Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/0wNCncDNMDeBVwlF3CRwUG-Pw94.roa
File: 0wNCncDNMDeBVwlF3CRwUG-Pw94.roa (raw, json)
Hash identifier: epx9IdwEb9ERIlzGbLD7eM8oRIMwGsXcvhuIr301nRg=
Subject key identifier: D3:03:42:9D:C0:CD:30:37:81:57:09:45:DC:24:70:50:6F:8F:C3:DE
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019067C31C8B5FE17665ABB93EC633DA8234
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/0wNCncDNMDeBVwlF3CRwUG-Pw94.roa
Signing time: Sun 30 Jun 2024 06:09:18 +0000
ROA not before: Sun 30 Jun 2024 06:09:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 30 Jun 2024 07:04:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:67:c3:1c:8b:5f:e1:76:65:ab:b9:3e:c6:33:da:82:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 30 06:09:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d303429dc0cd303781570945dc2470506f8fc3de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:bd:29:ce:73:de:59:28:da:6e:3d:66:c0:3f:
2a:7c:43:1a:45:d9:58:e0:2c:66:6d:0f:03:54:71:
04:29:3e:84:45:a6:99:3e:c6:de:83:3a:59:9d:0d:
0b:6d:76:21:c1:b6:26:f1:22:e6:c6:f0:38:6b:a2:
18:57:8b:9f:ff:5f:80:d6:5d:8c:08:a1:1a:17:8e:
e8:23:4e:4b:d7:02:91:52:2b:8e:0d:3a:37:19:09:
33:b4:b0:a6:57:e5:ad:3b:f4:96:d1:7f:c4:ec:01:
ae:fe:bd:2c:cb:e7:a9:2b:60:28:e4:5a:c4:3a:4a:
2c:62:61:f5:dc:aa:24:19:ea:82:c2:94:f1:2f:61:
92:21:be:2b:dc:d8:1d:20:86:fa:73:dd:f8:54:7f:
74:03:32:d8:b4:a4:70:c6:71:bc:f3:1b:15:67:30:
c1:b0:f8:4e:9d:c5:5a:f0:3a:d3:fc:2d:ce:aa:f2:
c1:76:7b:5b:95:04:3a:03:2e:12:fb:8d:c7:68:83:
98:0c:55:0f:eb:66:c8:6a:44:83:f5:01:70:1a:f9:
56:c1:9d:52:21:0b:16:24:b3:e9:c0:e4:af:9b:4b:
4c:1f:67:a7:5a:a0:01:ec:bf:61:61:48:94:b0:1d:
85:4f:46:af:f2:d4:b8:a5:6d:2b:48:8a:ea:2c:38:
0f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:03:42:9D:C0:CD:30:37:81:57:09:45:DC:24:70:50:6F:8F:C3:DE
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/0wNCncDNMDeBVwlF3CRwUG-Pw94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
91:78:2a:13:ca:c1:ff:a8:ba:f9:13:a5:c5:47:5d:5e:b8:94:
36:ee:b9:80:ae:b1:9f:fc:72:41:13:46:4d:c1:62:9f:a6:d8:
1e:de:50:17:b5:e0:3c:67:a7:c9:36:45:c8:34:34:48:65:59:
43:1c:a2:57:5b:47:90:f0:69:8d:cb:fd:d4:9b:eb:dc:e8:c0:
d2:ae:d1:00:33:82:1e:d8:2f:7e:66:6c:e4:56:43:73:52:97:
b8:af:ea:41:d1:62:88:2f:14:e6:b8:cf:12:64:d5:65:25:01:
ab:b5:58:02:e0:75:e8:c4:a4:17:f6:47:f7:78:66:45:51:dc:
c3:16:a7:31:cd:a1:a5:6d:75:d9:27:54:72:2c:aa:b0:54:be:
f7:ce:c3:e6:4a:c2:73:d1:c5:63:06:b0:0b:3b:08:8e:b1:7b:
28:91:e7:49:47:34:74:e1:2b:d6:58:48:f5:f0:75:8b:9f:6d:
69:ed:bd:d5:b8:82:cd:63:00:e1:ce:13:37:99:e7:ba:55:53:
8d:c2:7d:84:75:7b:03:55:f7:81:84:62:bc:19:d8:75:90:56:
47:19:08:86:30:40:3c:b5:d7:b8:91:d4:49:81:22:1d:5d:82:
f4:88:94:71:de:6f:1d:7d:cd:e2:db:d4:89:9d:ed:ec:05:99:
3c:86:af:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 10:47:22 2024 by rpki-client on console-fra.rpki-client.org