab:45:e8:ca:79:68:
e5:bf:43:90:5c:43:2b:7d:09:68:fc:98:1a:ee:c7:
fc:e1:f6:f8:57:a8:77:e4:99:f1:5f:de:8b:5b:bc:
cc:ef:dc:86:9d:4f:0b:72:20:d2:5b:51:f6:29:c4:
b1:3f:b0:60:ff:e6:46:91:7e:c1:2b:b0:9c:73:0a:
4f:51:ef:d4:8a:12:2d:ab:4f:3c:c4:0e:04:e1:96:
cf:44:b6:7d:92:f5:33:b3:fd:43:82:12:f8:e6:48:
9a:ab:0a:1b:89:dd:5b:5d:fa:7e:39:93:26:0f:d8:
bf:59:c4:86:15:92:5d:65:96:f5:02:90:63:2e:f3:
27:60:17:61:04:52:8c:29:e1:45:ac:2b:d9:ae:9a:
7d:ab:7f:a8:0d:92:04:d3:d3:55:6f:ab:c5:d7:4a:
98:dd:80:d6:e1:32:47:9f:74:f0:c2:0b:2d:52:93:
c9:ee:79:7a:0b:c8:4f:81:31:0b:63:df:f7:4c:49:
22:96:53:32:73:d3:d3:56:2d:4b:c1:c1:52:4a:31:
c8:7f:d7:ff:b5:6d:87:b5:03:82:aa:2b:9b:6a:6a:
ae:bb:3f:54:46:e5:2f:a9:c8:1d:77:e5:8a:cd:93:
d7:f3:e5:d4:95:65:a7:c1:df:ac:2c:46:fc:30:d1:
19:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:A5:30:AC:4A:6D:73:66:1D:53:27:6D:BC:47:AA:8A:C4:CE:F0:A9
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/PKUwrEptc2YdUydtvEeqisTO8Kk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
17:0f:d5:8c:72:42:bd:7e:6d:b9:2e:a4:21:5b:88:c6:6c:f6:
1e:e9:91:cd:54:5e:d7:5d:7b:69:5b:32:25:ea:7c:6e:05:0f:
00:c8:cd:4d:72:3f:f3:9b:fd:90:ec:36:9d:a1:a9:1a:b5:67:
9a:ac:b2:d6:18:bd:ad:6e:60:1c:4c:b1:0b:d3:9c:13:1a:40:
d1:78:46:84:cd:e8:0c:9e:a8:d6:62:e6:85:c8:f8:e2:1b:42:
56:25:16:cc:b6:12:a2:79:41:da:c9:86:04:71:69:ce:58:d9:
34:c1:68:53:09:fc:8c:df:ac:3b:79:57:ff:83:00:5f:69:26:
9e:03:75:fe:dc:92:71:06:89:0e:20:3d:73:3f:66:41:c5:71:
69:66:26:76:cd:83:da:84:87:bb:4b:09:e7:f8:f9:6f:da:24:
6e:f2:46:b3:bd:61:18:92:31:00:bd:cc:a3:59:5d:5d:0a:6d:
83:58:c7:7f:7e:0b:d6:b5:4c:68:3c:c4:de:1c:f5:5f:bf:88:
a3:15:43:35:7e:0b:7e:4a:c6:3a:c7:ba:34:fb:7d:81:5f:40:
35:6c:1c:a5:ec:80:e0:1c:e8:7b:67:76:8c:14:4d:f0:69:34:
a0:72:6f:e3:da:97:d6:37:13:57:85:8a:d9:a3:45:19:ee:c0:
a5:8e:d3:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 14 22:22:47 2024 by rpki-client on console.sobornost.net