Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/az0UQroVhGkB0RZq51yfczHOg58.roa
File: az0UQroVhGkB0RZq51yfczHOg58.roa (raw, json)
Hash identifier: dfbMFqL363l9+TkgYVhxraHr8f8TM+dRQvUNJEoPx28=
Subject key identifier: 6B:3D:14:42:BA:15:84:69:01:D1:16:6A:E7:5C:9F:73:31:CE:83:9F
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EDA60482B61F26B7BF9118DA728015CD8
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/az0UQroVhGkB0RZq51yfczHOg58.roa
Signing time: Sun 14 Apr 2024 02:12:06 +0000
ROA not before: Sun 14 Apr 2024 02:12:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 14 Apr 2024 03:05:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:da:60:48:2b:61:f2:6b:7b:f9:11:8d:a7:28:01:5c:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 14 02:12:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6b3d1442ba15846901d1166ae75c9f7331ce839f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:99:63:b6:db:43:3b:15:91:49:ba:fc:17:42:
fb:42:1c:b3:85:84:41:e6:00:98:d7:a9:01:db:a9:
de:ae:55:c3:c6:60:79:db:e1:c1:4c:59:76:71:2c:
ce:6f:35:0a:90:68:bf:64:06:c8:de:c3:d0:15:f1:
c5:66:5f:07:3a:e3:8f:2b:fb:eb:a3:d5:de:b8:f0:
7f:6c:22:15:09:bd:9b:cc:f2:82:ab:40:78:1d:9d:
ed:2f:d1:71:00:45:02:27:01:f9:db:a2:d6:2f:9e:
a6:95:5b:6d:ce:31:52:13:26:35:e0:3a:3c:9b:fa:
04:e7:bc:46:6c:54:d2:8f:c8:b5:c2:eb:ec:1b:7d:
aa:93:ac:09:a8:71:6b:bf:c2:48:df:c7:dc:74:dd:
7c:59:8b:c3:9c:3a:b3:98:8b:38:2f:e2:c1:43:00:
a2:ac:88:29:3a:a2:1a:f9:76:50:db:ac:83:4d:e0:
4c:96:86:50:bc:09:80:69:e9:e2:d3:13:7c:41:be:
6c:42:57:16:b8:74:bc:08:68:bd:0f:2b:46:3f:7e:
56:0a:8a:79:1c:de:70:e6:ad:60:a2:46:52:2c:fa:
60:d9:fa:2d:7d:08:25:9a:c6:c8:3a:96:e7:b1:db:
95:c7:7a:38:aa:e6:f4:a3:e5:fc:aa:ba:dc:4b:52:
2f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:3D:14:42:BA:15:84:69:01:D1:16:6A:E7:5C:9F:73:31:CE:83:9F
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/az0UQroVhGkB0RZq51yfczHOg58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3b:55:b5:be:cb:f4:44:9a:57:4b:d3:63:b2:fd:d8:8f:02:bb:
5c:9d:34:a6:b9:2b:81:42:08:43:dd:fc:b4:96:59:d3:c5:c1:
a9:8e:5e:14:2b:8d:96:fd:61:17:a2:f7:ff:fa:53:59:13:af:
9c:74:f0:07:60:c3:2c:fe:d8:7d:d9:32:97:4a:94:86:c8:7a:
cf:2d:8a:b9:b8:f7:3b:4d:b2:eb:8f:21:0d:e7:89:c0:b6:29:
44:aa:45:82:ad:e6:ea:47:b1:cf:e3:86:3b:6a:65:09:81:a2:
19:fc:35:2c:6d:44:17:f7:76:c0:0b:b1:89:2f:55:ef:af:58:
f3:f7:4b:43:3d:0c:74:58:ce:35:dc:a5:72:1e:a1:ea:56:d7:
d8:bd:9f:28:32:a9:ae:95:3a:58:38:56:53:25:b9:64:4c:20:
18:c7:66:94:30:96:5e:c3:97:f1:b7:f4:a4:d3:fe:21:13:0a:
4c:62:dd:b3:7c:45:c3:13:23:99:bc:0e:6c:ab:d7:b8:4c:65:
e5:e6:91:31:a2:ac:40:1d:f2:3c:0c:f7:2d:df:96:0c:53:f4:
39:dc:a8:ad:ce:f2:5a:cd:61:2d:35:2c:49:24:8c:f4:b0:4d:
cf:31:d0:87:7b:48:fa:9a:77:29:a0:f1:7c:ed:dd:30:21:d7:
0c:f9:29:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 14 08:03:31 2024 by rpki-client on console.sobornost.net