Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/k12YPUcrY-OdUVkNZoo70Ch1mdU.roa
File: k12YPUcrY-OdUVkNZoo70Ch1mdU.roa (raw, json)
Hash identifier: 03wJmNd1q3CSOXisb7pHaHePU+XFCZXqaEBPPOjnLdE=
Subject key identifier: 93:5D:98:3D:47:2B:63:E3:9D:51:59:0D:66:8A:3B:D0:28:75:99:D5
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E073B43EECD96A8D115FA7D4095DE4BDB
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/k12YPUcrY-OdUVkNZoo70Ch1mdU.roa
Signing time: Mon 04 Mar 2024 02:11:48 +0000
ROA not before: Mon 04 Mar 2024 02:11:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
Validation: Failed, certificate revoked on Mon 04 Mar 2024 03:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:07:3b:43:ee:cd:96:a8:d1:15:fa:7d:40:95:de:4b:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 4 02:11:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=935d983d472b63e39d51590d668a3bd0287599d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a6:78:50:10:74:98:70:fd:da:ba:11:64:5f:
01:d9:79:ce:59:a9:fe:f5:cc:18:5b:f1:14:5a:9c:
d3:77:ff:80:e7:65:ad:91:76:a4:ec:6e:81:73:d0:
9b:80:9d:40:92:0f:23:cb:d9:0e:5d:a9:ab:9a:d7:
a6:ea:fa:e6:61:43:31:3d:e8:17:70:d2:39:fb:2d:
c9:8b:4b:c7:5b:75:88:a3:ce:e5:24:5c:0c:d8:56:
ff:65:2d:80:3c:4d:12:07:8f:01:20:06:08:47:ef:
42:49:36:8a:63:c2:5d:96:ce:ed:7a:5e:dc:53:92:
9a:7c:94:42:8d:ee:ee:a0:47:4f:eb:da:2f:90:79:
bf:da:a8:27:be:37:01:23:ad:5c:5c:03:10:5b:17:
5f:be:9d:a5:0a:db:14:1c:fb:34:36:83:4d:99:a9:
25:42:06:42:6e:19:cd:e6:53:c2:36:c3:b2:48:4d:
b9:05:d7:fb:50:18:c5:a8:e5:d8:9b:7c:45:a0:7e:
95:28:be:e9:d1:91:90:3d:bb:90:bf:33:0f:25:7d:
a3:0e:d6:9b:db:bd:3c:3a:98:a1:47:0d:7f:52:b4:
ff:59:f8:01:50:a0:da:3e:00:46:7d:11:a0:88:66:
df:82:9a:be:ca:79:b2:af:ab:ff:04:4f:e4:a7:ce:
18:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:5D:98:3D:47:2B:63:E3:9D:51:59:0D:66:8A:3B:D0:28:75:99:D5
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/k12YPUcrY-OdUVkNZoo70Ch1mdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
60:24:c1:0e:77:26:7a:fe:be:a2:9b:ed:b7:d3:79:1a:b4:06:
24:a8:1d:d2:ba:7c:ff:d6:9b:06:0e:dc:e8:d9:53:64:77:8e:
bc:f0:c1:33:55:c4:7b:d2:47:27:b5:d7:d8:c1:76:ef:3b:1a:
b8:cf:1e:df:88:94:ef:cc:74:e0:c2:72:10:94:6d:19:a5:55:
42:33:fa:07:e3:8a:b3:b5:37:d3:4c:d2:ba:07:72:e6:d4:b3:
69:92:bc:43:0b:bb:87:0b:bd:01:32:b1:00:3d:67:fb:af:20:
3c:f4:99:a8:7c:8c:c8:85:82:f4:50:39:3f:73:1e:33:10:07:
dd:bf:a1:c5:1a:b9:af:97:ce:e1:96:dc:eb:73:f7:3c:5c:0f:
53:74:35:35:78:3d:5d:17:d9:3f:5a:c4:e3:44:33:86:28:9b:
07:7e:ed:5f:a6:81:4b:7d:bf:ad:1a:99:11:b5:a4:b5:fb:4f:
a7:bf:b7:bf:90:c3:45:39:16:31:81:de:c8:5c:20:00:59:65:
f6:a1:bf:39:16:55:f2:cf:06:c5:05:ea:e9:ab:fe:49:86:c8:
fa:0e:be:de:2d:b6:18:1a:3d:98:aa:bd:4f:49:72:78:c6:4a:
38:4e:25:f0:f5:f6:75:d6:55:29:31:26:b0:86:ac:a6:98:66:
36:b5:dd:d6
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY4HO0PuzZao0RX6fUCV3kvbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjQwMzA0MDIxMTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MzVkOTgzZDQ3MmI2M2UzOWQ1MTU5MGQ2NjhhM2JkMDI4NzU5OWQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApKZ4UBB0mHD92roRZF8B2XnOWan+
9cwYW/EUWpzTd/+A52WtkXak7G6Bc9CbgJ1Akg8jy9kOXamrmtem6vrmYUMxPegX
cNI5+y3Ji0vHW3WIo87lJFwM2Fb/ZS2APE0SB48BIAYIR+9CSTaKY8Jdls7tel7c
U5KafJRCje7uoEdP69ovkHm/2qgnvjcBI61cXAMQWxdfvp2lCtsUHPs0NoNNmakl
QgZCbhnN5lPCNsOySE25Bdf7UBjFqOXYm3xFoH6VKL7p0ZGQPbuQvzMPJX2jDtab
2708OpihRw1/UrT/WfgBUKDaPgBGfRGgiGbfgpq+ynmyr6v/BE/kp84Y/QIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFJNdmD1HK2PjnVFZDWaKO9AodZnVMB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvazEyWVBVY3JZLU9kVVZrTlpvbzcwQ2gxbWRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAGAkwQ53Jnr+vqKb7bfT
eRq0BiSoHdK6fP/WmwYO3OjZU2R3jrzwwTNVxHvSRye119jBdu87GrjPHt+IlO/M
dODCchCUbRmlVUIz+gfjirO1N9NM0roHcubUs2mSvEMLu4cLvQEysQA9Z/uvIDz0
mah8jMiFgvRQOT9zHjMQB92/ocUaua+XzuGW3Otz9zxcD1N0NTV4PV0X2T9axONE
M4Yomwd+7V+mgUt9v60amRG1pLX7T6e/t7+Qw0U5FjGB3shcIABZZfahvzkWVfLP
BsUF6umr/kmGyPoOvt4tthgaPZiqvU9JcnjGSjhOJfD19nXWVSkxJrCGrKaYZja1
3dY=
-----END CERTIFICATE-----
Generated at Mon Mar 4 08:25:26 2024 by rpki-client on console.sobornost.net