Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Vt-80Glhm-_zNLmemLaUpgYxCtI.roa
File: Vt-80Glhm-_zNLmemLaUpgYxCtI.roa (raw, json)
Hash identifier: 6ssfIST5lf28h0wKtRrIJztmXz+hj9ETXP2PS0hx8gA=
Subject key identifier: 56:DF:BC:D0:69:61:9B:EF:F3:34:B9:9E:98:B6:94:A6:06:31:0A:D2
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E3111F8C6A48EC89C9EEE66E8BF98EE10
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Vt-80Glhm-_zNLmemLaUpgYxCtI.roa
Signing time: Tue 12 Mar 2024 05:10:45 +0000
ROA not before: Tue 12 Mar 2024 05:10:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
Validation: Failed, certificate revoked on Tue 12 Mar 2024 06:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:31:11:f8:c6:a4:8e:c8:9c:9e:ee:66:e8:bf:98:ee:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 12 05:10:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=56dfbcd069619beff334b99e98b694a606310ad2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:5e:4e:09:2b:2b:0b:6f:f0:51:36:53:01:a0:
b8:b6:bb:41:91:a6:08:b2:1c:ca:21:7c:63:f7:98:
fa:13:3b:e9:85:55:40:b9:54:51:4d:e9:b5:ef:a2:
b8:53:52:cd:3a:a4:6b:7b:53:57:53:83:24:aa:32:
2b:b4:aa:47:81:fd:fb:7c:69:03:68:e6:11:86:f3:
90:b1:b1:4d:40:97:f9:27:99:5d:6a:2a:0d:0c:4e:
59:1e:79:9c:15:dd:2b:2c:42:0d:d8:72:80:f9:c5:
92:12:33:77:e4:b6:08:9e:5e:ce:59:df:ca:7f:37:
06:22:e0:97:a1:11:74:c5:e3:97:32:50:96:d9:d0:
76:94:d2:ba:e7:04:10:e3:de:3b:69:15:55:71:ca:
c1:16:04:65:30:45:10:80:3e:38:e1:d0:83:17:df:
4f:89:ea:43:96:10:01:14:c6:5b:8d:d2:22:7a:8c:
ac:f8:9a:ed:91:b8:e3:90:25:d2:b3:bf:b6:5b:50:
2b:b6:0f:89:78:29:73:38:c1:f6:93:3c:59:4a:12:
ee:c1:a2:41:39:e1:76:07:32:78:f1:9a:0a:c8:4d:
7d:b3:b2:3f:f4:55:3b:e9:5e:83:36:68:ce:60:b8:
30:e6:eb:a6:45:b9:f3:7c:c5:0d:5a:09:24:87:bc:
fe:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:DF:BC:D0:69:61:9B:EF:F3:34:B9:9E:98:B6:94:A6:06:31:0A:D2
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Vt-80Glhm-_zNLmemLaUpgYxCtI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
8b:d3:5a:13:98:cd:58:30:4a:d1:88:d9:35:ae:d6:b4:e5:7c:
fc:d3:70:d0:bd:3c:99:50:52:84:5e:65:db:3c:92:e7:c3:93:
12:2b:00:4a:d0:c8:83:be:db:cb:75:f9:9d:ed:15:60:7b:a9:
f1:af:8f:1d:ab:6d:c2:30:02:14:24:77:60:1b:88:2b:74:4e:
90:15:fe:bd:a2:06:3f:24:ce:b5:5f:5b:ec:88:a9:e5:0a:27:
92:b9:e2:d4:0b:ea:73:ea:7d:dc:ff:48:d7:a1:de:b0:94:20:
cc:9d:9c:31:a7:6a:ab:5e:24:5f:e0:9a:9f:97:b6:1c:fd:be:
bf:90:dd:cc:ec:0c:22:b8:bc:aa:66:e0:cb:fd:12:f0:58:4f:
11:b8:c3:37:ed:ee:ba:25:7a:30:ad:4f:e3:02:fc:20:32:4a:
51:c7:af:03:ec:fb:8e:87:61:b3:da:3d:f5:f0:61:98:f8:9f:
2e:88:2b:5e:66:c2:98:b3:8f:4a:58:8f:99:a4:14:c1:da:56:
ae:76:5a:c9:3f:8e:2e:54:0c:c1:51:de:5b:49:d1:44:54:8d:
eb:c4:a3:14:de:90:70:23:ff:82:7d:1e:ae:72:70:a9:ff:cc:
18:91:df:d8:c1:99:1d:8f:b2:95:c9:c1:a5:be:a4:06:ec:42:
59:09:e6:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 12 11:44:21 2024 by rpki-client on console.sobornost.net