Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/2Sm653JMeda3NjWZmUTC16AgQjs.roa
File: 2Sm653JMeda3NjWZmUTC16AgQjs.roa (raw, json)
Hash identifier: 66j4vPOWbt/5l3aAMfvmFcO6sR60OdtYNie9/th/GM8=
Subject key identifier: D9:29:BA:E7:72:4C:79:D6:B7:36:35:99:99:44:C2:D7:A0:20:42:3B
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01901F3E4B0DB22B3AF4406A4F9A6869B11A
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/2Sm653JMeda3NjWZmUTC16AgQjs.roa
Signing time: Sun 16 Jun 2024 04:11:34 +0000
ROA not before: Sun 16 Jun 2024 04:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 16 Jun 2024 05:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1f:3e:4b:0d:b2:2b:3a:f4:40:6a:4f:9a:68:69:b1:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 16 04:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d929bae7724c79d6b73635999944c2d7a020423b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e7:0b:21:4f:65:8a:16:10:a1:24:4e:b0:13:
e4:57:bc:58:7c:88:4f:a4:de:8b:df:7d:85:06:5c:
66:09:4d:f6:aa:f2:eb:e9:70:f3:cb:81:2d:6f:3f:
c6:8a:3f:f9:c1:10:1e:37:ed:4a:46:e3:25:5d:ac:
f9:11:d0:e0:02:db:2b:2e:7f:3f:a1:32:36:ac:67:
a4:8a:97:39:f2:3e:f9:81:35:40:33:12:93:e2:2f:
98:f0:1d:81:9a:cd:06:57:ad:cf:36:c1:ee:d3:bc:
2a:9f:c4:04:9c:5b:2f:56:4e:2a:7f:ce:b3:c6:aa:
fc:e3:81:38:6c:1d:b9:73:0f:72:2d:0e:18:26:50:
fe:14:4f:40:99:d7:c2:27:f9:d1:f7:cb:ae:a1:98:
84:3f:3c:1c:4a:7b:82:a5:46:28:b0:a7:d6:b0:50:
2a:4f:bf:d8:ec:db:87:f7:b5:10:d8:5b:b7:10:d5:
b7:6f:ba:7d:28:e9:78:b8:c9:b5:46:85:32:5b:aa:
b2:ff:aa:0e:d7:93:00:b6:4f:fe:2e:11:9c:be:ef:
db:18:f6:26:9d:56:e6:19:93:2f:54:10:15:56:1c:
95:ad:bd:c1:18:d3:0d:3b:d3:cd:06:b6:72:d8:79:
de:6a:f5:7f:66:4c:77:5e:56:7e:e1:72:90:a6:75:
e1:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:29:BA:E7:72:4C:79:D6:B7:36:35:99:99:44:C2:D7:A0:20:42:3B
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/2Sm653JMeda3NjWZmUTC16AgQjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
54:c0:d5:eb:9b:b9:ef:67:ce:83:ff:b6:85:35:d3:ee:c0:80:
73:4e:9a:8d:d2:de:a7:b9:d3:4d:7b:52:ca:1a:01:86:28:55:
da:94:05:26:71:be:3c:49:2e:f3:42:9c:11:ca:b7:a3:d4:6b:
ce:dd:62:f9:52:2d:f0:41:7f:c2:33:14:4d:35:ed:04:c3:76:
5d:ff:45:da:cc:ca:6a:cf:73:e6:ad:4f:ff:ea:fb:b2:73:f5:
8f:78:61:7c:57:6c:a5:97:e4:ed:18:20:25:9c:94:b9:98:ea:
a4:61:39:fd:11:c5:63:36:c2:95:29:7b:33:04:03:c1:45:6b:
17:fd:1d:b4:5b:2d:e4:67:6e:0a:d5:26:dc:e4:ee:ad:7b:65:
bb:33:a8:2c:d0:f5:9d:43:dc:37:84:ec:1d:9b:dd:61:3f:a6:
cc:55:5b:36:b0:f9:d2:9a:5e:1c:cc:c8:6c:6b:5f:92:ac:83:
2c:25:c7:be:65:b7:61:3d:25:4b:5c:d3:96:aa:20:13:40:3e:
25:7b:bb:22:6e:fe:43:6e:16:af:ab:df:ec:a1:ed:f2:ee:c3:
2e:1c:df:7c:19:f6:74:ec:d8:a2:a7:49:87:c0:53:5a:d8:8a:
06:81:2d:f7:05:01:3f:bb:a8:cc:16:2a:ba:ef:98:47:9e:a9:
61:0c:cc:bb
-----BEGIN CERTIFICATE-----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Generated at Sun Jun 16 06:06:50 2024 by rpki-client on console-fra.rpki-client.org