Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/diW3_5cmTh0ZLrBKL304K71Ijvo.roa
File: diW3_5cmTh0ZLrBKL304K71Ijvo.roa (raw, json)
Hash identifier: d+fVK9yA6JHx2cokOGxC/BYmiDzoO/Yeg2tOV3E+ztA=
Subject key identifier: 76:25:B7:FF:97:26:4E:1D:19:2E:B0:4A:2F:7D:38:2B:BD:48:8E:FA
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EB208065AA7DD65A161ABA20142299098
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/diW3_5cmTh0ZLrBKL304K71Ijvo.roa
Signing time: Sat 06 Apr 2024 06:10:54 +0000
ROA not before: Sat 06 Apr 2024 06:10:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 06 Apr 2024 07:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:b2:08:06:5a:a7:dd:65:a1:61:ab:a2:01:42:29:90:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 6 06:10:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7625b7ff97264e1d192eb04a2f7d382bbd488efa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:12:b8:57:46:2f:75:84:36:9e:80:0a:25:31:
80:69:5e:f7:c8:56:7f:ab:7e:f7:b8:97:39:98:6f:
b6:47:4c:78:a6:d8:98:00:23:35:5b:86:bc:08:73:
0f:13:19:80:e1:5c:2c:d5:76:9a:4e:93:b3:6c:29:
3d:3b:91:b0:f6:8a:1f:bb:8b:26:b7:8c:62:03:dc:
b0:ab:02:df:77:68:37:1c:cb:91:73:5a:f6:8e:00:
96:52:70:c0:d4:e6:68:17:de:83:ed:29:f2:e8:59:
32:01:11:96:2d:9a:21:a8:6b:db:42:e4:75:2b:f4:
a5:7a:69:44:a8:90:bb:90:21:b6:cf:8e:83:54:95:
aa:ca:3a:80:09:19:2c:a6:84:03:ae:62:f6:10:9f:
dd:07:28:85:45:45:b5:62:e3:2f:1b:cb:4a:c9:74:
99:61:8f:94:17:b1:80:32:57:19:89:12:ce:be:02:
69:05:32:1e:98:c0:c6:0c:f6:19:5f:bc:30:f3:86:
4c:41:69:0d:a8:10:f3:e7:cc:31:b3:15:f2:35:8e:
f4:73:bc:ad:9a:56:0b:2f:9e:55:8a:f1:20:24:40:
fb:b7:bc:07:07:24:d5:f9:06:5a:e1:00:7b:2c:ca:
a7:d7:1b:87:d4:5c:bc:92:a5:a9:72:9a:ae:cb:a2:
ea:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:25:B7:FF:97:26:4E:1D:19:2E:B0:4A:2F:7D:38:2B:BD:48:8E:FA
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/diW3_5cmTh0ZLrBKL304K71Ijvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
4a:fd:35:be:80:86:44:3b:04:f5:bd:1c:57:7a:8a:95:f4:1a:
95:a6:b9:cd:57:aa:0c:d3:7c:94:9a:49:f6:dc:96:a5:6e:10:
f0:30:83:38:c4:23:00:15:03:46:a7:14:f0:a4:79:2f:74:5b:
16:fe:d8:6b:a5:bb:4c:dc:67:d1:0d:eb:be:3d:49:67:ed:77:
8c:e9:54:eb:e1:53:61:a3:4c:52:5a:8a:83:97:b7:38:72:8d:
41:b4:5e:79:cd:45:e9:b3:fd:52:83:0b:87:97:e7:38:cc:40:
52:9b:ef:e8:5d:df:63:9f:2e:2a:27:a9:5f:1d:7a:f3:fb:ec:
4d:48:8e:69:a3:bb:93:94:df:5e:40:eb:22:cf:a4:90:bf:4b:
26:3e:61:25:32:4e:72:d4:fd:2f:93:b7:2b:f5:12:4c:e9:75:
c5:0e:51:bd:23:fc:29:60:10:ce:d3:10:23:d2:b6:77:6f:1a:
35:0e:a9:9f:1b:eb:23:e6:91:fc:74:12:14:77:98:34:2f:0e:
16:ec:41:42:20:8f:9e:1b:05:a2:e0:dc:48:2a:30:e4:fd:bc:
b8:ca:d5:d6:a5:da:7e:9c:b8:56:43:3c:96:30:16:e4:d6:79:
73:a0:a9:a5:00:b1:0b:46:40:87:69:aa:0a:f9:8b:e1:30:82:
43:68:3f:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 6 11:12:51 2024 by rpki-client on console.sobornost.net