Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/0osONdDriXHQmCwYB70VVlfIRJ8.roa
File: 0osONdDriXHQmCwYB70VVlfIRJ8.roa (raw, json)
Hash identifier: XlGT1oymEAWWB8mznXiNldIjNirs5/UMDx7pRjZ1F24=
Subject key identifier: D2:8B:0E:35:D0:EB:89:71:D0:98:2C:18:07:BD:15:56:57:C8:44:9F
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FD0EB398512112BA49F878462D583811D
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/0osONdDriXHQmCwYB70VVlfIRJ8.roa
Signing time: Fri 31 May 2024 23:10:27 +0000
ROA not before: Fri 31 May 2024 23:10:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 01 Jun 2024 00:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d0:eb:39:85:12:11:2b:a4:9f:87:84:62:d5:83:81:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 31 23:10:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d28b0e35d0eb8971d0982c1807bd155657c8449f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:df:c6:53:cb:67:37:dd:e5:2b:b1:8e:ee:eb:
a4:f6:6a:a6:d6:be:76:49:8d:69:0f:33:a6:f2:ba:
99:64:8d:ee:59:d9:8c:bf:c0:1c:19:92:e0:67:ba:
06:4d:49:54:e7:7b:36:fb:9a:4f:f7:8e:48:c1:a0:
83:c8:fe:b1:14:c0:28:d4:e2:eb:11:7b:45:7f:ec:
ae:7d:b0:8b:b5:b0:3b:b6:67:5c:83:4b:b4:a1:39:
2d:09:16:20:39:bf:77:a0:a0:b8:0e:be:18:25:51:
8c:23:e7:75:0d:2d:65:4d:d0:3d:1c:e6:d1:f2:48:
8e:70:14:59:23:7c:b5:88:9d:0b:e5:7e:e4:93:5f:
5b:7e:d6:91:8f:e1:af:1c:9c:cb:b5:66:c0:00:0f:
20:61:45:35:d4:2c:d1:ff:ff:ec:b3:2f:f7:04:1a:
7f:e4:5b:b4:05:e0:40:20:93:d1:60:2f:b6:97:65:
89:02:0b:0f:26:c6:c7:7f:75:90:0c:3b:31:7d:06:
7a:51:0d:a6:8b:66:f3:9b:da:bc:c0:ed:37:4d:c3:
fb:82:7d:4e:1d:03:36:fb:82:ae:9a:64:d1:ce:94:
49:80:5a:fb:70:f7:c1:7e:2c:cd:6d:23:f4:30:74:
f3:ff:75:e9:e8:c7:a9:30:8c:06:d3:4a:7f:14:2e:
30:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:8B:0E:35:D0:EB:89:71:D0:98:2C:18:07:BD:15:56:57:C8:44:9F
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/0osONdDriXHQmCwYB70VVlfIRJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
84:e8:b0:74:05:ad:a2:94:79:e3:5d:0f:3f:a5:46:1e:fb:9f:
ec:cb:d0:2a:2d:04:d5:e9:4f:ca:0a:f3:d9:73:6b:05:3a:5a:
41:4e:f0:02:62:22:26:dd:3a:11:01:9f:71:c6:27:07:e8:94:
8d:8f:da:99:d1:e2:b1:6f:71:b8:8a:34:1a:c2:7c:16:cb:eb:
40:3a:e4:ee:7c:4b:b2:e2:7b:bf:0e:b7:a3:98:50:f1:4d:5e:
80:7f:85:b9:b5:2c:e8:00:96:dd:ee:2b:f8:b8:02:e7:03:ac:
fc:fa:db:b3:01:45:9f:31:9f:3a:04:de:f8:8a:b8:da:f9:4d:
49:c2:1d:77:ba:ab:40:e2:f7:63:2f:00:43:6c:3e:b3:ed:7f:
3e:ca:b7:d9:b5:8d:d8:90:e5:48:2d:48:bd:69:08:fc:7f:36:
a7:c5:00:2d:25:96:7e:5f:5c:4a:e9:4c:92:5c:b8:e5:e3:9c:
7f:91:d1:71:91:de:4b:6d:75:55:03:54:77:ea:80:e6:8f:ad:
19:17:96:a1:2a:19:bc:41:80:a6:f6:99:d1:63:ae:24:c0:82:
05:9f:09:04:66:bc:1c:8f:9d:48:55:62:9b:7f:21:08:51:15:
cc:ba:57:0f:17:63:16:20:fd:31:de:34:d5:cd:82:cf:9c:c3:
8c:8b:b4:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:51 2024 by rpki-client on console-fra.rpki-client.org