Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Q9kt1tgY-fh4DGTPUhevRjZmMLg.roa
File: Q9kt1tgY-fh4DGTPUhevRjZmMLg.roa (raw, json)
Hash identifier: 8JbTMSR9QZgFVlnnc3ysySETDdQWDHecMeIeaSJ7kqY=
Subject key identifier: 43:D9:2D:D6:D8:18:F9:F8:78:0C:64:CF:52:17:AF:46:36:66:30:B8
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CBC939818B6BEB770EC9585DA387D8483
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Q9kt1tgY-fh4DGTPUhevRjZmMLg.roa
Signing time: Sat 30 Dec 2023 21:13:58 +0000
ROA not before: Sat 30 Dec 2023 21:13:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:bc:93:98:18:b6:be:b7:70:ec:95:85:da:38:7d:84:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 30 21:13:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43d92dd6d818f9f8780c64cf5217af46366630b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d5:24:31:40:58:82:df:d8:89:0b:22:8d:25:
67:2b:86:1c:69:25:16:e1:ee:fd:57:f1:b9:23:60:
e3:99:02:c4:a5:d3:6d:4f:90:be:4a:c1:36:b8:5e:
3f:81:e7:51:d4:b1:46:a9:a7:d9:73:ac:a4:7a:9b:
ed:14:e5:12:e4:8b:2b:aa:b4:67:0c:27:52:e9:f2:
7f:0a:4b:7e:3b:21:26:5b:e6:81:17:43:20:c9:28:
ba:25:bd:38:ec:d8:9f:11:19:31:f8:fc:ce:36:65:
c4:7c:4e:83:6c:8e:b2:02:40:fc:3e:2f:9b:04:9e:
0b:42:4c:91:f8:dd:08:f7:9a:d8:e3:81:a1:8c:73:
6a:f4:fd:f1:ee:94:93:d6:e8:2b:a6:9f:47:3d:bb:
ac:dc:b3:3d:ad:fe:c1:c0:37:0a:a5:97:b2:57:2a:
c8:f9:87:bd:1d:88:5a:73:cd:91:54:ce:ec:51:3b:
fd:0f:00:a0:a1:83:1d:d5:2c:8e:0d:cf:28:55:e7:
39:5a:04:19:6c:dd:b3:17:33:a7:f7:6a:9b:c5:11:
3f:bc:99:5f:11:d6:ab:7d:57:d9:1b:58:45:f6:24:
1a:93:8e:cd:f2:12:fb:64:e3:f7:16:ce:db:51:69:
6a:99:88:49:7e:44:21:cf:10:54:d3:5d:59:61:f3:
ef:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:D9:2D:D6:D8:18:F9:F8:78:0C:64:CF:52:17:AF:46:36:66:30:B8
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Q9kt1tgY-fh4DGTPUhevRjZmMLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
0b:bf:9e:ac:57:2d:ef:c4:28:a1:b5:ec:93:50:15:74:43:38:
33:32:a1:34:8c:ce:86:46:46:21:44:0e:3e:9c:94:8a:c0:fe:
54:79:0f:ee:cb:03:d2:9a:43:21:45:8d:93:e6:da:1b:24:79:
c6:69:78:80:4e:fb:fa:87:e7:bc:81:92:10:f8:1f:b5:15:a5:
d7:1a:36:23:17:09:a9:a7:7a:b5:4a:89:ec:ac:ee:e2:a9:c7:
11:e8:a3:2a:47:7d:44:e1:c2:37:05:32:ff:c7:e4:c3:ee:39:
4e:19:c3:e5:b5:30:21:20:ac:ee:db:92:db:9e:4f:cd:d1:c4:
24:21:f9:2e:5c:fa:2d:bb:47:81:33:b8:bc:a0:cb:57:03:ac:
fd:04:e4:00:ef:d1:e1:48:44:a9:2e:57:5d:a9:bd:c1:07:62:
cc:2a:33:1c:8c:59:75:c1:48:b2:66:02:af:3b:13:37:e3:ea:
4c:b4:26:d4:e6:7b:53:39:c6:40:09:4f:2b:85:d9:e9:4f:8d:
08:0b:e4:90:cf:e2:e5:19:28:20:85:e1:a4:a6:30:8c:45:5c:
2a:86:84:e6:a8:0c:56:69:32:06:7e:0e:2e:0e:45:50:38:d5:
ba:06:09:7c:1d:c4:37:72:f4:db:5b:7e:99:b3:20:bd:b9:1b:
9b:5a:24:30
-----BEGIN CERTIFICATE-----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Generated at Sun Dec 31 00:20:10 2023 by rpki-client on console.sobornost.net