Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/SK0AkDZCu-EvJQsz7lsZhpd1iTI.roa
File: SK0AkDZCu-EvJQsz7lsZhpd1iTI.roa (raw, json)
Hash identifier: Q5C1VTc2EQYkEpkUQ1l31iDuOnzNjRPldD8wXoHA8Lg=
Subject key identifier: 48:AD:00:90:36:42:BB:E1:2F:25:0B:33:EE:5B:19:86:97:75:89:32
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018ED23AB6216CB2BFBB571DD253F0B595F3
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/SK0AkDZCu-EvJQsz7lsZhpd1iTI.roa
Signing time: Fri 12 Apr 2024 12:14:06 +0000
ROA not before: Fri 12 Apr 2024 12:14:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 12 Apr 2024 13:05:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d2:3a:b6:21:6c:b2:bf:bb:57:1d:d2:53:f0:b5:95:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 12 12:14:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=48ad00903642bbe12f250b33ee5b198697758932
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:cb:7c:d7:07:8f:fc:d4:18:27:c8:d0:d3:29:
ab:f6:6e:5d:04:92:bd:bb:65:38:22:3b:c1:52:6b:
ff:52:14:47:75:29:ad:fc:b6:eb:f7:14:f2:2b:7d:
cd:92:b0:59:84:60:a9:e0:45:60:7f:3e:d3:0c:1d:
99:d2:42:aa:31:2e:73:43:5f:c1:7c:50:18:30:e7:
0d:b4:c1:80:0d:4e:6a:e9:8d:cd:da:0d:9c:ce:49:
7d:00:99:98:6a:e5:bb:e3:80:9a:82:52:ed:72:86:
c0:1d:e1:b5:00:8c:5e:77:1d:5f:d4:50:2f:20:e7:
76:55:24:fe:83:cd:99:eb:1f:cf:31:46:84:6f:dd:
26:b0:d4:05:02:c1:72:f6:65:af:c9:a2:52:40:a3:
c0:0a:58:a6:26:25:e3:91:ef:3d:44:93:38:bc:18:
2b:38:6b:4a:73:cc:40:8e:26:d7:3b:d8:f0:92:80:
29:87:7e:c9:68:2f:63:00:68:53:33:a1:90:2d:3b:
13:10:ba:97:40:ca:ec:04:dc:7c:0d:df:a9:d3:de:
ca:1b:09:bb:22:b5:7e:86:6c:a7:00:84:1a:47:03:
fc:b3:a7:01:96:26:78:6c:5f:c0:4d:1a:ad:b1:11:
56:9f:46:a6:55:bb:29:7b:fb:06:14:46:7e:b4:fe:
5c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:AD:00:90:36:42:BB:E1:2F:25:0B:33:EE:5B:19:86:97:75:89:32
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/SK0AkDZCu-EvJQsz7lsZhpd1iTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
4f:00:09:dd:bb:f9:b0:1c:1e:0b:5b:1c:06:d7:8f:bc:9a:a2:
5e:ea:bc:c5:21:43:17:c6:f4:bc:85:f7:6a:8c:99:26:5e:15:
c2:08:e5:b9:f7:e6:2d:68:69:3b:9c:bf:4e:dd:a7:24:4c:21:
0d:86:60:a4:38:82:d0:c8:c4:a7:f7:30:8e:9b:c2:a6:e6:40:
ba:27:f6:e6:36:23:87:af:b0:71:5a:a0:e0:a8:38:23:ab:8e:
64:10:34:99:05:82:ce:ad:15:a0:d9:03:1b:08:83:9d:79:89:
15:db:aa:ba:f2:84:9c:77:44:b4:39:38:4b:9d:51:b9:2a:ae:
5f:8e:5f:5b:e8:69:a1:f2:a9:25:79:a3:bf:69:bb:13:cb:f3:
3e:ea:3b:9d:61:e8:f2:bd:ba:e2:fb:35:b6:70:ba:37:67:96:
eb:81:8e:2e:16:c3:45:6e:27:07:13:31:78:ea:fa:22:0d:d4:
95:f6:3f:31:ed:ac:5c:8e:9a:d3:03:6b:cd:16:0b:19:35:94:
0d:77:9b:d4:27:69:27:bd:50:af:b6:f9:18:da:d7:2e:75:6a:
c2:eb:63:91:a1:31:97:3e:66:34:34:ea:af:19:b9:71:b3:cc:
58:76:f4:9c:16:89:60:8a:7f:2f:bb:83:89:30:44:f9:08:fa:
d7:cd:a9:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 19:51:37 2024 by rpki-client on console.sobornost.net