Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/_LurcGsGHlyih9-FleTtWqnqgLA.roa
File: _LurcGsGHlyih9-FleTtWqnqgLA.roa (raw, json)
Hash identifier: Y3MFemJWdPfy+pBgjwwY7XjSEGB9/AN9nT/TRf/46I0=
Subject key identifier: FC:BB:AB:70:6B:06:1E:5C:A2:87:DF:85:95:E4:ED:5A:A9:EA:80:B0
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CD76C4CA6613F6165D7968BD8ED828FF9
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/_LurcGsGHlyih9-FleTtWqnqgLA.roa
Signing time: Fri 05 Jan 2024 02:20:48 +0000
ROA not before: Fri 05 Jan 2024 02:20:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d7:6c:4c:a6:61:3f:61:65:d7:96:8b:d8:ed:82:8f:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 5 02:20:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fcbbab706b061e5ca287df8595e4ed5aa9ea80b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c0:80:43:5a:17:08:58:eb:0b:cf:b3:8d:65:
26:18:ec:f5:25:db:f2:a2:0b:d5:2f:52:13:7f:3e:
06:1b:fb:d1:df:6d:28:7f:cb:fa:98:9c:ae:5c:4b:
a6:2a:ed:63:f0:9c:1b:2f:4f:31:3e:2c:65:b9:6f:
7c:68:f2:e0:e3:85:eb:0f:9a:b9:1c:e9:b6:bb:ed:
53:0b:45:4c:0b:24:be:cf:9b:08:a0:97:89:9e:61:
c1:bc:76:0c:c7:f2:d9:7a:20:7f:ab:61:43:d6:2d:
6a:f9:ff:16:3b:fb:49:ef:11:5f:95:79:d3:8d:2e:
73:86:b6:17:49:45:cf:ee:9b:ae:7e:0b:97:45:e6:
b2:fd:b7:d2:b6:f5:3f:1b:1b:62:01:f1:63:53:33:
35:6b:68:41:c5:d4:6f:c7:ae:3a:36:3c:cd:9e:de:
4e:30:f4:f6:0e:7d:1c:75:b2:5b:5f:44:dc:fa:63:
a0:79:0c:b4:12:74:32:c5:47:b1:46:28:11:1f:89:
b6:fd:47:dc:12:7c:f0:6b:ef:b3:7e:9c:c2:d4:4c:
c0:e1:36:2b:91:b4:b8:7e:09:0d:53:be:25:d3:07:
8e:13:1f:9d:bd:b8:bd:8c:7e:1a:04:17:63:30:cc:
22:02:78:1a:12:54:18:4c:e2:43:55:58:69:69:4f:
88:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:BB:AB:70:6B:06:1E:5C:A2:87:DF:85:95:E4:ED:5A:A9:EA:80:B0
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/_LurcGsGHlyih9-FleTtWqnqgLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
34:52:b6:3e:04:3d:b6:ae:fb:00:38:81:26:72:bc:b9:1d:a0:
c4:5e:53:cb:ad:67:14:6f:e1:6e:1f:f9:ce:38:ea:40:fd:9e:
54:b1:e2:15:ce:c7:9d:c6:65:5d:5e:3f:7c:a0:97:86:e9:6b:
bd:8b:12:ac:59:8f:67:80:a5:aa:02:2d:a7:3c:20:aa:39:46:
50:02:87:0c:ec:60:ff:cf:88:90:92:6d:22:d3:ba:f2:04:d3:
3c:3a:a5:55:eb:57:4a:df:03:96:38:d2:d2:5a:6a:2a:e5:d6:
c1:c7:f9:68:a0:75:f5:92:15:7c:bf:84:45:94:ef:a1:46:20:
2a:3c:10:f5:71:a4:d8:ee:fa:93:81:63:05:ae:73:15:21:81:
12:1b:7d:11:56:19:a6:82:09:2c:c3:3a:e4:bb:ef:3c:2f:79:
a1:94:ac:cf:82:28:44:d1:9e:33:e5:a1:bf:ca:32:03:d9:dc:
59:a7:e3:5b:9b:86:f3:0e:18:37:84:ff:35:40:37:33:d1:a4:
d9:94:b2:cd:f5:cf:47:04:8d:d3:89:e9:2d:5a:68:4d:13:f0:
db:78:81:45:95:68:7a:ff:cf:4d:d6:ea:8a:b2:c4:cf:9a:91:
d0:f0:ef:f1:c3:51:95:92:b4:95:9d:27:1b:8c:78:03:1c:c6:
dc:59:0c:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 5 06:23:42 2024 by rpki-client on console.sobornost.net