Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/30ajKqggqmlR9C0J4FtX5BnMGQM.roa
File: 30ajKqggqmlR9C0J4FtX5BnMGQM.roa (raw, json)
Hash identifier: UpJRMt6pn0AsOjlwG7t+b14sD0MzMApOm2CSFM5mSy4=
Subject key identifier: DF:46:A3:2A:A8:20:AA:69:51:F4:2D:09:E0:5B:57:E4:19:CC:19:03
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FCB57EA9C1D62CE49AA87D76E497767FD
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/30ajKqggqmlR9C0J4FtX5BnMGQM.roa
Signing time: Thu 30 May 2024 21:11:27 +0000
ROA not before: Thu 30 May 2024 21:11:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 30 May 2024 22:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:cb:57:ea:9c:1d:62:ce:49:aa:87:d7:6e:49:77:67:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 30 21:11:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=df46a32aa820aa6951f42d09e05b57e419cc1903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ba:a0:0c:a4:74:59:f8:cd:35:dc:5e:6f:43:
1a:04:fd:dc:2d:b1:e4:b6:8a:6a:87:82:aa:59:59:
ec:c4:60:b2:44:a4:5d:c4:9d:9d:30:d9:3e:d3:74:
4c:e1:74:a8:ee:28:c8:af:42:74:27:06:dc:0d:5e:
37:b6:94:95:75:4b:02:3c:0d:a8:a3:7c:bc:0e:d8:
25:2c:a2:12:ae:6e:7f:fd:6f:dd:42:fc:a3:a1:f1:
be:cd:6f:e1:78:f3:7d:02:a0:6e:dd:81:a4:5c:27:
0d:69:15:8a:86:4e:bc:61:7c:f8:0b:b2:f2:5b:c0:
5f:91:cb:2a:69:81:be:a6:b1:14:97:83:72:58:00:
44:c3:70:ed:d0:d0:c4:8e:ff:78:30:8f:48:75:07:
b0:2e:df:66:cc:6f:c7:d9:9f:3f:05:2c:47:45:2f:
59:34:58:94:4b:ed:5a:8b:d1:38:92:d8:b2:9b:43:
be:41:5f:a3:a1:0e:bb:d8:4b:48:14:fc:b7:5d:b0:
a3:c7:69:81:7e:47:14:f7:98:64:af:9c:5d:e6:a0:
de:38:72:da:b1:5a:45:9c:29:54:43:2d:bc:fa:a7:
24:dd:55:6c:1c:d2:bd:e4:b1:dd:de:25:77:a5:a0:
b0:6a:c2:3f:5d:4f:a1:b9:fc:1b:d0:0d:1c:ce:70:
3c:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:46:A3:2A:A8:20:AA:69:51:F4:2D:09:E0:5B:57:E4:19:CC:19:03
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/30ajKqggqmlR9C0J4FtX5BnMGQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
48:81:46:e0:7b:b5:be:26:fb:e8:8c:f0:d6:e4:85:e2:6c:40:
7a:8a:1f:b0:bc:52:65:6f:eb:1c:39:1b:d2:b0:8e:10:33:5a:
44:2e:57:a5:db:ea:4b:b0:c0:da:74:65:7b:72:21:ef:a5:f4:
ac:56:1b:25:75:6d:dc:54:00:05:53:d9:c1:11:1e:61:58:c7:
72:3c:43:7c:63:76:84:e2:98:2c:0a:07:5c:07:aa:e5:51:a3:
83:b2:92:b4:a5:f1:78:5f:2d:bf:a8:f6:6f:0e:fe:02:99:94:
82:62:d4:66:a4:74:a5:e4:c3:6f:86:af:71:25:47:52:89:b6:
60:f2:e0:c7:54:20:0a:04:8a:a3:23:47:03:4f:75:5e:70:a1:
47:30:42:db:98:51:43:02:c4:ae:83:e1:4a:c7:bb:7d:bf:f9:
bd:03:19:c4:f5:bc:60:3c:5e:cc:f9:1b:8c:63:da:d2:94:da:
bb:0a:49:6f:a5:a4:fa:16:ba:34:6e:a9:59:1d:c1:b9:d5:b0:
6a:3f:6b:75:46:a9:59:f7:7b:88:ea:e7:a3:b6:ee:a0:2a:c1:
80:39:bb:96:0c:c3:10:6a:51:fa:81:b2:4c:08:c1:0a:11:f6:
a9:9a:73:9f:96:36:10:af:be:d4:a2:34:c5:c0:2d:2a:13:d6:
de:32:4f:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:51 2024 by rpki-client on console-fra.rpki-client.org