Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/2wy9YnB2vp_LWDutrdJpNXbS3Bo.roa
File: 2wy9YnB2vp_LWDutrdJpNXbS3Bo.roa (raw, json)
Hash identifier: RU/5KQcuwCMtCY/paOfI9pjK311TDy/N0AyGN5LBvDE=
Subject key identifier: DB:0C:BD:62:70:76:BE:9F:CB:58:3B:AD:AD:D2:69:35:76:D2:DC:1A
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01901BD1373A712C679E8514EAD7097AA715
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/2wy9YnB2vp_LWDutrdJpNXbS3Bo.roa
Signing time: Sat 15 Jun 2024 12:13:34 +0000
ROA not before: Sat 15 Jun 2024 12:13:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 15 Jun 2024 13:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1b:d1:37:3a:71:2c:67:9e:85:14:ea:d7:09:7a:a7:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 15 12:13:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=db0cbd627076be9fcb583badadd2693576d2dc1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:de:3e:1d:56:7d:a5:d2:d9:1d:c2:91:52:66:
1a:f7:d1:be:6c:91:a3:0b:5f:bc:4e:48:17:49:cf:
c7:5b:87:fa:bd:90:31:b5:a9:35:8d:a1:50:b3:59:
e7:ef:86:bf:be:7f:15:56:6c:dc:a1:ec:bf:5c:81:
59:9a:10:d5:50:d8:fd:c5:78:18:e3:c7:72:92:eb:
0a:49:f5:9f:06:14:51:0e:eb:ee:46:19:93:02:5c:
a9:99:2d:df:ec:65:19:91:7b:ee:ac:3d:69:b8:0e:
67:e0:47:bc:dc:07:73:d4:e3:c8:fb:14:60:28:3e:
22:bb:4b:2c:f3:13:32:4e:c6:61:8d:fe:b5:3e:21:
fb:16:7c:96:c0:0f:22:ca:b3:3f:99:5f:88:45:88:
0b:c3:80:91:b3:ca:35:ca:c2:27:b8:ef:05:a9:0b:
75:06:da:dc:8f:aa:20:f9:26:a0:8e:6b:5f:56:a1:
1e:22:ab:96:16:d3:cf:ea:c0:b0:6d:2a:b3:05:e8:
46:73:02:be:f9:d3:3c:f1:4f:49:7a:a9:ba:09:92:
cb:54:71:20:29:11:87:94:61:df:ad:a9:72:b2:ce:
bc:87:04:c8:ad:fb:f3:04:73:c8:12:8e:40:6b:96:
99:07:0a:76:7b:38:21:e1:3c:83:ed:bc:a4:24:31:
90:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:0C:BD:62:70:76:BE:9F:CB:58:3B:AD:AD:D2:69:35:76:D2:DC:1A
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/2wy9YnB2vp_LWDutrdJpNXbS3Bo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
96:a0:07:d6:1c:75:45:33:aa:93:77:28:55:f4:aa:3b:36:0d:
5d:37:78:f9:fd:8f:23:cd:12:64:36:2e:a3:a0:86:83:4f:28:
8a:68:38:cb:1a:d4:49:33:d5:0c:97:78:f5:eb:fa:2b:b9:3f:
11:c7:12:7f:60:e8:66:3e:c0:6e:72:3c:2d:04:f6:24:89:43:
21:d7:e3:fd:a9:1b:cb:2c:29:2c:2c:72:70:d3:9e:e2:28:d5:
fd:f5:87:31:82:a1:14:14:d4:51:50:35:65:1d:e4:82:19:7c:
fd:86:a6:eb:79:d4:28:e2:55:45:2f:fd:03:67:f8:5b:c7:1c:
f3:33:e4:7e:7f:c2:36:2f:f8:dd:2c:33:2d:7e:c4:c9:b2:07:
2a:a7:a2:45:ba:b2:90:25:51:37:4b:f0:ab:11:43:d4:e2:8d:
9c:64:e2:8e:b0:9c:95:08:0a:33:bc:3c:c2:98:92:c2:59:b7:
58:99:0c:4d:41:6b:ca:c7:e8:6b:1e:fa:94:22:0a:0e:87:1e:
a0:de:34:b6:c3:0d:aa:8c:88:0e:fe:4d:e9:ee:a5:ad:84:03:
e6:fb:6d:ff:be:3c:44:00:d3:d2:b6:5a:97:5d:f0:38:62:4f:
74:93:95:d9:d2:fc:3b:b4:90:8c:ed:e4:fe:a0:cb:a0:ad:3c:
f6:4a:7b:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 19:10:30 2024 by rpki-client on console.sobornost.net