Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/WoUixGOptfV_wMuxSODJJUyb8j4.roa
File: WoUixGOptfV_wMuxSODJJUyb8j4.roa (raw, json)
Hash identifier: qFgeolIZMIV6B1rkKh/HFgq1RrzbbS6UmMJjEFnIIjc=
Subject key identifier: 5A:85:22:C4:63:A9:B5:F5:7F:C0:CB:B1:48:E0:C9:25:4C:9B:F2:3E
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E2D0D2B0252D7A94EE21BFED810951511
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/WoUixGOptfV_wMuxSODJJUyb8j4.roa
Signing time: Mon 11 Mar 2024 10:27:01 +0000
ROA not before: Mon 11 Mar 2024 10:27:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
Validation: Failed, certificate revoked on Mon 11 Mar 2024 11:04:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:2d:0d:2b:02:52:d7:a9:4e:e2:1b:fe:d8:10:95:15:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 11 10:27:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a8522c463a9b5f57fc0cbb148e0c9254c9bf23e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3b:c0:21:52:bb:f6:23:39:fe:5e:c0:84:32:
1e:6b:c5:d1:cc:c2:52:99:da:44:67:8d:61:23:30:
fe:fc:29:17:fb:f0:be:03:d3:00:ae:4a:7e:9a:ce:
c6:71:2c:58:ce:fa:c6:ed:a8:82:93:21:0e:95:b0:
4d:1d:8d:27:88:82:26:cd:2c:52:41:7b:19:52:05:
2b:f8:f5:ec:28:aa:38:9b:2a:ec:88:15:0f:11:6f:
fb:12:bb:1b:ff:0e:19:ed:df:34:30:0f:31:8e:06:
5e:09:46:0f:3c:6a:b2:bd:63:76:42:9e:2d:f8:c4:
a6:13:aa:7a:b3:d6:8c:e6:9d:44:3d:8b:4a:2a:73:
4b:62:75:87:e2:90:78:4f:c1:61:d6:53:7f:60:f2:
aa:cf:0a:64:e0:92:f6:70:b7:75:66:c6:f2:71:52:
8b:72:ff:c7:39:38:8d:e5:97:c2:b9:04:8a:66:49:
42:c8:38:88:65:18:e6:ae:de:2a:39:1f:af:c4:d8:
7d:28:f1:c0:26:ca:7c:91:eb:56:e5:89:18:5b:4a:
c4:71:0e:a5:e9:a1:7f:92:ea:91:72:87:5e:c1:87:
bc:d5:18:04:84:a6:e9:7c:42:2e:83:3e:1c:86:1c:
a4:5b:fa:aa:f8:5c:e6:bf:a5:4c:5a:5c:2e:c7:fb:
fe:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:85:22:C4:63:A9:B5:F5:7F:C0:CB:B1:48:E0:C9:25:4C:9B:F2:3E
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/WoUixGOptfV_wMuxSODJJUyb8j4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
98:55:57:ef:c9:c6:81:3f:bf:16:a8:a0:94:e9:f5:7b:06:95:
78:a9:da:e9:e1:ba:f8:03:fd:a8:07:c9:5d:0d:cf:0c:e9:e2:
37:ca:22:42:15:a8:35:9a:dc:26:5d:62:bd:03:21:58:29:f7:
de:83:a9:d1:25:08:d6:e8:4a:a1:f3:c2:9d:1e:ed:2a:74:44:
2e:20:5b:ab:9c:7d:08:4d:ad:46:b7:4c:d4:80:e1:00:77:68:
c7:1b:f7:bd:e7:46:cd:88:c6:dc:17:e9:f6:e6:37:60:bf:03:
d6:26:f6:35:4f:18:48:9d:7a:51:f8:c7:4f:a4:14:5a:9d:0c:
a4:bc:5c:89:82:49:eb:42:cb:e7:a7:d2:81:eb:a6:13:f0:c9:
52:a0:a3:81:a3:15:0c:cc:d2:d0:fe:76:37:fa:d0:60:9b:d6:
23:04:e9:6c:ab:c2:2e:9d:92:d5:32:bb:fd:66:ff:19:3e:f2:
e6:91:b0:b8:55:88:ec:c3:ce:fd:34:40:ab:ef:0d:49:e5:03:
e4:02:e8:c1:fa:89:e8:d2:d1:a0:14:b6:65:d3:09:fc:9c:b3:
9b:b9:e6:88:82:55:8c:2d:93:65:0f:42:23:a4:63:e8:da:f5:
a9:b9:0f:e5:97:82:c3:a7:0f:c0:dd:78:f9:29:9e:25:74:a0:
08:de:60:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 11 17:50:04 2024 by rpki-client on console.sobornost.net