Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Pi0iD27Kr0BYYgyNImbeAT-s8Lc.roa
File: Pi0iD27Kr0BYYgyNImbeAT-s8Lc.roa (raw, json)
Hash identifier: C5Jk5e9FAoyKzt5qLp75KC7QCu55rxukR/HZexuJkl0=
Subject key identifier: 3E:2D:22:0F:6E:CA:AF:40:58:62:0C:8D:22:66:DE:01:3F:AC:F0:B7
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FE43CE71244C4E65B885285C0E237D1B2
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Pi0iD27Kr0BYYgyNImbeAT-s8Lc.roa
Signing time: Tue 04 Jun 2024 17:12:27 +0000
ROA not before: Tue 04 Jun 2024 17:12:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 04 Jun 2024 18:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e4:3c:e7:12:44:c4:e6:5b:88:52:85:c0:e2:37:d1:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 4 17:12:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3e2d220f6ecaaf4058620c8d2266de013facf0b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3b:40:64:cb:4b:25:42:61:06:ce:86:48:a9:
3b:5a:6e:71:e8:7d:0e:0d:27:f0:96:9f:87:37:da:
30:56:77:8c:65:dc:93:f7:58:cf:94:3e:20:ec:e1:
00:49:f0:ee:3d:7d:66:c7:f4:3a:b7:3d:95:7d:79:
7e:b1:26:0a:5d:ec:b1:85:dc:5f:56:82:52:46:cf:
46:a9:df:bd:bc:d0:de:97:c2:bb:a1:f3:60:cd:a3:
05:80:d5:e9:45:e2:a7:4e:80:a1:52:ac:29:67:60:
3c:f3:08:a7:bd:58:c1:06:72:48:18:6b:66:61:ca:
60:91:a2:26:92:38:6e:30:da:23:8a:bc:83:3c:b5:
9e:9b:7a:cc:c6:c7:8c:b3:7d:a8:bf:23:26:fe:85:
58:28:18:d8:05:df:00:d0:98:6e:88:92:50:a5:8f:
f2:32:4a:fa:2a:59:d4:e6:a0:59:60:21:61:ac:69:
a7:a0:1d:16:c4:a6:0b:fb:da:1d:26:2d:7f:23:01:
95:55:56:8b:3b:cc:34:c0:a2:9c:70:5e:79:6c:52:
b4:49:46:c1:ae:c7:bc:c3:3f:20:3e:df:b0:99:ca:
9c:eb:e6:6a:e5:6c:bf:1b:ba:2c:b4:a6:1c:14:2d:
82:4c:e2:7d:30:cd:d7:c4:37:a4:81:7f:2e:73:3d:
47:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:2D:22:0F:6E:CA:AF:40:58:62:0C:8D:22:66:DE:01:3F:AC:F0:B7
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Pi0iD27Kr0BYYgyNImbeAT-s8Lc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
33:ba:cc:6b:ac:d9:70:ca:86:e0:57:fc:b1:ba:33:f2:0d:80:
f5:65:2c:6e:26:e6:c8:57:d0:fc:b2:8d:ab:02:5b:7a:54:27:
8f:57:b9:ec:d4:b8:66:78:63:7c:d7:92:b2:2c:6c:ed:9f:bd:
f3:7b:8a:d3:6e:b9:09:bd:39:a9:24:39:f2:9f:c9:94:1d:46:
84:3b:a7:d2:63:ca:dd:17:c5:bf:b8:32:f6:43:c9:fc:6d:ff:
23:e5:a8:7c:3d:cd:2e:7f:71:15:b2:fd:e2:d3:e0:d5:9d:ff:
6f:4d:43:a9:a9:23:3f:c1:31:1e:7a:76:cb:4a:ce:7a:c6:78:
0b:a6:6a:eb:cf:bc:92:00:9c:9f:6b:61:1d:32:f0:d6:5f:66:
b7:82:78:17:df:d2:c9:32:f4:14:cc:3a:42:c6:92:e0:37:1d:
b9:40:97:b4:01:31:36:5b:b3:58:f2:74:77:3e:70:eb:22:08:
81:c0:90:31:2a:cd:31:ed:52:a5:2f:66:03:96:63:9e:a2:32:
a0:cd:99:96:30:ac:09:47:49:85:48:78:79:5c:53:41:bc:c7:
2f:d0:8a:23:d7:7b:c3:7d:0b:23:17:c3:e4:05:3b:f5:54:42:
8f:ad:bd:e2:c4:b6:aa:1c:35:fe:c9:57:6f:d2:ce:e1:e8:8b:
f6:34:12:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 4 23:13:36 2024 by rpki-client on console.sobornost.net