Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/de2hFyoAOQTd9THVJtS3o0ZErn4.roa
File: de2hFyoAOQTd9THVJtS3o0ZErn4.roa (raw, json)
Hash identifier: u4oc80KjxytVCHhnpbH8n1ZxA7FHiokxlCoZVPgBCjU=
Subject key identifier: 75:ED:A1:17:2A:00:39:04:DD:F5:31:D5:26:D4:B7:A3:46:44:AE:7E
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EBF57493BFE6038A18899C2B5220D952F
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/de2hFyoAOQTd9THVJtS3o0ZErn4.roa
Signing time: Mon 08 Apr 2024 20:12:32 +0000
ROA not before: Mon 08 Apr 2024 20:12:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 08 Apr 2024 21:04:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:bf:57:49:3b:fe:60:38:a1:88:99:c2:b5:22:0d:95:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 8 20:12:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75eda1172a003904ddf531d526d4b7a34644ae7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9c:28:cc:54:bc:2b:72:10:5e:51:97:21:0a:
aa:9d:d9:40:b5:92:a0:b3:3a:1c:e0:c6:fa:91:b7:
92:3b:0c:2a:83:0a:c0:5d:0e:ef:54:1c:3e:c5:d4:
f9:02:ea:ba:74:be:78:0b:0e:51:aa:67:a4:e7:95:
d8:8d:62:c7:67:a9:f9:17:ec:ee:e6:fd:44:10:8d:
6e:38:73:e2:7c:ae:15:09:95:3b:bd:2f:9b:f6:c2:
c1:ba:1d:92:00:5d:72:6d:de:48:65:88:34:59:4b:
06:09:ff:ef:3c:e8:88:59:67:89:66:1d:7a:8f:e5:
1e:2e:b7:f4:bb:ec:46:9c:44:da:c7:53:fa:d0:86:
24:be:cc:9a:44:b9:da:f7:23:ea:d6:a7:ea:34:61:
ea:a9:9c:09:2b:6f:fa:f6:6c:ac:8e:ef:39:59:31:
af:24:17:93:ac:b3:9d:06:52:10:92:5d:cb:5b:99:
c8:f4:59:72:c0:a0:5b:7c:1f:c4:eb:10:2a:a9:11:
63:a0:c5:49:3e:b4:25:89:8f:1d:06:c2:28:11:59:
dd:41:1b:a5:a5:64:15:ef:55:a3:34:15:72:ed:17:
2f:f4:c5:28:8d:8b:cd:2e:ac:2f:2d:60:9d:45:1c:
ab:7d:ae:69:0f:44:a6:62:d7:2a:05:0d:40:0e:04:
2d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:ED:A1:17:2A:00:39:04:DD:F5:31:D5:26:D4:B7:A3:46:44:AE:7E
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/de2hFyoAOQTd9THVJtS3o0ZErn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
32:a3:15:8e:4d:5d:78:9d:a5:ed:cb:92:e0:cc:3d:30:de:43:
47:b8:3f:b9:01:d1:20:f1:b6:40:88:28:c3:07:19:b0:18:90:
03:99:b2:fe:52:1c:d3:9f:ec:45:4a:5b:5c:de:cf:9b:6c:45:
70:9c:37:ab:0e:2b:f8:36:ac:ff:05:35:05:0c:de:9e:a4:52:
3c:32:fa:b9:1d:d5:c3:47:55:90:20:2f:88:aa:ce:64:ee:8e:
d0:c1:a1:64:b1:ff:d1:06:2d:3e:60:e4:d7:f6:a4:82:20:52:
89:da:ae:d5:c5:54:b9:47:3f:3d:c1:6c:38:8b:97:45:0d:33:
d8:8d:fd:50:b3:f5:4c:4d:1c:ba:fe:39:a3:36:d1:ec:b5:ab:
41:8a:b9:ce:3a:21:80:b2:73:42:3a:cc:28:46:f5:90:c0:44:
b5:41:af:4c:30:a1:59:53:93:c8:bb:bc:20:c0:15:ef:35:12:
29:ee:21:34:58:22:5e:32:9f:19:35:d2:d2:27:07:4e:99:97:
53:19:9d:6d:3a:60:08:de:14:d3:8e:c6:7d:5a:dd:76:9f:ad:
fd:0f:75:2b:2f:8e:27:4c:e1:73:21:63:f1:ec:3d:88:fa:9b:
e8:af:88:6b:10:da:57:be:75:09:8e:7e:dc:30:21:06:bc:46:
98:94:61:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 9 06:31:46 2024 by rpki-client on console.sobornost.net