Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/YH7LMsxOdbADXZOLR2wOpj_ySck.roa
File: YH7LMsxOdbADXZOLR2wOpj_ySck.roa (raw, json)
Hash identifier: xKbzh6gUW2YIt54FQuC7orGBAaMxi4z8OxJApBm+0kc=
Subject key identifier: 60:7E:CB:32:CC:4E:75:B0:03:5D:93:8B:47:6C:0E:A6:3F:F2:49:C9
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CDC8E15300F0B99F4D0DE66BAC80CB45E
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/YH7LMsxOdbADXZOLR2wOpj_ySck.roa
Signing time: Sat 06 Jan 2024 02:15:48 +0000
ROA not before: Sat 06 Jan 2024 02:15:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:dc:8e:15:30:0f:0b:99:f4:d0:de:66:ba:c8:0c:b4:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 6 02:15:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=607ecb32cc4e75b0035d938b476c0ea63ff249c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:31:30:5a:cb:57:cd:0a:02:2c:65:be:dc:03:
02:b2:3f:93:3c:13:be:3f:ea:3c:04:17:85:d8:48:
d6:5f:73:25:fd:ad:4f:ad:35:bc:b6:6a:1d:1c:d9:
46:db:86:7e:11:ca:05:33:39:8b:4a:db:6a:6c:79:
fd:1d:02:e4:1d:b2:f8:1e:0d:59:a5:72:69:0f:6a:
3e:22:75:72:74:83:59:1d:b6:21:bd:93:e9:7f:f4:
e6:57:60:4b:b8:63:2f:5b:76:10:b3:ca:2b:06:cd:
c3:60:42:2c:a8:a5:2c:af:aa:25:d6:dd:cf:cd:5d:
e3:67:03:e2:bd:05:cf:3d:40:00:88:5f:85:b0:80:
6b:a4:c7:6f:49:96:52:b5:f7:99:40:65:30:1d:83:
31:8c:a9:de:3d:33:fd:15:08:96:a3:e7:04:cb:dc:
7b:95:d1:9e:b8:4c:b5:98:f5:a9:11:72:54:bb:5d:
f7:84:33:56:83:2c:2a:34:e5:b5:66:7b:26:fa:c5:
e0:5e:d0:da:7c:db:1b:72:42:e1:7b:96:fb:cd:76:
89:79:2d:9f:7b:c8:b7:b9:04:a7:3c:c8:c2:b4:fd:
b0:92:e5:f4:e6:1a:5e:fa:0d:49:7e:48:71:2e:ce:
47:b0:bd:93:34:6c:97:d2:3f:af:fc:3b:51:60:bc:
44:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:7E:CB:32:CC:4E:75:B0:03:5D:93:8B:47:6C:0E:A6:3F:F2:49:C9
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/YH7LMsxOdbADXZOLR2wOpj_ySck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
12:53:91:d7:a9:38:fd:02:00:85:1b:47:10:31:7f:84:38:00:
28:98:0e:51:4b:7a:73:ac:dc:e2:8f:5e:26:46:e3:69:5c:19:
7e:05:63:96:8f:49:fa:a0:69:8e:21:be:34:b9:aa:60:2d:b1:
4b:2b:34:d0:38:36:80:03:5f:c9:76:72:07:97:04:70:63:82:
78:d0:93:29:94:30:2c:92:df:7e:62:92:37:d6:7a:32:0a:d4:
16:9a:9f:3d:be:a1:f6:d7:b7:c5:d2:fb:74:c8:32:5c:6f:8a:
6a:7d:3e:af:60:68:74:89:2c:33:bd:46:5a:b1:3b:6c:d2:ea:
dd:46:a5:69:76:30:7a:89:ab:0a:3c:d6:67:34:9d:92:d3:46:
42:ae:f1:43:cb:d1:90:92:23:73:b4:07:ef:24:3a:56:c5:80:
7c:65:b7:ce:a6:bd:1e:63:e2:14:91:24:d5:94:a7:a2:34:3f:
19:7b:71:cb:35:66:17:dc:95:59:45:d8:62:6a:d7:fb:0f:88:
5a:fd:af:66:b5:4e:f5:de:f1:35:46:63:73:14:1c:60:6b:4f:
b3:31:89:c8:b3:bc:ca:31:a0:e7:1d:b1:c0:5d:5a:8c:de:15:
6f:60:23:f5:43:82:f0:91:e2:30:c1:0b:e9:3e:b3:42:da:36:
bb:ef:45:28
-----BEGIN CERTIFICATE-----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Generated at Sat Jan 6 06:00:55 2024 by rpki-client on console.sobornost.net