Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/mTUYa_jM7gu8kxPyvXZ0vMUYx-c.roa
File: mTUYa_jM7gu8kxPyvXZ0vMUYx-c.roa (raw, json)
Hash identifier: Etb/ZTPILIaeP+2xVNIjw/U5o1rTm5reWYknTzlJPkk=
Subject key identifier: 99:35:18:6B:F8:CC:EE:0B:BC:93:13:F2:BD:76:74:BC:C5:18:C7:E7
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E86E6A1640592FD08D8B7349D139FD950
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/mTUYa_jM7gu8kxPyvXZ0vMUYx-c.roa
Signing time: Thu 28 Mar 2024 21:10:45 +0000
ROA not before: Thu 28 Mar 2024 21:10:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
2001:67c:64:ffff:0:18e:76c8:d5da/128 maxlen: 128
Validation: Failed, certificate revoked on Thu 28 Mar 2024 22:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:86:e6:a1:64:05:92:fd:08:d8:b7:34:9d:13:9f:d9:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 28 21:10:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9935186bf8ccee0bbc9313f2bd7674bcc518c7e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:24:b8:de:fa:85:ed:0f:7f:9a:8a:36:6e:74:
28:0a:d3:c2:03:c9:77:2e:b9:21:b1:b6:8d:cb:31:
4e:e8:02:02:58:53:2b:94:4a:c0:9b:05:26:c8:2d:
8d:6a:18:cf:7b:b4:72:29:c8:62:12:a7:ae:c3:ee:
36:1d:ab:bc:56:63:3a:a3:6e:81:00:6d:57:72:f4:
e6:df:26:61:26:cc:46:17:93:12:5c:f7:77:b9:db:
9e:11:96:38:87:cc:77:a2:af:37:c9:14:d0:70:e5:
6b:05:e1:84:99:30:99:32:ca:fd:e9:a8:26:1c:6f:
e4:15:da:cd:81:28:1e:af:45:1e:97:30:25:10:ab:
eb:55:3b:2e:52:44:ff:24:ec:57:36:cf:5b:33:aa:
80:64:13:33:cd:42:4c:57:16:9d:96:52:03:5d:e2:
78:57:f5:4a:6e:8d:78:71:89:f5:8a:99:bb:54:95:
1b:05:e1:59:6a:cc:a7:6e:42:78:49:5e:2d:ef:b7:
7b:05:d8:f9:2c:6c:d9:ca:4a:7f:64:3f:b9:7b:2d:
71:2d:09:d7:9f:63:61:40:aa:9a:e5:b1:97:dd:10:
8b:fa:ab:75:75:ad:39:2b:de:f5:01:bf:a4:ad:36:
e1:9f:1c:37:8f:83:31:78:a7:4d:f9:43:59:0a:c8:
83:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:35:18:6B:F8:CC:EE:0B:BC:93:13:F2:BD:76:74:BC:C5:18:C7:E7
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/mTUYa_jM7gu8kxPyvXZ0vMUYx-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
26:0e:26:08:65:98:c5:ad:05:77:b1:c9:9a:6f:22:e0:48:b3:
c1:7d:c0:61:e0:19:cd:11:55:b9:f5:37:c7:1f:cc:13:86:df:
47:2d:28:93:e8:c0:b8:34:c0:02:8f:1c:f9:19:c1:4e:68:3b:
5e:3e:c4:ac:35:c4:4b:49:be:44:7c:69:e8:ef:cf:71:d3:88:
1f:c8:25:b0:b4:5c:31:04:d9:53:63:59:97:6c:45:7c:89:c1:
4c:72:78:3c:d1:75:13:9b:f5:94:7c:b1:e5:7c:d6:3e:a4:13:
58:51:83:a3:93:3e:b8:2d:96:f3:35:ee:6b:15:86:67:21:8f:
5c:24:ab:88:d1:41:6a:b0:3b:8c:50:74:d3:f7:b9:4d:b9:e6:
09:f2:8f:f3:3a:26:c5:12:5a:3c:06:62:e5:0d:9f:6a:f6:ee:
93:fe:22:a2:77:5d:d0:a3:56:0b:5c:79:b6:73:02:c1:53:f5:
51:ad:ad:f0:c1:5e:70:38:bd:8d:a6:81:2f:06:0e:24:8a:83:
eb:4e:94:18:2b:7f:c2:1c:6b:a1:8e:35:d7:0d:c4:e7:66:1c:
a4:2d:b6:b4:df:58:80:be:e3:de:73:51:ec:86:ff:d8:40:fa:
0c:97:c6:b1:2b:59:6f:9d:9e:94:ca:31:6c:94:31:0b:1b:fd:
2e:b1:d4:24
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY6G5qFkBZL9CNi3NJ0Tn9lQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzYjNkYTNlY2I4YTdkNDMzZGUzODMzODY2N2IzNWU2OGRm
NzNmOGMwHhcNMjQwMzI4MjExMDQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OTM1MTg2YmY4Y2NlZTBiYmM5MzEzZjJiZDc2NzRiY2M1MThjN2U3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApiS43vqF7Q9/moo2bnQoCtPCA8l3
LrkhsbaNyzFO6AICWFMrlErAmwUmyC2NahjPe7RyKchiEqeuw+42Hau8VmM6o26B
AG1XcvTm3yZhJsxGF5MSXPd3udueEZY4h8x3oq83yRTQcOVrBeGEmTCZMsr96agm
HG/kFdrNgSger0UelzAlEKvrVTsuUkT/JOxXNs9bM6qAZBMzzUJMVxadllIDXeJ4
V/VKbo14cYn1ipm7VJUbBeFZasynbkJ4SV4t77d7Bdj5LGzZykp/ZD+5ey1xLQnX
n2NhQKqa5bGX3RCL+qt1da05K971Ab+krTbhnxw3j4MxeKdN+UNZCsiDdwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFJk1GGv4zO4LvJMT8r12dLzFGMfnMB8GA1UdIwQY
MBaAFNOz2j7Lin1DPeODOGZ7NeaN9z+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODct
YzUzOTc5ZDY2Y2E1LzEvbVRVWWFfak03Z3U4a3hQeXZYWjB2TVVZeC1jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9lMDUyMGQtOWJhNi00MWEzLThmODctYzUzOTc5ZDY2Y2E1
LzEvMDdQYVBzdUtmVU05NDRNNFpuczE1bzMzUDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBACYOJghlmMWtBXexyZpv
IuBIs8F9wGHgGc0RVbn1N8cfzBOG30ctKJPowLg0wAKPHPkZwU5oO14+xKw1xEtJ
vkR8aejvz3HTiB/IJbC0XDEE2VNjWZdsRXyJwUxyeDzRdROb9ZR8seV81j6kE1hR
g6OTPrgtlvM17msVhmchj1wkq4jRQWqwO4xQdNP3uU255gnyj/M6JsUSWjwGYuUN
n2r27pP+IqJ3XdCjVgtcebZzAsFT9VGtrfDBXnA4vY2mgS8GDiSKg+tOlBgrf8Ic
a6GONdcNxOdmHKQttrTfWIC+495zUeyG/9hA+gyXxrErWW+dnpTKMWyUMQsb/S6x
1CQ=
-----END CERTIFICATE-----
Generated at Fri Mar 29 05:42:24 2024 by rpki-client on console.sobornost.net