Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Sa2UfPYmsXkz3scxy446KeDHEMw.roa
File: Sa2UfPYmsXkz3scxy446KeDHEMw.roa (raw, json)
Hash identifier: fOaUHYEmjoL+gdQVl8kcIvcIwUJzNVFTp0DLAEC49XY=
Subject key identifier: 49:AD:94:7C:F6:26:B1:79:33:DE:C7:31:CB:8E:3A:29:E0:C7:10:CC
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EC748AC9CAA7BB014B24F97B9DD3BBA54
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Sa2UfPYmsXkz3scxy446KeDHEMw.roa
Signing time: Wed 10 Apr 2024 09:13:32 +0000
ROA not before: Wed 10 Apr 2024 09:13:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 10 Apr 2024 10:04:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c7:48:ac:9c:aa:7b:b0:14:b2:4f:97:b9:dd:3b:ba:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 10 09:13:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=49ad947cf626b17933dec731cb8e3a29e0c710cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:b2:00:eb:ea:6b:e7:48:7b:8f:55:36:2c:16:
73:85:d0:ba:c8:39:bf:66:16:6d:4e:4c:6f:6f:a7:
18:40:d2:70:d0:86:ef:91:b0:e5:37:70:03:b8:d4:
b8:4e:b3:fb:b0:8d:f7:30:c1:94:15:fe:05:b5:af:
9e:4e:45:e8:a3:1a:f5:01:09:69:7c:cd:68:97:c1:
71:9a:c3:b0:e3:0b:49:a1:60:ff:ef:cd:2c:3f:6c:
e7:b6:91:80:ac:5a:18:53:68:ca:20:64:8d:ec:1a:
79:bd:64:c8:ed:9d:02:16:e3:4b:88:36:01:92:26:
bb:d6:96:15:fe:f5:2e:b8:d7:87:b1:6f:b3:08:c8:
f4:c0:1b:c3:fa:84:d4:18:43:90:99:0f:9b:b1:ea:
1b:7a:24:11:e8:5c:64:70:58:de:cb:24:e7:ce:2f:
2d:b8:68:d0:dd:96:5e:b9:4e:67:22:05:93:76:5f:
45:fb:b4:66:64:de:7d:17:64:35:f6:b7:ed:66:b2:
27:8d:9e:6a:eb:52:a8:07:93:fd:e3:1c:ba:b8:0f:
0a:48:7c:3c:8d:c5:64:21:98:9b:c7:8d:bb:31:90:
54:50:99:0d:88:09:5b:9e:16:9f:a2:b0:83:13:50:
99:23:5d:ce:12:9b:ef:82:37:85:41:dc:07:79:69:
17:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:AD:94:7C:F6:26:B1:79:33:DE:C7:31:CB:8E:3A:29:E0:C7:10:CC
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Sa2UfPYmsXkz3scxy446KeDHEMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
31:0a:2e:80:cb:a2:9e:39:ef:bb:b9:58:9f:d6:c9:34:f3:c1:
87:0b:54:4a:25:83:f7:6c:71:42:b2:d5:f1:9c:cd:e7:1d:2b:
6b:7a:ad:e1:dc:18:43:fc:75:5a:63:7b:b3:28:fe:a0:b1:b7:
ba:60:d1:88:d9:91:fa:0b:fe:e5:2f:69:d7:ac:92:f6:ba:f1:
be:32:4e:60:21:7f:f8:f9:e9:a5:a8:83:3c:fc:a5:2d:fa:63:
f9:2c:0d:69:88:f8:0a:08:50:75:21:eb:fb:17:98:4b:77:03:
f0:49:a1:98:75:9a:eb:13:25:75:e0:5b:c4:12:19:3c:5a:f9:
c1:5d:36:bb:42:dd:7e:57:17:0b:fc:77:1e:e1:30:73:ce:fb:
a1:ee:ab:c3:30:db:92:8e:3b:ff:8d:9e:7b:cc:fe:76:af:f1:
a4:a9:8b:6f:80:d8:4e:47:a5:3e:49:d7:eb:1b:13:7e:c3:70:
06:e9:50:c2:b1:09:78:11:c6:f9:33:71:ac:c4:ed:fe:1f:08:
18:86:ea:aa:2c:8f:69:91:51:7d:f1:6d:4c:01:61:e8:87:68:
76:56:24:e3:af:80:6c:cc:ee:25:77:06:7a:05:ea:f9:d2:c0:
cf:2b:8e:34:93:81:48:69:97:21:72:a8:5e:b7:51:bb:b3:05:
ee:66:12:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 10 16:17:31 2024 by rpki-client on console.sobornost.net