Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/REuz-Ye2Si_uBI-y6_EhmwwuVLQ.roa
File: REuz-Ye2Si_uBI-y6_EhmwwuVLQ.roa (raw, json)
Hash identifier: B2uQnOCdh5IUMdON7Je6UdztFtXqrQ4lP1VviSDD0Vo=
Subject key identifier: 44:4B:B3:F9:87:B6:4A:2F:EE:04:8F:B2:EB:F1:21:9B:0C:2E:54:B4
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CB2AC7E87435E1704FA59432715769CD1
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/REuz-Ye2Si_uBI-y6_EhmwwuVLQ.roa
Signing time: Thu 28 Dec 2023 23:04:58 +0000
ROA not before: Thu 28 Dec 2023 23:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18c:b2ab:df88/128 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b2:ac:7e:87:43:5e:17:04:fa:59:43:27:15:76:9c:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 28 23:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=444bb3f987b64a2fee048fb2ebf1219b0c2e54b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ef:19:cb:bd:73:51:0e:2e:0b:0c:99:12:5f:
54:bc:b4:4e:66:46:03:c3:0e:64:96:ff:73:08:07:
80:f8:91:95:50:a7:a2:38:85:49:f3:09:bb:2c:3d:
6f:f8:24:cb:d0:42:72:b9:f1:62:64:01:f7:b8:f4:
04:4b:53:f4:f1:5a:b4:ac:dc:b1:6e:ef:3d:98:39:
f4:f7:9a:04:f9:fc:50:3e:30:79:94:7a:c7:4e:de:
19:68:72:c6:1a:96:56:aa:04:ac:06:43:a1:ed:96:
7e:56:73:06:7d:81:03:98:91:30:b3:15:5e:8c:af:
16:9a:c3:52:7e:0c:b3:eb:38:48:1a:b5:c9:85:c9:
8f:6b:df:46:4f:fe:35:2e:5b:8e:e6:f0:ac:9f:44:
35:22:f9:1e:a7:01:12:e9:01:ba:91:87:19:5f:64:
7e:f8:8b:1f:00:ea:1c:c3:3e:30:ac:16:a6:7a:81:
96:43:bd:31:aa:99:3b:9d:da:04:80:b1:87:38:42:
15:dd:b6:61:c3:ea:cc:51:9c:7a:72:19:92:b8:77:
56:39:57:e6:46:fa:38:e1:e1:fb:54:86:74:6e:a7:
8b:91:82:6d:a0:1a:c7:85:be:62:2b:fc:bd:08:a6:
36:57:80:c2:b9:b0:fa:72:ea:aa:4d:ce:f0:0b:0f:
8e:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:4B:B3:F9:87:B6:4A:2F:EE:04:8F:B2:EB:F1:21:9B:0C:2E:54:B4
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/REuz-Ye2Si_uBI-y6_EhmwwuVLQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
a4:42:43:05:a0:0b:af:02:b0:b9:00:4d:7a:8e:75:25:3a:97:
b0:90:de:43:a9:56:9f:7e:16:27:50:92:38:e0:25:60:65:11:
1e:67:4b:78:09:f8:5b:f8:cf:e9:e7:7d:63:d3:70:3a:7a:f4:
bd:69:bd:f2:f9:0e:ef:c7:95:7a:00:fe:8c:99:7a:aa:71:e6:
f6:1a:8b:f6:8c:c6:07:99:c4:74:18:95:9b:04:09:b6:73:57:
d6:59:3d:0e:c8:6b:0f:17:40:b5:23:a9:66:06:3a:2d:69:cc:
6c:77:b1:4d:08:b8:83:3d:2e:73:84:93:93:67:7e:b5:58:c3:
f8:51:c6:80:b2:7b:e4:79:c5:9b:d9:1f:f5:7a:a2:9a:45:51:
79:e2:f9:09:93:b0:99:c4:0b:37:f0:f5:fc:68:b5:c4:4a:c2:
1b:4f:d0:9d:a6:8a:09:37:2e:70:12:ed:2d:bb:55:c8:e3:0b:
d5:a9:65:88:7b:f8:7e:b7:e8:c6:c5:b2:28:10:7f:b6:c4:93:
73:7b:16:97:47:b2:a6:1d:d5:19:71:20:fc:2a:40:8f:2d:e5:
7f:4a:fe:ee:04:b7:ba:ff:a6:9c:7f:b5:1f:00:47:87:18:dc:
6d:f0:b9:8a:98:23:b1:b5:ab:16:87:e1:5f:b9:bc:d7:59:1d:
f8:11:54:f6
-----BEGIN CERTIFICATE-----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Generated at Fri Dec 29 01:39:41 2023 by rpki-client on console.sobornost.net