Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/0sHwvDawNtuk3_ZpkLCcRtRovGE.roa
File: 0sHwvDawNtuk3_ZpkLCcRtRovGE.roa (raw, json)
Hash identifier: 2XkujHhYiApuQiUsWWTALPyqz2BgmUuEbKIIvhu+mLg=
Subject key identifier: D2:C1:F0:BC:36:B0:36:DB:A4:DF:F6:69:90:B0:9C:46:D4:68:BC:61
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019055F4B3F660D6C074D556EAADACA408D8
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/0sHwvDawNtuk3_ZpkLCcRtRovGE.roa
Signing time: Wed 26 Jun 2024 19:10:18 +0000
ROA not before: Wed 26 Jun 2024 19:10:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 26 Jun 2024 20:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:55:f4:b3:f6:60:d6:c0:74:d5:56:ea:ad:ac:a4:08:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 26 19:10:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d2c1f0bc36b036dba4dff66990b09c46d468bc61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:dc:07:ff:00:bb:51:3e:c1:3e:5f:ad:fd:2a:
0f:16:c2:97:80:9b:6d:64:47:d2:df:2e:d6:1f:51:
88:69:78:66:8e:1d:11:6d:64:39:c5:fa:f2:1d:7d:
84:80:6e:0c:c3:96:df:8f:39:ae:ed:30:f2:cf:3f:
a2:dd:12:fa:3f:69:11:ae:b8:b8:09:23:b4:6a:25:
a5:76:24:0e:3d:c0:a2:fb:5a:83:e1:51:59:55:d7:
d2:ac:42:d2:6c:4f:31:51:f1:91:6a:69:81:bf:43:
14:70:91:90:31:bd:c7:03:95:26:96:6b:93:18:e3:
02:14:f3:2d:fa:fd:62:ab:be:e6:52:6d:55:a3:b6:
97:dd:ee:be:74:5a:39:aa:ec:21:8e:ec:6c:f7:04:
1a:cd:0f:27:2e:05:2c:0e:0d:9f:d5:70:01:bd:05:
50:21:c6:36:74:99:20:c7:86:47:79:86:46:f2:7b:
eb:e8:01:5c:c6:2e:a6:7f:4b:f8:44:30:33:3d:f9:
aa:43:15:5c:fe:39:80:4a:0b:dd:a1:30:e3:09:d4:
c1:e3:e0:cd:86:6d:cc:90:6a:32:47:5f:9a:36:c1:
cb:ef:88:ac:94:ca:9f:8c:1a:c0:47:cb:b3:50:ba:
36:de:18:02:ee:95:9c:a7:1f:41:60:f4:fb:21:04:
3d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:C1:F0:BC:36:B0:36:DB:A4:DF:F6:69:90:B0:9C:46:D4:68:BC:61
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/0sHwvDawNtuk3_ZpkLCcRtRovGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7e:62:55:bd:2d:25:94:32:95:e9:57:7b:8e:05:58:58:f5:f8:
a5:18:b6:6d:de:e8:8d:64:f0:64:68:42:0a:4c:e3:cc:88:2b:
2c:94:8c:30:72:8b:1b:05:7c:24:55:af:ed:ba:2c:46:f0:f6:
37:98:0b:e8:49:94:96:8c:73:20:94:f4:36:8a:01:cf:ce:ec:
19:52:49:3f:0a:54:7f:4d:b8:a8:a9:87:98:15:86:df:ef:31:
45:ea:16:48:f1:dd:f6:b8:bd:c4:06:f2:72:b4:92:8c:62:de:
93:2a:81:4a:07:97:6f:78:15:b5:10:77:9a:7e:23:eb:8e:a7:
18:48:12:ba:3c:32:f1:a8:22:8d:88:a4:23:4d:85:3c:8d:98:
67:74:2d:50:40:e4:31:2a:0c:49:55:7e:0d:77:42:e9:e1:52:
62:68:39:9c:d4:c3:72:77:83:d6:b6:b7:69:f4:30:04:cf:47:
9b:8d:e4:8d:b6:80:de:58:4e:40:55:1d:f6:1b:cf:ff:33:2e:
77:82:ad:7a:95:90:2e:b3:07:b6:49:62:44:75:74:34:29:38:
73:2a:28:75:bd:bb:b2:8b:32:17:97:56:10:ba:62:d8:5a:0f:
1a:c4:a5:c5:f5:40:9f:4e:cf:3c:05:d6:c1:56:f3:1d:a2:93:
44:8e:0e:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 27 00:14:24 2024 by rpki-client on console-fra.rpki-client.org