Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/10K4kmFfzuDNkde1yCuVfaYJXtA.roa
File: 10K4kmFfzuDNkde1yCuVfaYJXtA.roa (raw, json)
Hash identifier: fKCTk/8Hb91ConSbyGuEELPnlr0ZicN0yAiycWNizts=
Subject key identifier: D7:42:B8:92:61:5F:CE:E0:CD:91:D7:B5:C8:2B:95:7D:A6:09:5E:D0
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01901784C172D88B7853D5FD49886B2A4F37
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/10K4kmFfzuDNkde1yCuVfaYJXtA.roa
Signing time: Fri 14 Jun 2024 16:11:34 +0000
ROA not before: Fri 14 Jun 2024 16:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 14 Jun 2024 17:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:17:84:c1:72:d8:8b:78:53:d5:fd:49:88:6b:2a:4f:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 14 16:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d742b892615fcee0cd91d7b5c82b957da6095ed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:51:17:07:18:72:c5:a0:e4:e4:29:cf:b8:da:
98:65:48:11:e3:0b:b7:6a:61:55:ee:d6:8f:d5:7b:
7c:39:55:c0:ff:79:a0:87:c1:c6:74:23:51:30:09:
e8:65:e7:1e:fb:88:36:fa:08:5e:de:8e:cf:50:3b:
b3:32:c0:a0:e9:0b:f3:c0:98:bc:49:87:3d:99:c7:
bb:d4:2b:ae:82:64:ab:1d:c6:12:df:8c:d9:4d:d5:
ab:ac:2d:6d:0d:b0:e7:ee:3b:aa:c9:93:47:19:a0:
36:31:62:13:16:f3:cf:6f:7d:98:1e:ec:fe:44:a3:
64:0f:e4:ac:53:85:d1:bd:95:6e:67:4e:e0:cb:70:
9f:1b:63:78:ac:8c:7c:09:07:22:89:02:bd:f6:3e:
c1:2e:4b:80:28:ed:b2:f0:9f:55:f0:62:8f:ac:cf:
13:b9:5b:71:78:c3:5a:d7:43:90:52:98:1f:c8:67:
05:37:a0:e8:0e:1a:1d:ec:0a:a0:72:df:7d:20:06:
61:0e:d1:d6:d7:c9:32:5b:40:0c:6d:7e:a5:ad:22:
54:49:b9:c5:58:ba:18:ed:3f:e7:a7:62:98:c9:5d:
bd:ad:29:7b:ba:0b:51:90:cb:dc:0c:f0:a4:eb:3d:
3b:0b:53:b8:73:99:89:c7:8c:d9:23:19:41:85:ae:
6b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:42:B8:92:61:5F:CE:E0:CD:91:D7:B5:C8:2B:95:7D:A6:09:5E:D0
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/10K4kmFfzuDNkde1yCuVfaYJXtA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
4e:3d:ce:65:94:8d:28:fc:3f:ce:3d:2e:20:1d:44:16:e7:12:
d9:ea:e4:2a:96:e9:a7:34:cf:4c:1c:ca:11:c1:55:52:e5:b1:
0c:c1:80:b9:fb:26:b4:f2:aa:44:4c:79:69:44:c5:06:6c:f9:
52:bc:3c:4e:69:4c:e0:43:e8:83:92:55:f6:96:8e:47:ce:24:
95:55:5c:16:e5:31:e3:28:b6:29:9c:32:2a:93:9d:51:1c:6d:
7f:c1:b3:8e:2d:f8:1f:02:5e:65:d9:bf:74:f5:a0:a3:5b:5c:
3a:57:1c:4e:72:fb:50:fd:c3:03:b0:02:64:e5:5b:e0:78:78:
57:5a:a0:c3:db:1f:d7:78:6f:54:aa:52:fa:99:70:a3:e6:8e:
8d:2c:20:40:31:c0:69:b3:41:f3:c3:e7:a0:e8:a7:03:5e:63:
34:19:f8:58:b4:c0:e7:34:32:9d:72:fc:05:81:72:7b:a4:14:
22:02:57:14:47:c6:27:be:6e:be:e4:2a:72:7f:d1:ef:6e:b6:
84:9f:da:e7:f1:72:f2:cd:92:9d:c6:25:32:d2:7e:28:0a:09:
ac:84:76:1a:9a:d4:3e:3a:7e:68:65:f9:1d:c3:c5:83:f0:89:
eb:e3:b2:68:f4:de:1f:eb:8e:70:a1:5b:e3:f6:8d:18:f4:12:
07:d1:87:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 14 18:56:28 2024 by rpki-client on console-fra.rpki-client.org