Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/YIcG_DZugfblssuLoopjP17C4ok.roa
File: YIcG_DZugfblssuLoopjP17C4ok.roa (raw, json)
Hash identifier: MDb9fqUipT8K2rRE60UU2cCMPM4IGIowfQbyCb55P3A=
Subject key identifier: 60:87:06:FC:36:6E:81:F6:E5:B2:CB:8B:A2:8A:63:3F:5E:C2:E2:89
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01904D5B1A9742CF4807C49927B46AF9353A
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/YIcG_DZugfblssuLoopjP17C4ok.roa
Signing time: Tue 25 Jun 2024 03:05:34 +0000
ROA not before: Tue 25 Jun 2024 03:05:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:190:4d5a:4f48/128 maxlen: 128
Validation: Failed, certificate revoked on Tue 25 Jun 2024 03:11:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4d:5b:1a:97:42:cf:48:07:c4:99:27:b4:6a:f9:35:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 25 03:05:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=608706fc366e81f6e5b2cb8ba28a633f5ec2e289
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b6:2e:62:f8:36:3e:36:41:42:6f:78:d7:4b:
18:9f:fb:56:cd:7a:bf:9f:55:40:50:fb:aa:0a:ce:
5d:02:68:6e:67:e9:12:de:da:bc:f7:bd:28:10:2d:
a5:b0:0f:b9:9e:65:7e:7c:a6:ca:c6:00:9b:39:46:
33:f3:16:1f:09:96:3d:4f:69:d7:d8:6a:9e:a7:49:
25:f1:eb:a8:4b:26:c7:e2:f1:7f:26:e5:9e:11:45:
23:62:3d:37:7a:91:93:52:e6:e9:ec:7f:c5:eb:39:
a8:78:28:da:e1:c3:de:4f:9e:3e:ff:e6:cf:2a:9f:
cf:45:ec:a7:ff:b5:2e:0b:2c:93:e1:59:9b:0f:5f:
28:b8:0c:4d:2b:6b:bd:dc:08:ab:b1:e4:d6:c8:6c:
69:ab:73:c6:ea:80:f8:88:a7:ef:7f:8d:f2:93:ee:
95:0e:25:f7:d4:ab:ce:e1:4b:c6:7f:2d:b3:51:98:
8e:b5:f5:27:e5:9a:9a:c4:9d:d1:b2:a3:c2:08:42:
ce:ac:bb:a7:54:fa:85:e5:a3:8f:a1:53:61:b7:be:
08:70:7a:80:b1:1c:de:95:c9:f8:26:fd:47:a2:26:
3d:de:64:06:8b:3b:dd:b8:df:66:40:fa:fc:4a:82:
27:7a:9b:bb:c3:db:b4:f2:25:3a:00:de:74:1f:e4:
f1:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:87:06:FC:36:6E:81:F6:E5:B2:CB:8B:A2:8A:63:3F:5E:C2:E2:89
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/YIcG_DZugfblssuLoopjP17C4ok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
12:aa:7f:07:1d:ae:d9:24:64:6d:a9:b5:ee:95:f9:fd:98:46:
58:b9:9d:8d:ba:cb:bc:1c:82:dd:ec:9b:cc:e9:11:22:76:13:
1f:3e:f0:58:2f:b7:21:54:2f:2c:9d:27:3f:99:85:0b:72:85:
6a:c9:0e:1f:01:7a:25:39:d3:48:6a:d6:b9:9d:66:af:a3:2b:
15:d1:8e:e3:81:49:f1:12:2b:bc:13:10:02:4d:33:d3:70:f3:
0d:8e:c4:6a:a8:09:e3:c6:42:f6:1f:54:bc:76:19:c5:f7:15:
2a:ad:db:3d:a4:da:aa:96:e6:b2:c7:84:40:e1:e1:4b:a1:5e:
47:e2:e1:19:08:b1:6d:61:78:f1:b4:55:47:7a:6d:c0:0c:d0:
5a:aa:4d:1d:68:4d:ec:23:c8:95:b3:bd:cb:74:d0:17:9e:96:
c7:2c:aa:4f:72:04:7b:4b:db:b5:8b:ea:a1:60:f3:1b:45:d6:
2e:10:8a:f8:d9:ac:a0:e6:02:c0:62:67:2e:c9:13:5e:84:19:
86:bc:c7:8f:ff:a9:f6:a2:54:a3:1f:ca:01:7f:0c:d3:3a:81:
eb:1b:9a:09:86:54:d0:5f:2d:9d:d9:ee:00:53:e0:cd:bb:ea:
7c:a0:0c:03:44:a7:83:3a:5c:7f:97:88:72:e4:58:61:67:c0:
70:fe:87:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 25 11:22:20 2024 by rpki-client on console.sobornost.net