Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/QcIEqDNJSr_Jzmju4gFw2bD59cA.roa
File: QcIEqDNJSr_Jzmju4gFw2bD59cA.roa (raw, json)
Hash identifier: AvY061936Ja58zpJPCWYB88rxGSXUI6yFwQ8zsk2CoI=
Subject key identifier: 41:C2:04:A8:33:49:4A:BF:C9:CE:68:EE:E2:01:70:D9:B0:F9:F5:C0
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EAFABC6797F0408009EBD3348F9D0981F
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/QcIEqDNJSr_Jzmju4gFw2bD59cA.roa
Signing time: Fri 05 Apr 2024 19:10:53 +0000
ROA not before: Fri 05 Apr 2024 19:10:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 05 Apr 2024 20:04:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:af:ab:c6:79:7f:04:08:00:9e:bd:33:48:f9:d0:98:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 5 19:10:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=41c204a833494abfc9ce68eee20170d9b0f9f5c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:be:f3:ef:da:92:91:89:1d:86:a3:8c:d2:d8:
e8:8a:58:61:fb:be:b8:53:72:59:67:94:d3:e3:d9:
45:b7:62:15:60:ac:08:7b:29:68:9b:42:84:c0:8c:
b8:36:20:55:31:61:de:40:9a:af:f5:95:6a:e0:26:
d1:b6:9c:c8:0b:38:44:c9:29:d6:7e:39:11:4d:d5:
91:07:42:91:6d:85:80:35:69:50:c4:ed:a9:23:ca:
b1:57:e0:ea:f9:83:8c:3c:31:2f:44:d5:25:9c:13:
aa:52:5a:44:6a:99:16:05:85:52:76:7b:16:9b:1f:
be:4b:22:da:4d:98:16:1e:10:ff:fc:97:4b:52:47:
86:46:45:19:63:57:8c:f2:15:8a:99:e5:f2:32:83:
58:20:8c:9a:63:4f:81:7f:8d:14:38:07:ce:86:7b:
1a:2d:a8:66:5f:f5:0e:b1:cd:7b:35:f2:f1:ff:fa:
d2:70:6a:0f:33:90:96:09:eb:fd:99:de:1e:59:ee:
03:3d:2f:9e:56:b2:0b:47:28:1c:92:b1:de:f3:0b:
ee:a4:a4:9a:e2:5b:e3:9a:9b:d0:36:b8:17:12:a3:
79:3f:1e:56:07:ed:83:66:48:3a:7a:d8:1a:27:89:
2a:ad:22:84:5f:25:ac:93:36:1b:70:fd:e2:c3:d5:
64:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:C2:04:A8:33:49:4A:BF:C9:CE:68:EE:E2:01:70:D9:B0:F9:F5:C0
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/QcIEqDNJSr_Jzmju4gFw2bD59cA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
65:ac:b2:0e:a0:41:5e:08:82:1f:9d:23:28:49:da:28:d8:33:
66:fc:7a:9b:5e:4e:38:7d:ac:78:35:f4:7b:c8:86:69:27:1f:
9f:36:8f:54:0a:50:80:97:36:2b:66:2b:ba:b7:94:32:2a:f6:
49:6b:58:68:43:02:da:ec:42:b7:f2:46:1e:db:8e:9b:d2:06:
44:a2:38:36:3b:d7:92:e5:61:a0:56:f8:e4:04:04:f9:d3:53:
a8:aa:ff:1d:79:8e:4d:0a:34:f5:18:1e:10:f5:0b:b9:5f:e9:
81:97:f6:78:fb:b3:ff:fd:75:f4:5e:e6:68:fd:e2:5b:ef:72:
29:01:83:7f:ab:c5:9a:60:95:f0:5f:2d:3d:08:26:36:06:4e:
2c:a9:c3:64:81:80:8d:54:3e:7a:d4:9c:44:ba:99:4b:77:11:
01:f6:12:c6:72:04:a8:89:f8:5f:65:74:42:f1:2e:1e:0b:23:
bb:63:99:30:a6:7f:80:6e:0c:3d:c0:43:51:43:bc:04:6b:bf:
8a:3e:22:c5:7d:26:94:c2:9b:a0:1c:7c:e9:5e:00:26:00:5a:
d8:a9:ed:ac:6c:8b:ac:ed:f5:be:73:d7:5c:01:8f:32:1a:7e:
1d:bf:45:e0:59:ad:e2:c6:14:90:ec:bf:a5:ee:be:fd:cc:89:
5a:b8:8f:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 6 06:04:32 2024 by rpki-client on console.sobornost.net