Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/iumOX_5XnJROAmDrZTYPwMUnIuI.roa
File: iumOX_5XnJROAmDrZTYPwMUnIuI.roa (raw, json)
Hash identifier: zLIkwpITva4o2syvlPXiWWHL6VWKGRDNsCTDfM8ZK0Q=
Subject key identifier: 8A:E9:8E:5F:FE:57:9C:94:4E:02:60:EB:65:36:0F:C0:C5:27:22:E2
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E4F1D50E7F5803A27576F3866D0AE87B5
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/iumOX_5XnJROAmDrZTYPwMUnIuI.roa
Signing time: Mon 18 Mar 2024 01:11:44 +0000
ROA not before: Mon 18 Mar 2024 01:11:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
Validation: Failed, certificate revoked on Mon 18 Mar 2024 02:04:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:4f:1d:50:e7:f5:80:3a:27:57:6f:38:66:d0:ae:87:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 18 01:11:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8ae98e5ffe579c944e0260eb65360fc0c52722e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:96:ee:55:cc:13:b4:84:ab:37:d7:3b:7d:6d:
00:80:a5:d1:a9:2f:08:56:ca:8e:da:f1:1f:14:fa:
0c:a9:aa:39:bf:e1:26:9e:39:c7:4c:3f:2e:25:75:
9f:9a:ae:6f:24:53:d0:64:bf:15:33:87:33:10:1e:
14:89:82:b1:bc:20:2a:fb:af:f3:c0:b0:e2:33:7a:
66:96:0a:5b:9f:e3:33:e5:05:75:1b:b6:83:e6:9f:
0d:82:53:cd:cd:37:78:04:6e:b7:de:43:b4:95:d2:
1c:a8:cd:3f:1e:27:f5:75:fc:8d:ee:89:49:bc:c4:
79:e7:b0:04:88:86:6e:9f:ee:63:ba:ff:3d:49:db:
dd:a7:8b:bc:78:8c:90:6f:f1:b7:e7:85:44:04:29:
8e:67:42:ee:23:5a:d0:2e:35:b5:db:de:cb:38:35:
78:81:15:95:6b:97:a2:0a:bc:4b:3b:e6:b3:83:11:
01:34:cc:42:84:45:95:dd:0c:83:c1:ad:bb:53:ee:
03:f2:ce:0e:f6:e2:b8:9e:7e:7a:16:1d:1c:91:cb:
0a:8e:3a:da:2e:38:a0:d9:19:f4:3c:4c:10:e4:fb:
a1:94:58:0c:1c:c0:13:1e:25:2a:5c:f0:97:90:ae:
c9:37:70:33:ca:51:f8:e4:d6:a8:dc:d5:f9:b1:62:
b6:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:E9:8E:5F:FE:57:9C:94:4E:02:60:EB:65:36:0F:C0:C5:27:22:E2
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/iumOX_5XnJROAmDrZTYPwMUnIuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
76:c2:a1:c3:81:9d:3c:d3:a4:b0:a7:53:0a:d3:4a:33:85:bc:
08:49:30:ef:36:6b:b0:f8:2e:34:37:96:d1:19:68:11:69:59:
3f:f0:07:81:86:28:81:41:e9:4d:37:59:b9:79:f7:a1:72:28:
81:62:75:95:c0:8b:65:6c:99:60:76:72:52:e7:9f:a0:66:b8:
89:9d:ed:33:a2:1e:33:c6:1e:b9:79:3e:8e:f2:ed:bd:e6:13:
cd:c9:f4:ac:c8:f3:84:3d:0c:9e:a2:cb:e1:15:99:51:a6:ed:
79:c9:1c:b8:30:fd:4b:89:dc:da:af:1f:5c:8c:2b:12:17:da:
6a:13:9d:4d:d1:c3:4d:a7:44:3c:93:a7:91:1a:d5:3f:22:4d:
9a:da:8c:dc:06:0f:09:e1:f3:be:f7:87:34:95:b0:62:ba:d6:
05:56:a0:70:40:1e:7a:2f:da:a0:b1:91:9a:b5:ee:90:a0:84:
f3:56:c0:02:7b:2f:3f:91:25:aa:c2:2a:a2:90:86:72:2f:ac:
df:9b:06:e0:2c:b0:98:2b:9b:c1:df:df:07:09:2d:29:4b:87:
7a:bc:b1:83:db:7a:7d:97:69:57:3b:38:20:03:98:3e:d1:b2:
dd:6d:5e:63:31:a1:56:cb:35:31:24:61:5f:b4:aa:fe:26:73:
8e:de:83:c5
-----BEGIN CERTIFICATE-----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Generated at Mon Mar 18 07:18:10 2024 by rpki-client on console.sobornost.net