Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/YxAaYCIMa5IvSw-W5gRr2kYIpo8.roa
File: YxAaYCIMa5IvSw-W5gRr2kYIpo8.roa (raw, json)
Hash identifier: GAJdX/zCn52dP4hbbCofdfJ7i2nsZ60RuXCkdrd2A68=
Subject key identifier: 63:10:1A:60:22:0C:6B:92:2F:4B:0F:96:E6:04:6B:DA:46:08:A6:8F
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CBC59EA98DE57642349E8F14C10D0BA38
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/YxAaYCIMa5IvSw-W5gRr2kYIpo8.roa
Signing time: Sat 30 Dec 2023 20:10:58 +0000
ROA not before: Sat 30 Dec 2023 20:10:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:bc:59:ea:98:de:57:64:23:49:e8:f1:4c:10:d0:ba:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 30 20:10:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63101a60220c6b922f4b0f96e6046bda4608a68f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:62:c4:3c:6c:ca:e4:de:2f:b7:6c:7e:11:8f:
48:ef:7d:2e:32:d7:82:15:7f:eb:2c:fe:93:f1:a0:
88:df:71:ef:ff:87:d2:d4:dd:e7:de:cf:ba:b7:99:
c2:a8:fd:fb:9f:8c:9c:86:81:88:91:a7:85:97:d1:
fa:78:df:81:45:3f:85:b9:a0:d1:83:0e:e4:47:b8:
d1:d9:4f:fe:d0:31:06:04:f7:07:5f:b3:24:1c:28:
d5:71:f6:2c:2f:47:87:60:c4:78:fe:1f:9b:03:dd:
bb:79:01:86:27:d4:9f:8d:47:6d:26:61:02:f4:88:
88:25:3b:84:f4:0a:b4:8b:65:74:39:5d:1a:46:c5:
9d:5d:c2:f1:2c:3c:ae:fc:c2:16:ba:3f:28:f8:99:
31:e2:81:59:6a:0a:cb:9d:07:ec:c7:c2:68:9a:56:
aa:0d:14:60:6e:34:90:8c:fc:36:54:78:7a:e4:2b:
b3:29:68:3b:05:8a:5e:7e:f6:a8:53:bb:fc:2b:ac:
e9:ca:82:28:7a:7a:22:41:cb:34:b6:d1:97:b7:cd:
2b:45:a3:2b:e9:8e:85:31:1b:0c:bc:90:05:1f:7e:
80:77:ed:e7:ef:e6:5c:d7:cb:60:3d:39:08:b3:8a:
dc:11:56:60:e1:22:67:b0:38:a4:35:03:48:85:84:
16:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:10:1A:60:22:0C:6B:92:2F:4B:0F:96:E6:04:6B:DA:46:08:A6:8F
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/YxAaYCIMa5IvSw-W5gRr2kYIpo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3c:a9:3e:5d:64:aa:38:c8:61:6f:6b:bf:f0:3a:d7:0d:71:64:
04:54:d8:8a:2c:4c:47:b7:b8:d2:5c:8e:8a:a7:e7:e3:db:b9:
9d:56:f2:3c:f4:05:83:51:cb:78:43:98:be:e2:12:af:a9:4d:
ce:25:9d:c9:2e:6a:11:ee:99:45:f2:a2:ec:34:b8:95:7c:72:
7d:4d:d7:01:ed:2b:22:7e:15:ec:7a:6a:af:2b:ca:dd:65:a2:
59:bc:86:d8:24:e8:66:29:a7:85:8a:5c:f2:ad:d3:5b:78:db:
c7:f3:cc:0e:82:d3:68:9b:e9:2f:21:5d:f2:b9:7e:79:9f:ac:
65:11:dc:eb:b2:39:e8:5b:aa:98:b0:92:89:f6:2f:5f:71:a8:
c3:2a:4b:13:5d:26:b2:a1:25:23:46:c8:12:db:e0:f3:f9:18:
98:da:e9:dd:6a:5b:15:e2:6e:0b:6e:6a:1a:c1:2b:9a:22:36:
6e:73:95:e7:6f:f3:1d:ec:29:5c:4e:6e:b0:15:da:77:f1:08:
81:fe:65:73:62:19:74:26:11:39:a2:8f:be:8a:f2:cd:2e:e0:
61:16:7f:8f:fb:3c:62:cf:58:e6:63:00:c3:88:78:a5:5d:b9:
13:2a:23:b7:8d:ee:5c:3f:f0:a7:b7:c1:c2:0d:54:67:bc:b5:
5d:64:bf:b2
-----BEGIN CERTIFICATE-----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Generated at Sat Dec 30 22:49:10 2023 by rpki-client on console.sobornost.net