Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/1MpceheLJmA4zZI5SxR_3aHB5Tk.roa
File: 1MpceheLJmA4zZI5SxR_3aHB5Tk.roa (raw, json)
Hash identifier: +DLFbdgwASbkPeS5yAOOHtO97uHbmYxqSBmXkl198UU=
Subject key identifier: D4:CA:5C:7A:17:8B:26:60:38:CD:92:39:4B:14:7F:DD:A1:C1:E5:39
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FBD307E850E0F80F63BA8E98D780966C0
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/1MpceheLJmA4zZI5SxR_3aHB5Tk.roa
Signing time: Tue 28 May 2024 03:13:42 +0000
ROA not before: Tue 28 May 2024 03:13:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 28 May 2024 04:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:bd:30:7e:85:0e:0f:80:f6:3b:a8:e9:8d:78:09:66:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 28 03:13:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d4ca5c7a178b266038cd92394b147fdda1c1e539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:33:b0:ae:54:bb:67:ec:86:db:73:3b:35:5f:
7c:d9:eb:15:e9:95:d2:c0:0d:8d:06:c3:7d:f6:10:
4f:a5:8b:1c:5b:4d:37:92:44:4c:2a:75:a7:0f:fd:
38:7c:b5:ce:ff:fa:75:a5:3e:0f:34:6e:35:5b:50:
58:99:e9:23:2b:ef:48:87:08:b6:57:2a:f8:be:f0:
ae:3d:f7:00:4b:e1:f9:03:2e:98:6b:c4:ca:70:4a:
24:3f:66:dc:ac:45:d3:83:c9:2a:c1:ae:eb:77:f3:
5a:3e:13:a8:5c:7f:c5:3e:17:54:00:70:1d:48:c1:
a4:47:86:ca:5e:68:8f:f1:9b:1d:b0:d6:06:a6:63:
44:63:f1:0f:d4:d7:01:33:2e:e8:26:8b:b7:f8:30:
c1:32:5f:92:5f:22:cb:a5:8c:1f:19:e4:e2:f5:7e:
c1:c1:66:e7:b8:54:ee:6d:b5:f6:86:31:a2:b4:3c:
a6:9c:56:12:c5:b7:64:3b:a1:f5:f3:56:ef:64:a8:
e2:25:9c:0e:60:6f:8e:51:bd:b3:5c:b7:37:ae:c7:
c9:77:52:98:87:f1:65:a9:a3:fb:18:c1:a8:63:42:
b3:af:03:74:c8:60:0e:11:56:ca:7a:28:be:f3:f7:
25:ae:39:c4:eb:8f:c5:ed:05:04:d9:7a:ee:9c:3f:
d4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:CA:5C:7A:17:8B:26:60:38:CD:92:39:4B:14:7F:DD:A1:C1:E5:39
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/1MpceheLJmA4zZI5SxR_3aHB5Tk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
61:ba:f2:3f:55:ad:36:e3:4a:de:b9:73:c2:be:64:35:9c:1e:
9f:80:9a:ca:e8:cf:a8:37:04:39:05:7d:b7:59:a0:fd:2f:c9:
c6:f1:be:63:fa:2e:e6:e5:dc:6a:79:0b:ff:64:2b:32:96:0a:
80:8e:b3:4b:34:08:b1:3a:67:9d:9b:49:4f:34:54:72:4d:9f:
b5:14:be:b4:2e:18:78:c1:14:3c:d4:ea:7a:bd:38:4e:55:74:
2a:03:7d:15:17:3b:3d:b0:cc:6f:13:ff:ec:a3:53:98:b2:85:
46:f2:b0:c3:1b:a8:dd:4d:49:00:59:34:d7:12:9d:72:34:21:
27:1d:3a:84:d6:d6:ee:4f:d5:c8:7c:16:d6:a3:21:66:77:72:
14:b1:77:dc:97:92:20:fe:24:19:3a:7c:2e:ee:8c:5d:6e:3b:
64:56:41:18:fd:34:e8:f0:4c:cc:63:3d:4a:69:7d:0a:9d:d6:
85:9f:7b:36:ed:4c:5a:fc:6b:57:74:36:35:e2:b3:15:5f:f4:
fd:46:7b:ea:57:69:6c:25:99:12:c6:00:17:4b:59:03:18:d4:
a4:14:67:00:6a:c9:4f:ae:5b:d9:a4:d4:f8:3a:2c:d0:70:13:
aa:b2:95:73:df:02:12:a4:04:9a:c6:49:ce:07:d6:78:07:a1:
3e:a8:86:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:15 2024 by rpki-client on console-ams.rpki-client.org