Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/bWqy3wnTSODoahnFWtM2_5zmV3Q.roa
File: bWqy3wnTSODoahnFWtM2_5zmV3Q.roa (raw, json)
Hash identifier: DbixKoU6H/Ovw9SR74E5LpUoGbH6ZI7Krqa3NdUQHec=
Subject key identifier: 6D:6A:B2:DF:09:D3:48:E0:E8:6A:19:C5:5A:D3:36:FF:9C:E6:57:74
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CA9B19B6707A7CB3D4DD57428771C0395
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/bWqy3wnTSODoahnFWtM2_5zmV3Q.roa
Signing time: Wed 27 Dec 2023 05:13:58 +0000
ROA not before: Wed 27 Dec 2023 05:13:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a9:b1:9b:67:07:a7:cb:3d:4d:d5:74:28:77:1c:03:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Dec 27 05:13:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d6ab2df09d348e0e86a19c55ad336ff9ce65774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:98:89:72:21:e3:ee:12:ee:d7:98:05:8d:35:
86:df:62:ef:a3:93:6a:30:88:12:77:2b:74:f3:31:
dc:48:de:17:aa:55:81:42:1b:5b:89:f9:9c:de:ac:
a9:0a:e2:bb:31:9e:2b:e6:ee:50:5c:19:d9:cf:9b:
3e:eb:b8:1a:3c:c9:56:f7:d7:09:fd:f2:27:f9:7d:
2e:20:cf:bd:bb:91:0a:c0:a9:23:b9:66:1e:cd:10:
16:bd:e9:d6:8a:96:c3:e8:7b:af:e2:54:ed:4b:44:
74:43:09:d7:91:21:32:4c:0b:8f:fc:6e:bf:9d:0c:
13:b8:86:4c:c9:1c:2e:b5:a9:df:56:e1:18:c2:da:
61:48:2c:bb:3e:d8:dd:b4:8f:27:7c:2c:f7:87:ba:
fc:38:78:13:2e:b2:55:3f:cf:a7:51:dd:06:62:15:
9f:dd:4b:4a:d4:35:14:2a:e9:78:46:13:a9:4b:fb:
d0:5e:e6:c7:88:ff:3a:e7:93:ca:a5:6e:34:07:51:
b4:af:33:7a:e5:15:c3:56:ed:f0:d3:20:ba:72:c6:
28:7a:42:12:e0:cf:12:94:ac:f9:93:0b:93:e3:38:
b1:cc:77:04:97:67:55:15:3f:ad:3d:d8:8c:a1:e0:
5b:6a:f3:4b:6f:00:30:fa:ba:ed:dd:7e:7a:09:40:
eb:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:6A:B2:DF:09:D3:48:E0:E8:6A:19:C5:5A:D3:36:FF:9C:E6:57:74
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/bWqy3wnTSODoahnFWtM2_5zmV3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
87:0e:93:7e:96:27:5d:56:31:c0:f2:ee:af:76:35:0b:41:51:
f9:35:35:02:c2:de:30:d7:63:9b:73:a7:eb:7a:d4:9c:4d:bc:
07:06:0a:77:88:3b:81:a8:57:fc:0f:cc:e2:7d:ad:40:f5:67:
ef:0e:54:99:b0:4f:ec:80:09:aa:b4:bd:87:81:4a:bd:9c:b2:
89:17:3d:d3:ce:aa:70:eb:26:5a:52:27:4b:ee:b0:2d:bb:7f:
0f:cb:22:8b:21:b8:ed:47:bc:46:89:b3:ed:e9:c1:08:8b:04:
cb:6b:8b:29:7f:b6:bc:76:17:44:9b:d9:f5:5f:92:98:f9:e3:
53:5e:da:c7:53:b2:51:a5:56:f5:11:fa:1a:30:48:d9:54:d1:
58:f3:f8:f5:27:20:fe:e6:c1:84:d3:f8:74:21:0f:3f:98:ec:
40:e8:bc:55:f6:86:cd:4e:10:71:5d:66:ac:86:02:49:fb:9a:
42:05:0c:da:ad:f0:17:8f:f4:8c:3a:ef:79:79:ff:1b:a9:ca:
f0:53:2a:56:a6:35:4a:69:60:83:71:bd:0e:a2:23:6d:cc:83:
dc:e2:a8:98:10:29:91:53:ab:d3:0a:76:b6:1b:8c:15:36:d0:
36:8c:b1:54:c5:8a:04:c0:2b:9a:79:5a:3d:c3:6a:4f:ec:bd:
2d:e5:3b:78
-----BEGIN CERTIFICATE-----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Generated at Wed Dec 27 06:44:59 2023 by rpki-client on console.sobornost.net