Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/fMiDEvDNsBlKAjgwI8XEQbWZ8zM.roa
File: fMiDEvDNsBlKAjgwI8XEQbWZ8zM.roa (raw, json)
Hash identifier: GaoO2HQHl8SoOkN2zajzpc/JM7NwI8Rs3qbRDW8XlQs=
Subject key identifier: 7C:C8:83:12:F0:CD:B0:19:4A:02:38:30:23:C5:C4:41:B5:99:F3:33
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E7A75B9EA94276D43861D619952A34C0C
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/fMiDEvDNsBlKAjgwI8XEQbWZ8zM.roa
Signing time: Tue 26 Mar 2024 11:11:59 +0000
ROA not before: Tue 26 Mar 2024 11:11:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
2001:67c:64:ffff:0:18e:76c8:d5da/128 maxlen: 128
Validation: Failed, certificate revoked on Tue 26 Mar 2024 12:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7a:75:b9:ea:94:27:6d:43:86:1d:61:99:52:a3:4c:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 26 11:11:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7cc88312f0cdb0194a02383023c5c441b599f333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:30:1e:df:35:98:c3:17:c4:66:a0:c4:88:0b:
df:ec:be:94:0c:c0:20:1d:74:48:61:42:6a:d0:b2:
7c:05:9a:ad:89:10:ec:e8:92:dd:8e:0d:4b:35:fd:
2e:9c:b2:41:bc:08:94:89:9a:0f:aa:fc:7d:c2:ca:
81:f2:48:07:62:10:69:23:a9:39:5a:f4:7c:62:15:
5b:a5:87:94:71:33:59:be:5b:61:fa:32:d7:92:07:
de:71:5f:60:80:26:a2:84:e4:56:ae:c6:04:b8:09:
42:07:c5:cd:9d:7b:96:79:bf:a9:d5:bc:5a:42:b9:
22:58:3e:92:f9:1f:2b:c9:de:76:8a:77:e1:5c:37:
a6:81:b1:44:30:87:7c:0c:17:38:9f:26:e2:83:27:
3d:9e:80:d1:55:00:e9:c7:f3:45:50:7c:ed:94:3b:
b9:d9:f8:7e:32:c2:f3:2a:9e:f9:d5:d5:e7:15:01:
80:6c:b9:20:d9:f1:35:5d:77:fc:cf:b5:38:5e:9f:
2d:7c:bd:c5:f8:28:3d:5a:50:33:31:5e:a1:0d:18:
39:f6:5a:7f:34:50:c5:4c:78:76:02:59:12:1f:47:
be:81:86:d8:8a:10:93:db:89:b8:8e:80:d8:db:8e:
c1:6a:df:e0:4e:94:0e:0f:c9:f0:0e:d1:a2:35:f2:
08:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:C8:83:12:F0:CD:B0:19:4A:02:38:30:23:C5:C4:41:B5:99:F3:33
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/fMiDEvDNsBlKAjgwI8XEQbWZ8zM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
1a:2a:dc:70:9c:77:89:95:96:c9:ef:f1:02:29:79:57:ed:70:
9f:3b:68:58:4e:70:81:76:79:07:8d:ac:3e:71:8f:78:1c:f3:
19:f5:f8:bb:f1:83:68:94:12:a5:2e:f0:08:89:d1:92:c4:ac:
fa:93:3f:24:ee:90:ee:24:2d:37:b5:3e:b7:2e:5b:6b:fb:ca:
7b:f4:94:ed:a1:a6:a4:d7:33:08:5d:fc:e7:af:6b:d1:7d:bd:
4a:a4:12:21:76:08:70:73:8f:4c:9f:fe:f1:f7:6a:6e:8a:0d:
17:97:96:07:6a:86:6b:66:99:13:75:7d:f9:ff:b7:13:f5:ff:
4c:61:46:44:c2:cc:83:2f:33:d6:f1:87:44:57:4e:78:c6:10:
33:6a:d2:7a:fa:32:0d:86:06:46:0e:de:6c:31:c9:01:51:ca:
37:c7:2d:29:40:7e:f1:be:7b:c1:2e:97:2e:d9:68:f7:00:92:
0a:02:67:20:05:f4:7d:3c:df:92:5d:55:be:46:33:a8:17:ab:
50:11:68:13:e0:5c:b1:67:ad:05:af:6e:fa:2e:f9:81:8a:ef:
0e:f3:e5:3c:20:cc:54:71:45:8b:0e:a4:15:d7:d3:19:94:96:
ac:48:07:3a:42:8a:b3:7c:42:61:e1:db:84:c2:30:75:85:2f:
15:83:d8:32
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY56dbnqlCdtQ4YdYZlSo0wMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjQwMzI2MTExMTU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3Y2M4ODMxMmYwY2RiMDE5NGEwMjM4MzAyM2M1YzQ0MWI1OTlmMzMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnDAe3zWYwxfEZqDEiAvf7L6UDMAg
HXRIYUJq0LJ8BZqtiRDs6JLdjg1LNf0unLJBvAiUiZoPqvx9wsqB8kgHYhBpI6k5
WvR8YhVbpYeUcTNZvlth+jLXkgfecV9ggCaihORWrsYEuAlCB8XNnXuWeb+p1bxa
QrkiWD6S+R8ryd52infhXDemgbFEMId8DBc4nybigyc9noDRVQDpx/NFUHztlDu5
2fh+MsLzKp751dXnFQGAbLkg2fE1XXf8z7U4Xp8tfL3F+Cg9WlAzMV6hDRg59lp/
NFDFTHh2AlkSH0e+gYbYihCT24m4joDY247Bat/gTpQOD8nwDtGiNfIIIQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFHzIgxLwzbAZSgI4MCPFxEG1mfMzMB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvZk1pREV2RE5zQmxLQWpnd0k4WEVRYldaOHpNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBABoq3HCcd4mVlsnv8QIp
eVftcJ87aFhOcIF2eQeNrD5xj3gc8xn1+Lvxg2iUEqUu8AiJ0ZLErPqTPyTukO4k
LTe1PrcuW2v7ynv0lO2hpqTXMwhd/Oeva9F9vUqkEiF2CHBzj0yf/vH3am6KDReX
lgdqhmtmmRN1ffn/txP1/0xhRkTCzIMvM9bxh0RXTnjGEDNq0nr6Mg2GBkYO3mwx
yQFRyjfHLSlAfvG+e8Euly7ZaPcAkgoCZyAF9H0835JdVb5GM6gXq1ARaBPgXLFn
rQWvbvou+YGK7w7z5TwgzFRxRYsOpBXX0xmUlqxIBzpCirN8QmHh24TCMHWFLxWD
2DI=
-----END CERTIFICATE-----
Generated at Tue Mar 26 17:48:05 2024 by rpki-client on console.sobornost.net