Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/urowVdv9XGpyU3GKbpy296PkhGU.roa
File: urowVdv9XGpyU3GKbpy296PkhGU.roa (raw, json)
Hash identifier: JosRBstbY3QZPee52YjDqCkE6fjMfYshEV4fKwXoHaY=
Subject key identifier: BA:BA:30:55:DB:FD:5C:6A:72:53:71:8A:6E:9C:B6:F7:A3:E4:84:65
Certificate issuer: /CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Certificate serial: 018E818CFF603794433F0654D429EFFA9018
Authority key identifier: D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/urowVdv9XGpyU3GKbpy296PkhGU.roa
Signing time: Wed 27 Mar 2024 20:14:45 +0000
ROA not before: Wed 27 Mar 2024 20:14:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18d:c109:b478/128 maxlen: 128
2001:67c:64:ffff:0:18d:e84f:370a/128 maxlen: 128
2001:67c:64:ffff:0:18e:76c8:d5da/128 maxlen: 128
Validation: Failed, certificate revoked on Wed 27 Mar 2024 21:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:81:8c:ff:60:37:94:43:3f:06:54:d4:29:ef:fa:90:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3b3da3ecb8a7d433de38338667b35e68df73f8c
Validity
Not Before: Mar 27 20:14:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=baba3055dbfd5c6a7253718a6e9cb6f7a3e48465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:48:bd:90:e4:52:0a:4e:42:ef:6c:b4:d7:ae:
f8:29:1b:51:4a:c4:f2:d0:fc:23:76:db:25:41:3b:
23:56:9a:41:6a:a3:ef:f0:25:7f:20:5d:50:6e:ee:
b5:77:ce:7d:c9:e2:bb:fe:56:f9:5b:76:9b:f5:24:
77:b9:7b:c2:1e:2a:ef:28:30:f0:c4:55:84:aa:ea:
65:49:66:4f:43:bf:ef:44:ea:b0:26:20:bd:c8:57:
08:2f:ef:25:d5:b9:e6:25:5f:8a:ab:70:80:b9:c6:
80:ce:73:d9:32:8a:4f:73:ba:f0:ff:44:76:1f:8a:
fd:83:0c:73:80:ed:82:e3:00:b6:3e:41:d2:67:3c:
d0:f3:7a:61:ac:21:be:4d:16:99:f2:3c:e1:db:67:
d8:58:a6:42:a2:86:b8:ec:35:4e:b8:53:85:87:15:
59:29:6d:dc:2e:7b:d0:c2:bf:92:02:90:be:60:7d:
67:aa:bf:e9:7a:b2:00:31:4a:45:18:b5:e2:d0:b5:
14:4e:8a:53:23:ca:19:d9:fd:67:99:22:14:09:a6:
90:cf:d4:44:d9:8e:f1:ae:52:cf:68:2e:d1:a8:f2:
23:65:49:4c:52:aa:be:34:2d:25:6f:9b:4a:af:97:
dc:f1:61:bb:9e:f4:e7:c2:aa:5c:21:0f:c3:27:d9:
d2:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:BA:30:55:DB:FD:5C:6A:72:53:71:8A:6E:9C:B6:F7:A3:E4:84:65
X509v3 Authority Key Identifier:
keyid:D3:B3:DA:3E:CB:8A:7D:43:3D:E3:83:38:66:7B:35:E6:8D:F7:3F:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/07PaPsuKfUM944M4Zns15o33P4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/urowVdv9XGpyU3GKbpy296PkhGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e0520d-9ba6-41a3-8f87-c53979d66ca5/1/07PaPsuKfUM944M4Zns15o33P4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
12:1d:d2:56:2a:c3:2f:8e:0c:04:6a:69:db:5e:cb:cb:8e:7f:
00:49:8a:c9:4a:d6:93:00:01:3a:77:45:d0:95:4a:19:44:bf:
a1:10:2e:87:14:ad:97:71:e0:b2:30:33:d6:6a:70:73:0d:99:
0c:a2:5c:00:36:67:4a:ad:d7:fa:c5:3f:51:dc:f5:0a:0a:fb:
81:c5:03:4a:f3:f3:3e:0d:37:69:21:74:57:45:16:d2:9f:74:
5e:80:3a:19:3e:ef:5b:3e:12:eb:bf:6a:6c:8d:43:a7:5f:2e:
bb:6e:48:8e:d2:0a:44:ff:4a:0a:2b:ca:36:cc:9a:eb:ce:c3:
bf:52:ee:13:15:e9:dd:14:37:ff:62:3f:ca:c6:e5:1e:15:9c:
d0:6c:c8:0e:d1:04:8a:2d:0a:d1:c7:75:f2:f5:45:eb:c9:1b:
99:6f:a4:e1:1b:c1:c6:61:c0:a9:65:97:18:03:27:bf:3c:29:
e4:ee:e7:08:79:d8:f4:e5:fb:d9:b6:f4:8e:41:a7:8b:14:cc:
61:97:16:21:7e:98:c3:fd:84:04:79:d8:c6:95:70:34:85:b7:
82:c1:82:78:e5:89:c2:9c:a8:16:ee:79:79:81:28:71:ac:a6:
c6:b0:7f:4e:91:99:83:a3:48:56:e7:4c:c4:66:79:36:79:97:
81:07:d7:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 07:01:11 2024 by rpki-client on console.sobornost.net