Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/brtLKMzu_eegt2JCFU4CMfnrZB8.roa
File: brtLKMzu_eegt2JCFU4CMfnrZB8.roa (raw, json)
Hash identifier: HZAc1Ag1uINHhJNf4SEWN3zPTiH7gbaSwQIHjPHWVZ8=
Subject key identifier: 6E:BB:4B:28:CC:EE:FD:E7:A0:B7:62:42:15:4E:02:31:F9:EB:64:1F
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EB126CDE0CFA2926621A52F455C247462
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/brtLKMzu_eegt2JCFU4CMfnrZB8.roa
Signing time: Sat 06 Apr 2024 02:04:54 +0000
ROA not before: Sat 06 Apr 2024 02:04:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18e:b126:430a/128 maxlen: 128
Validation: Failed, certificate revoked on Sat 06 Apr 2024 02:12:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:b1:26:cd:e0:cf:a2:92:66:21:a5:2f:45:5c:24:74:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 6 02:04:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6ebb4b28cceefde7a0b76242154e0231f9eb641f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:76:67:8b:49:ba:48:42:51:1d:09:ff:18:c4:
77:f1:f5:51:9f:a3:1c:cd:c3:a5:93:7b:e3:b4:bb:
bb:a0:11:6a:d6:17:ed:4d:7e:83:43:ec:d1:77:cc:
35:67:63:97:20:e9:c8:c7:35:43:9d:9c:fc:e9:97:
d1:89:a8:db:4f:f6:42:34:20:23:33:98:4c:75:7d:
c7:6d:f6:54:8b:1a:d4:b9:9f:06:bb:e6:d6:a9:54:
37:bb:a6:5b:3e:2d:40:c3:39:f6:e3:d9:e0:09:8a:
bb:fd:b4:3e:80:f8:3a:e2:ad:a2:a5:1e:db:b0:06:
76:b9:c6:1c:4b:41:1c:59:00:a5:ec:73:8f:b4:4b:
ce:4e:a5:95:d3:f5:b0:61:f0:a3:02:b1:0c:bc:91:
07:92:5c:a3:1e:7e:ce:85:ae:67:fb:68:d9:f4:fb:
06:54:36:c0:4e:d5:3f:2d:78:54:52:3b:5e:bc:75:
f7:e1:07:2b:f5:e1:6a:0d:f8:68:20:6f:e8:40:aa:
38:a6:a8:70:0f:c7:9b:c8:1d:51:b8:5d:69:39:f5:
f9:3e:02:29:7e:d4:85:7f:3f:0e:a4:9b:96:d1:0a:
97:da:6a:05:d1:d9:c7:a8:8e:54:ba:d3:11:22:15:
3a:ba:7f:d0:4d:13:ca:82:7c:44:f0:d8:74:91:69:
ed:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:BB:4B:28:CC:EE:FD:E7:A0:B7:62:42:15:4E:02:31:F9:EB:64:1F
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/brtLKMzu_eegt2JCFU4CMfnrZB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
83:fd:b1:cb:29:37:e9:ca:ac:8c:36:c6:09:cd:a7:ce:ae:b9:
5d:26:b3:e4:a9:f3:0c:25:3e:6f:0e:88:5f:09:0f:5f:2b:b1:
6c:71:e4:92:8a:1a:93:9d:c1:2a:61:a4:3a:46:c8:a2:2b:3f:
99:f6:fd:48:02:e3:61:f0:d6:be:58:3d:82:32:4d:73:c4:94:
09:b2:c4:41:f2:2e:7c:d3:9c:6e:b9:09:3a:6d:dd:82:2e:aa:
ce:9c:9f:66:0b:20:8f:a2:e9:52:27:c9:6d:1a:c8:65:fd:0f:
b0:eb:07:2e:97:fd:27:2f:1a:10:a2:5e:95:bb:86:8c:77:63:
62:c1:86:be:07:16:06:44:7c:f0:8a:d6:b7:cd:5b:d0:83:e1:
39:ac:6d:0c:a6:2e:4e:ba:1b:36:0c:e2:b2:a8:e7:e5:f0:91:
bc:81:e7:75:cf:6b:22:a6:5c:10:9c:7c:65:cf:c0:69:ee:28:
1a:38:63:77:24:60:d0:bc:0c:a4:54:69:50:fc:41:15:a8:46:
ed:9a:3d:bf:39:2c:ef:aa:ba:6c:a7:23:5c:5c:24:05:ed:d7:
48:fe:0c:3b:69:41:64:70:6e:4d:26:19:a7:03:28:29:24:8a:
f9:d6:b2:80:60:c9:49:77:60:61:b2:73:b3:79:a4:f6:ee:b8:
39:c5:22:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 6 09:39:20 2024 by rpki-client on console.sobornost.net