Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/fihmn60eVryKsJHF44aOKHGfVBQ.roa
File: fihmn60eVryKsJHF44aOKHGfVBQ.roa (raw, json)
Hash identifier: QSAgSRjokudYJxpMnaTM281gXJkts1jpGv1CiPpx1pA=
Subject key identifier: 7E:28:66:9F:AD:1E:56:BC:8A:B0:91:C5:E3:86:8E:28:71:9F:54:14
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018CEA4504CBE0B1E06BCE216638AB17E4EF
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/fihmn60eVryKsJHF44aOKHGfVBQ.roa
Signing time: Mon 08 Jan 2024 18:10:40 +0000
ROA not before: Mon 08 Jan 2024 18:10:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 08 Jan 2024 19:04:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ea:45:04:cb:e0:b1:e0:6b:ce:21:66:38:ab:17:e4:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Jan 8 18:10:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e28669fad1e56bc8ab091c5e3868e28719f5414
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:14:28:51:be:6d:87:18:e7:9e:fc:83:fc:d9:
fd:a2:52:d4:0a:76:92:74:62:67:79:37:fe:d1:0f:
19:67:df:78:d7:77:16:c4:ec:ec:b6:c4:a3:9e:ba:
5b:d2:f0:48:66:94:44:c2:82:5d:7d:ea:3e:94:36:
3b:3c:62:35:6a:18:75:82:cb:4b:02:4a:b6:d5:65:
ea:a9:64:21:b5:dc:68:13:97:cc:66:a8:8b:4a:4e:
0f:3a:2b:66:07:ce:09:34:b6:40:f6:f0:5d:70:2f:
b2:56:02:be:c8:98:9f:58:c6:be:dc:a9:1b:15:5b:
bf:66:b2:a3:ff:ad:e7:ca:d6:78:de:37:67:f5:70:
73:ad:48:84:75:dc:fe:62:25:8c:43:3b:58:68:ce:
ce:4c:2e:0d:85:90:89:da:22:9e:c6:9f:c1:24:96:
5c:89:c0:5b:d6:fe:3a:a9:94:38:ce:e3:5f:e7:e2:
e5:f4:dd:b3:39:d3:3e:d4:db:06:87:ee:85:5b:c1:
73:90:bc:57:66:42:a5:d3:9c:b6:81:25:03:d4:a5:
e8:80:1d:da:06:79:07:b6:d5:97:9f:6b:54:51:fb:
85:d2:04:cb:f6:03:37:fa:7b:b6:50:53:d0:a4:49:
34:d4:fa:ba:f9:4d:64:d3:12:21:d4:88:55:7b:bb:
5e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:28:66:9F:AD:1E:56:BC:8A:B0:91:C5:E3:86:8E:28:71:9F:54:14
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/fihmn60eVryKsJHF44aOKHGfVBQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
1d:1b:45:68:be:01:62:e7:ae:87:0e:91:50:a9:d6:50:81:04:
10:55:64:58:c0:ca:d6:b8:3e:40:a5:b1:7a:5d:1a:5d:e3:df:
22:09:86:9c:99:d5:1c:cf:d8:c5:b4:41:1d:54:c0:de:14:45:
f1:87:e1:ad:54:ed:03:c3:a7:c2:a4:3b:0d:9d:6e:4c:dc:99:
c2:97:ce:17:89:db:c8:c6:df:7b:f5:41:b3:f8:59:98:47:3a:
b3:8b:f8:dc:88:dc:d1:a8:87:dd:1b:51:60:a9:54:7a:81:3a:
f4:95:7e:d2:3b:1d:4f:84:ea:59:51:78:7b:5b:01:bd:f4:8b:
49:dc:e9:d1:e0:99:ac:ff:4f:f7:93:86:15:25:6e:92:4d:a2:
af:8d:5a:ac:14:0a:fc:d2:13:7c:1b:15:5d:c5:aa:a8:cf:56:
ae:87:e5:4a:00:3e:17:cc:5f:2a:12:ed:dd:e3:87:6d:db:cc:
0b:56:10:f0:7e:40:ef:be:7d:02:fc:68:f6:6c:3e:c3:dd:eb:
ac:d3:39:a2:6c:2e:53:7a:d7:1d:64:b2:98:3b:5a:4e:8d:4e:
15:5b:8e:45:fe:bb:bc:16:7a:33:1a:90:6b:92:08:e4:ff:e8:
ec:f0:19:50:37:50:5a:01:b0:68:6a:72:fe:01:40:e6:55:20:
b5:e0:06:1f
-----BEGIN CERTIFICATE-----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Generated at Mon Jan 8 21:36:28 2024 by rpki-client on console.sobornost.net