Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/alAWLkvZ981-lWfXvO3hTx6FeEM.roa
File: alAWLkvZ981-lWfXvO3hTx6FeEM.roa (raw, json)
Hash identifier: HSpmCCdqPTe6J0jc0mVthkJHgkHlUuowizPp60D9YD8=
Subject key identifier: 6A:50:16:2E:4B:D9:F7:CD:7E:95:67:D7:BC:ED:E1:4F:1E:85:78:43
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CB68FACE70FC67DD8797489A51024DB4C
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/alAWLkvZ981-lWfXvO3hTx6FeEM.roa
Signing time: Fri 29 Dec 2023 17:11:58 +0000
ROA not before: Fri 29 Dec 2023 17:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b6:8f:ac:e7:0f:c6:7d:d8:79:74:89:a5:10:24:db:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 29 17:11:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a50162e4bd9f7cd7e9567d7bcede14f1e857843
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:a6:b4:9b:ad:56:b2:36:3a:4a:4a:40:a1:ff:
77:62:81:8e:ed:55:53:60:07:e3:28:a4:e3:c0:6a:
7c:2d:fb:ad:d4:fa:fe:22:cf:eb:ca:4f:d2:53:32:
6a:e5:f2:a6:f1:4e:d6:77:3e:8c:1d:a4:11:e1:63:
63:aa:59:f0:46:1c:e1:e6:49:f5:17:4f:1f:6d:1b:
be:9e:69:6e:67:70:93:6d:64:a2:fc:46:32:66:2e:
e8:12:f9:cf:7c:4c:82:17:e6:d3:42:c6:87:dd:67:
d8:ee:fa:70:05:51:0e:5e:ee:92:db:b5:a6:5d:20:
5f:11:e7:30:71:c8:76:a2:a2:5d:b4:1b:e4:e1:1f:
6f:58:d5:9e:a9:4a:e0:55:51:5f:7a:f2:fa:a7:ac:
a7:0d:8e:82:4a:40:e2:64:eb:b4:05:c1:2d:cc:c5:
05:c3:ca:b0:a8:5f:e6:7d:f1:9f:6d:5a:cc:4d:f1:
3f:96:95:e7:00:43:09:84:e3:59:25:87:0b:6f:cc:
9d:30:2e:67:43:91:4d:d9:a9:a0:e4:2e:55:d4:bf:
6c:fe:fd:50:09:74:41:54:11:8f:ab:f9:8b:ab:23:
02:86:82:ad:b4:02:fc:5a:cb:25:43:1c:b9:6c:84:
3c:35:ea:32:10:89:7c:7f:56:1d:9b:a4:8d:6d:01:
f2:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:50:16:2E:4B:D9:F7:CD:7E:95:67:D7:BC:ED:E1:4F:1E:85:78:43
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/alAWLkvZ981-lWfXvO3hTx6FeEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
64:05:4d:3f:26:ec:84:9d:a0:fc:07:ef:eb:31:22:3b:de:cd:
17:d2:60:b3:09:92:3d:dc:6a:68:e7:ad:ef:af:65:73:e8:7c:
f6:7a:0b:2f:70:6b:fd:54:90:6c:77:dc:dd:7e:1b:94:49:3d:
0f:85:59:d4:18:8e:00:e1:05:99:84:f2:9b:21:82:23:6e:14:
90:88:96:43:2d:29:94:ae:bf:23:cb:bf:55:88:05:8c:82:ad:
4c:a8:bf:52:c0:a5:c9:62:a2:ae:22:aa:c5:a7:72:91:14:49:
13:35:4f:e2:1f:8a:ac:fe:7a:fb:9e:ca:b6:99:ca:dd:f2:31:
88:88:2c:94:f5:60:2f:15:2f:d3:36:21:7b:cb:cf:13:36:eb:
68:b8:01:b4:f7:24:1d:bc:de:c5:db:f0:58:3a:de:76:2e:77:
ce:fc:90:d3:cb:06:c2:e6:03:df:d8:c6:6c:93:03:7c:c4:10:
a8:07:2f:b1:51:95:70:37:6d:d7:31:bd:e6:d5:fb:21:a8:96:
50:fc:02:b4:98:35:54:1c:1d:2e:65:e2:78:ad:0a:33:ad:3d:
f2:ba:c3:b6:d0:52:3e:fe:cc:1e:cc:1f:48:3d:0f:63:f5:a5:
73:69:c9:0e:68:a4:0d:7b:48:6c:44:66:b3:53:78:2c:32:8a:
8a:d7:75:71
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYy2j6znD8Z92Hl0iaUQJNtMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjMxMjI5MTcxMTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YTUwMTYyZTRiZDlmN2NkN2U5NTY3ZDdiY2VkZTE0ZjFlODU3ODQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgaa0m61WsjY6SkpAof93YoGO7VVT
YAfjKKTjwGp8Lfut1Pr+Is/ryk/SUzJq5fKm8U7Wdz6MHaQR4WNjqlnwRhzh5kn1
F08fbRu+nmluZ3CTbWSi/EYyZi7oEvnPfEyCF+bTQsaH3WfY7vpwBVEOXu6S27Wm
XSBfEecwcch2oqJdtBvk4R9vWNWeqUrgVVFfevL6p6ynDY6CSkDiZOu0BcEtzMUF
w8qwqF/mffGfbVrMTfE/lpXnAEMJhONZJYcLb8ydMC5nQ5FN2amg5C5V1L9s/v1Q
CXRBVBGPq/mLqyMChoKttAL8WsslQxy5bIQ8NeoyEIl8f1Ydm6SNbQHyqwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFGpQFi5L2ffNfpVn17zt4U8ehXhDMB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvYWxBV0xrdlo5ODEtbFdmWHZPM2hUeDZGZUVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAGQFTT8m7ISdoPwH7+sx
IjvezRfSYLMJkj3camjnre+vZXPofPZ6Cy9wa/1UkGx33N1+G5RJPQ+FWdQYjgDh
BZmE8pshgiNuFJCIlkMtKZSuvyPLv1WIBYyCrUyov1LApclioq4iqsWncpEUSRM1
T+Ifiqz+evueyraZyt3yMYiILJT1YC8VL9M2IXvLzxM262i4AbT3JB283sXb8Fg6
3nYud878kNPLBsLmA9/YxmyTA3zEEKgHL7FRlXA3bdcxvebV+yGollD8ArSYNVQc
HS5l4nitCjOtPfK6w7bQUj7+zB7MH0g9D2P1pXNpyQ5opA17SGxEZrNTeCwyiorX
dXE=
Generated at Fri Dec 29 20:32:50 2023 by rpki-client on console.sobornost.net