Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/eW0mQCciUAvkOnvxjbckplnaijc.roa
File: eW0mQCciUAvkOnvxjbckplnaijc.roa (raw, json)
Hash identifier: 5jT8L+liBRMG2KszmtqXh4i7oPOLVzwIFajgFwXHMUU=
Subject key identifier: 79:6D:26:40:27:22:50:0B:E4:3A:7B:F1:8D:B7:24:A6:59:DA:8A:37
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018EBE7B901DEE1DE3EF527439EF9E6D5165
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/eW0mQCciUAvkOnvxjbckplnaijc.roa
Signing time: Mon 08 Apr 2024 16:12:32 +0000
ROA not before: Mon 08 Apr 2024 16:12:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 08 Apr 2024 17:04:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:be:7b:90:1d:ee:1d:e3:ef:52:74:39:ef:9e:6d:51:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Apr 8 16:12:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=796d26402722500be43a7bf18db724a659da8a37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a4:64:9f:66:b2:1e:90:1f:63:22:4b:15:52:
c6:b9:2b:5e:cd:d9:43:55:10:1b:7e:cd:2c:30:1c:
1e:0f:e9:33:a5:d5:43:e7:41:2f:1a:ab:ca:c4:4f:
df:50:3d:6e:a2:02:0a:6e:cd:d1:54:1e:4a:40:6c:
00:b9:dd:6d:92:3e:b7:47:f6:ec:29:4e:9a:50:19:
bf:91:72:9b:f3:8e:27:ae:80:cc:1d:ec:2e:4c:9e:
c4:b8:47:bc:70:b4:ce:c4:69:d7:7b:9c:00:14:79:
e4:1f:56:29:77:e7:f9:c9:4f:49:cd:9b:03:df:cb:
fd:64:b6:bf:15:ce:18:84:65:61:2f:d9:00:4e:a5:
cc:87:d1:c7:6c:2a:a3:db:fc:43:6b:0d:b0:3f:c7:
43:3a:e1:53:56:1d:8e:dc:2d:ad:14:07:88:e4:71:
17:32:44:2f:c9:a7:d1:3c:24:78:b8:5b:fb:b5:a6:
1c:67:d5:83:5a:39:af:4c:56:44:32:25:73:b9:6e:
5b:68:ae:11:52:23:94:14:9c:ec:1c:d6:d9:6f:54:
e5:95:dd:8e:33:61:7c:de:f0:f8:71:da:7e:13:c0:
e2:1e:59:a3:c7:49:5c:58:e2:17:52:6e:98:c0:11:
f7:69:2a:bd:ed:ed:23:ff:cb:38:f2:fe:a0:18:37:
f8:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:6D:26:40:27:22:50:0B:E4:3A:7B:F1:8D:B7:24:A6:59:DA:8A:37
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/eW0mQCciUAvkOnvxjbckplnaijc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7c:ba:f8:37:a4:c0:c5:05:1f:6d:7f:70:7c:57:33:f0:f7:e1:
a2:83:69:ed:04:94:31:56:21:71:cf:9c:c0:20:a2:b7:c8:5a:
31:28:da:eb:6c:09:86:2b:b1:17:43:4c:b4:ab:92:65:9f:7d:
3e:f3:9e:53:0d:f7:d6:89:13:2d:ca:d1:8d:16:50:de:a5:1d:
82:5b:05:37:31:52:25:51:d7:d8:be:35:15:56:f9:07:fe:fc:
4f:0e:e8:21:c4:7e:53:32:a0:7a:c7:bd:f5:96:ba:11:08:df:
33:9b:2e:25:b5:61:2f:65:4b:87:2a:dd:9d:40:61:67:14:ae:
36:9c:cf:ec:4c:82:cc:f2:02:fd:1f:82:ca:f5:2d:62:6b:0c:
4a:3a:db:4b:c0:a4:48:2e:3e:73:ba:b5:7e:4c:7d:52:30:e7:
40:33:33:73:52:3c:79:09:ca:fa:16:4b:44:2a:b7:cf:87:0e:
f2:a5:f5:7b:1f:3f:27:5e:6a:56:34:b0:1f:77:b6:d1:0a:1d:
ab:f5:de:3e:de:b4:4a:5d:da:d0:5b:68:c1:1b:d1:3a:3a:9b:
43:1e:dc:82:51:fe:a3:65:3c:fd:03:bb:52:3a:78:4a:5c:d5:
d3:60:50:a7:3c:cc:3a:a4:d9:75:7c:2f:1c:97:2f:df:95:4a:
58:da:2b:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 8 23:55:37 2024 by rpki-client on console.sobornost.net