Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Uq_qGJpu3GJOk14jDSgglERgKRg.roa
File: Uq_qGJpu3GJOk14jDSgglERgKRg.roa (raw, json)
Hash identifier: 9ruJt8ADxl7ayFkMLGUxIiNAuep6+fYGzQ05iZCn34Y=
Subject key identifier: 52:AF:EA:18:9A:6E:DC:62:4E:93:5E:23:0D:28:20:94:44:60:29:18
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CCBCDE7BF50D234D71D3FCBDA702358F7
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Uq_qGJpu3GJOk14jDSgglERgKRg.roa
Signing time: Tue 02 Jan 2024 20:11:58 +0000
ROA not before: Tue 02 Jan 2024 20:11:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:cb:cd:e7:bf:50:d2:34:d7:1d:3f:cb:da:70:23:58:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 2 20:11:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52afea189a6edc624e935e230d28209444602918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:db:5e:77:85:da:66:72:5c:17:b0:2f:43:b7:
92:b2:ef:7e:ea:d8:9b:4c:12:b2:26:98:fe:4a:65:
f9:0d:f6:85:cb:9e:c7:28:98:49:47:54:a3:c4:71:
25:f8:fd:0c:d5:44:7f:64:83:2d:e9:d6:18:d0:96:
3b:ed:0a:94:f0:06:69:c9:12:b2:6c:2c:38:30:f9:
65:89:30:22:5a:99:fe:3e:38:42:0f:60:c1:03:52:
b7:b6:1d:df:d3:73:e7:8f:2b:1e:80:31:e4:4d:1e:
93:63:0d:1d:d5:d9:f4:9a:66:69:19:73:91:3c:03:
ef:47:23:06:38:d5:ca:fa:04:8b:46:cf:fd:fc:24:
5e:cf:78:46:e8:76:ba:b5:a1:4f:05:64:94:12:22:
2f:15:51:6c:b9:13:a2:17:e8:d7:1f:bd:9e:5b:02:
3d:48:70:df:83:16:7b:e0:2b:ce:fc:8d:32:50:03:
f9:02:d2:c9:34:57:9b:b5:b9:fe:a3:1c:66:86:85:
af:31:7b:25:3c:9f:c8:11:5e:44:8c:43:ce:b8:08:
d0:f6:1f:67:e6:df:cc:11:4a:c9:da:45:70:2e:b8:
19:03:d7:68:ba:2b:da:8d:25:70:1c:ff:68:98:d6:
c5:9a:5f:8c:ac:56:c7:13:1a:81:9b:5f:0c:07:00:
32:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:AF:EA:18:9A:6E:DC:62:4E:93:5E:23:0D:28:20:94:44:60:29:18
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Uq_qGJpu3GJOk14jDSgglERgKRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
6f:b1:9b:d5:e8:89:56:64:51:99:3e:05:ca:50:77:2a:6f:31:
f6:27:dd:3e:f3:2a:b5:e4:85:83:c2:57:6a:32:2f:a1:d1:3c:
3d:81:df:d8:d1:62:34:f6:d8:d5:d0:6d:ad:e4:fb:0a:ea:59:
94:89:33:87:40:eb:bd:87:6b:60:69:b7:cd:b7:3f:58:4a:12:
16:37:6e:88:25:6a:4f:77:f4:71:b0:8f:69:8f:09:5a:c1:6d:
0a:a3:3c:b8:60:98:d7:af:d8:15:a4:10:0b:a6:b2:91:fa:f4:
f9:d2:5c:54:66:85:f5:ef:ce:00:fd:ce:3b:8c:2b:bb:8e:89:
30:ae:d4:d3:b4:ca:09:39:6e:29:e1:a1:8b:c0:d6:ff:e7:e0:
12:1d:94:49:cd:64:a0:1d:4a:11:5d:90:e4:b7:0a:3e:30:21:
4e:4e:63:1d:5f:fc:74:e6:46:94:ae:5a:e6:82:ad:65:4c:e3:
f0:b5:ba:b2:ea:bb:cb:bc:87:bc:b8:81:53:63:c3:7e:0e:6c:
e0:6e:1a:b1:44:d0:38:b2:4b:13:4f:63:13:5b:6c:4d:b3:09:
6a:79:87:8b:f2:42:b6:22:8a:c4:e7:d9:e8:05:20:67:27:b7:
0d:04:c9:af:cd:c7:41:ad:1b:74:c6:73:79:51:14:ca:25:95:
cf:48:40:0d
-----BEGIN CERTIFICATE-----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Generated at Wed Jan 3 00:13:51 2024 by rpki-client on console.sobornost.net