Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/PaMQGT08z3zEciT445-lpbD8aBA.roa
File: PaMQGT08z3zEciT445-lpbD8aBA.roa (raw, json)
Hash identifier: 8rxPcHn5+DsHh4FCKNycVhZE/w4iJLRYAntsuP1avwM=
Subject key identifier: 3D:A3:10:19:3D:3C:CF:7C:C4:72:24:F8:E3:9F:A5:A5:B0:FC:68:10
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E80B22FB9505FDD87794F05E69697C492
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/PaMQGT08z3zEciT445-lpbD8aBA.roa
Signing time: Wed 27 Mar 2024 16:15:44 +0000
ROA not before: Wed 27 Mar 2024 16:15:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
2001:67c:64:ffff:0:18e:76c8:d5da/128 maxlen: 128
Validation: Failed, certificate revoked on Wed 27 Mar 2024 17:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:80:b2:2f:b9:50:5f:dd:87:79:4f:05:e6:96:97:c4:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 27 16:15:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3da310193d3ccf7cc47224f8e39fa5a5b0fc6810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:61:b8:f3:d6:a8:2c:e3:98:08:f7:bc:7d:80:
b8:76:f4:1d:de:8f:a5:2e:e2:6c:cf:c8:95:4c:14:
c2:d9:4d:b5:4e:74:bb:3c:7c:ad:ae:31:39:1c:a9:
2e:f9:89:6c:cc:71:95:66:55:a5:e4:da:d7:a8:42:
42:b4:60:40:95:31:78:20:8a:fe:b0:9d:b6:6b:5e:
f4:71:e0:dc:9e:ef:cc:37:a3:63:7d:07:c4:d6:a6:
85:f4:14:2d:a9:c3:42:44:ed:2c:ba:c1:8b:35:dc:
81:b0:c5:71:eb:54:27:3f:a9:60:df:65:ea:4c:89:
75:cf:2d:c8:d3:e7:93:9e:49:69:f4:e8:54:18:cf:
ae:5c:dc:e9:16:de:97:43:85:b8:fb:76:55:41:35:
87:b6:52:db:9a:4b:f8:61:5f:53:74:a2:d4:38:ba:
ae:00:e6:bc:41:d8:01:a8:b9:af:63:29:f0:3f:64:
4d:69:c8:51:cf:4e:16:1c:9b:7c:c5:6b:a8:be:eb:
66:e4:bb:53:41:ec:19:04:5d:83:46:93:9d:23:f3:
c3:fe:6d:c5:27:77:f4:07:3f:eb:02:34:2a:4b:3f:
3a:33:38:33:d0:f3:0a:cd:5e:46:5f:47:dc:bc:b0:
d6:1a:61:fa:5f:58:40:64:43:4d:78:5a:f1:90:18:
58:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:A3:10:19:3D:3C:CF:7C:C4:72:24:F8:E3:9F:A5:A5:B0:FC:68:10
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/PaMQGT08z3zEciT445-lpbD8aBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
92:56:26:d8:6e:b1:d5:9a:ad:4b:60:af:92:6f:5c:bd:aa:45:
d6:9f:35:76:85:73:f7:5a:2f:eb:bb:f7:0a:6d:cb:f8:a9:0b:
3f:41:00:0b:09:fc:91:cd:f5:5a:45:5d:81:14:20:e0:bd:3d:
c3:a7:c0:95:33:52:3b:89:27:ed:c1:f3:61:45:ad:c7:fb:16:
85:da:a4:72:d4:6c:d2:e0:21:ac:49:f1:76:f8:4c:32:f4:ec:
b3:22:32:5b:d0:84:dd:0e:7e:ed:eb:a8:2b:6d:c8:7b:96:fb:
3f:64:7a:a1:ff:29:28:25:9c:a4:71:d4:14:b0:85:ed:ae:0d:
00:8f:f5:a5:48:e9:6e:12:32:9a:9b:06:e2:49:f4:4e:80:e1:
e9:7a:e5:0c:78:b3:dd:f7:c9:07:33:f1:38:29:ff:68:4c:e1:
eb:06:7d:bc:40:99:97:af:35:b4:99:39:ed:1b:3f:47:e7:d8:
12:e3:cc:b4:b9:08:f6:18:d8:bd:76:a5:a1:c7:e3:42:76:bb:
4d:01:43:4b:1e:2e:68:0c:2f:e6:96:73:76:3d:03:92:51:2e:
57:1b:00:7c:c8:19:b5:b7:68:ea:6a:d8:c6:68:55:c1:5d:e2:
07:a9:5c:9c:a1:b5:ba:0a:97:01:34:b7:75:2c:ac:11:be:74:
db:eb:4c:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 27 23:44:26 2024 by rpki-client on console.sobornost.net