Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/PmFDRioe_UhxY_ZlQw7KG53igNU.roa
File: PmFDRioe_UhxY_ZlQw7KG53igNU.roa (raw, json)
Hash identifier: swaTab3SLn2o/s0QhZVJsiovqow291VAPeEvJ6bFrDw=
Subject key identifier: 3E:61:43:46:2A:1E:FD:48:71:63:F6:65:43:0E:CA:1B:9D:E2:80:D5
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018DF5D9CE285A11F9B0BF0A16A635AD88A3
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/PmFDRioe_UhxY_ZlQw7KG53igNU.roa
Signing time: Thu 29 Feb 2024 17:11:48 +0000
ROA not before: Thu 29 Feb 2024 17:11:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
Validation: Failed, certificate revoked on Thu 29 Feb 2024 18:04:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f5:d9:ce:28:5a:11:f9:b0:bf:0a:16:a6:35:ad:88:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Feb 29 17:11:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3e6143462a1efd487163f665430eca1b9de280d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ce:4f:46:16:dc:17:3d:c0:9a:92:b0:ff:62:
69:f6:5a:22:21:26:f8:d0:74:7d:10:49:40:ee:e1:
f5:48:3f:47:f2:bc:e4:c3:88:dd:a5:e1:e6:b9:37:
52:31:38:89:f6:8f:df:81:a8:0f:fc:0d:7d:72:0c:
a2:0b:d9:bb:4f:34:b6:59:c6:83:1f:20:f4:19:6f:
bf:1a:fe:b9:48:ca:2a:07:06:7f:cf:44:42:bd:c1:
8d:50:16:46:73:d7:29:cd:72:e8:19:65:7b:75:df:
e6:52:1d:1a:f7:f0:a1:cb:05:2f:8e:86:d8:ff:c2:
f6:27:85:62:76:3d:dd:b2:54:73:9a:d3:dd:76:9b:
63:7a:f2:af:a5:84:f3:0f:bb:d1:cc:f9:a9:73:7b:
ca:4a:60:c3:65:19:ea:3d:aa:b1:2e:cc:e8:b1:f3:
a2:16:25:8f:0e:64:ce:98:58:fe:c8:ca:60:f0:d2:
64:df:9e:a6:01:09:e5:e6:8e:94:1f:9b:ed:1b:e7:
5e:eb:70:6e:18:c1:63:00:bb:1c:ba:9e:a1:03:45:
3b:c9:3c:b7:5e:98:fe:b9:ee:49:e3:eb:b3:9d:b2:
72:39:bc:a7:60:e7:85:b2:9c:a9:30:bb:aa:f7:23:
ce:93:dc:8b:c8:e6:40:02:55:d3:cf:91:f8:11:ac:
37:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:61:43:46:2A:1E:FD:48:71:63:F6:65:43:0E:CA:1B:9D:E2:80:D5
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/PmFDRioe_UhxY_ZlQw7KG53igNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
31:3e:4d:bf:a0:52:d0:03:45:ef:24:a4:b3:cd:25:60:85:ec:
01:d0:af:06:09:f6:06:e7:38:f9:53:03:8c:fd:01:9e:90:21:
1d:65:ca:b0:b1:56:e5:06:5c:b9:77:40:90:55:cd:94:8f:21:
bb:bd:49:7f:19:0c:af:f6:e6:97:aa:4e:77:5a:eb:86:f5:a6:
d8:e2:d8:07:cc:55:28:c3:84:71:61:39:a3:9a:db:a5:da:4c:
f9:51:22:db:31:fd:1d:04:8f:af:01:b7:c2:92:cd:ac:40:f0:
b7:ec:84:a2:aa:b9:11:08:04:05:9a:05:85:a7:e6:59:e0:32:
d3:f1:28:83:ea:e7:41:01:33:09:f2:0c:c4:de:65:1b:ac:fb:
ed:6d:b6:2a:e1:02:4a:cd:cf:13:4b:b3:a3:3c:d9:50:78:71:
2b:57:40:e5:cf:3e:c3:b6:af:7c:6b:af:f2:ba:c0:0e:37:80:
f6:aa:d5:7a:8a:22:86:af:ca:22:12:98:20:8e:67:17:e9:07:
31:24:16:15:e8:60:53:5f:79:61:d3:0f:d5:41:0a:a3:02:5d:
63:87:02:24:c5:e3:38:07:e7:28:65:27:c1:2a:87:fc:83:b1:
e0:2d:b9:22:8b:5b:da:ad:3a:86:0c:d2:bf:eb:9f:25:9d:e9:
18:6f:cd:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 1 00:47:14 2024 by rpki-client on console.sobornost.net