Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Yqr69ovXO9GDjgl8Lml-Y9uHYzw.roa
File: Yqr69ovXO9GDjgl8Lml-Y9uHYzw.roa (raw, json)
Hash identifier: ForciZpTmwxkr1gPEOSj4+bPSZPMB53uqX73xdQZnCk=
Subject key identifier: 62:AA:FA:F6:8B:D7:3B:D1:83:8E:09:7C:2E:69:7E:63:DB:87:63:3C
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CAED0A4B57737ACE87A5521EC041ABA13
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Yqr69ovXO9GDjgl8Lml-Y9uHYzw.roa
Signing time: Thu 28 Dec 2023 05:05:58 +0000
ROA not before: Thu 28 Dec 2023 05:05:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18c:aecf:c142/128 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ae:d0:a4:b5:77:37:ac:e8:7a:55:21:ec:04:1a:ba:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 28 05:05:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62aafaf68bd73bd1838e097c2e697e63db87633c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:f1:75:9d:fa:5a:b2:aa:eb:6e:37:d0:e0:f7:
04:b9:fd:f8:a4:f8:2f:8b:a4:58:19:74:2f:bb:c3:
a9:7d:c9:81:b2:86:06:18:9b:f6:88:19:65:2d:06:
ad:b7:6f:94:a3:89:1c:dd:eb:1b:9a:8b:eb:ac:92:
f7:24:d1:78:5c:3b:69:88:63:e5:c9:8d:36:85:91:
34:19:0e:f0:57:53:be:da:34:ac:68:4f:02:0d:8f:
b4:2b:14:d6:72:d9:53:e8:9e:d1:54:5a:6e:d7:a9:
a4:b7:df:48:67:b8:6b:11:9f:4d:26:30:32:c6:8c:
d4:fc:dd:2a:77:7a:9e:11:50:f6:6c:73:d4:41:7e:
9b:41:78:6d:1d:18:6b:39:c6:b2:f2:95:48:8f:55:
59:bb:68:a9:d6:aa:76:84:93:e6:5b:24:6d:e5:9b:
73:5d:34:a4:5b:64:a6:49:7a:76:e3:eb:a9:c9:50:
76:f6:8d:09:de:e5:40:e2:a2:36:ab:58:16:1d:0e:
c9:08:2d:b6:dd:bb:89:a5:42:10:cb:d6:1f:3a:3e:
67:a6:87:d9:cb:2d:e6:26:e4:84:e9:ba:30:bd:e4:
01:e5:2f:1b:f0:11:0f:2d:5a:97:38:d0:3b:b2:9b:
fc:85:f5:08:16:c3:df:db:48:dd:55:13:08:60:f4:
c1:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:AA:FA:F6:8B:D7:3B:D1:83:8E:09:7C:2E:69:7E:63:DB:87:63:3C
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/Yqr69ovXO9GDjgl8Lml-Y9uHYzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
14:ee:04:b6:7b:ef:f4:28:10:a5:e0:91:a2:e5:cc:31:d8:d7:
e1:e5:e4:b2:3d:12:71:34:a4:b4:83:bc:08:8a:d2:59:36:d0:
a7:e3:ff:99:80:61:1f:e4:3c:f6:ee:a8:27:a0:43:85:ba:15:
04:a7:40:d0:d7:b3:53:72:5c:43:3d:35:4a:14:d1:b9:5b:44:
cb:cc:43:18:10:d6:74:67:c2:10:ef:a2:61:fe:7e:ea:60:dc:
bc:bb:fe:4f:0e:c2:b1:41:c9:44:c6:5c:06:ec:e0:da:b6:06:
97:d4:24:8e:26:2a:31:20:29:05:3e:69:16:3c:e1:c6:6c:85:
79:ef:68:46:78:9f:53:b4:a5:15:32:e5:e8:45:68:a6:1a:30:
ff:37:29:93:dc:87:85:a0:8b:d9:a7:b8:fe:34:26:78:da:3d:
9b:76:77:2f:a0:79:5f:7c:6e:48:ae:23:69:f8:f9:52:78:45:
56:fa:3c:ed:73:b3:0e:7a:30:ab:44:c2:41:4b:48:ef:1a:06:
d0:50:69:34:7a:0d:26:b3:d0:62:c3:fd:b2:13:5f:07:da:4b:
fb:c2:7c:66:3e:a7:40:d9:02:be:e4:1f:fb:c7:e9:7f:3a:60:
98:a2:6d:81:1c:a9:fc:f5:56:5c:bc:bc:78:96:08:cf:89:51:
46:31:20:f9
-----BEGIN CERTIFICATE-----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Generated at Thu Dec 28 07:06:14 2023 by rpki-client on console.sobornost.net