Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/3vyiQZ_Hdebz7HfrW0qAnytZpcA.roa
File: 3vyiQZ_Hdebz7HfrW0qAnytZpcA.roa (raw, json)
Hash identifier: oKvLVpcRvydqKRYXmougyxgeQj5tq3EJXbMq45PoaHw=
Subject key identifier: DE:FC:A2:41:9F:C7:75:E6:F3:EC:77:EB:5B:4A:80:9F:2B:59:A5:C0
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190765C4CDF08D594C5C54B425E94A45748
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/3vyiQZ_Hdebz7HfrW0qAnytZpcA.roa
Signing time: Wed 03 Jul 2024 02:11:18 +0000
ROA not before: Wed 03 Jul 2024 02:11:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 03 Jul 2024 03:06:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:76:5c:4c:df:08:d5:94:c5:c5:4b:42:5e:94:a4:57:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 3 02:11:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=defca2419fc775e6f3ec77eb5b4a809f2b59a5c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e5:93:68:91:92:71:6c:6a:4c:f3:d4:53:11:
34:7a:d6:a1:0d:83:b5:b9:4d:cf:b8:e0:23:e7:f3:
05:4c:25:34:ed:02:0b:98:96:1a:17:00:e4:0f:bb:
39:d6:6b:f9:74:71:80:a2:73:8c:4a:34:9e:26:c1:
31:c5:b4:99:d1:4f:cd:29:d0:93:32:41:87:b1:d3:
e5:f4:67:c3:04:6e:08:e4:b2:72:d3:c4:43:16:de:
12:ca:32:d7:8b:3a:42:e7:51:2f:42:27:3d:13:7c:
c8:4d:24:de:90:06:01:a7:fc:21:e6:32:ef:8a:16:
1a:9f:1e:b5:4e:65:d0:c8:42:d5:43:99:41:f9:0d:
99:15:e9:6e:52:12:a7:22:8e:fd:c4:ea:ae:a6:11:
62:4d:42:36:73:92:d6:d4:05:82:7b:f2:a4:10:93:
2e:d6:2e:e0:5f:7a:a0:73:a3:78:9d:66:e5:37:97:
e5:fc:c1:5b:e4:c5:88:28:16:01:4f:ba:ba:de:6d:
d2:14:bc:ab:f0:5b:7d:31:a1:8d:db:8a:16:e1:4d:
82:2a:22:4e:6f:4c:c9:cc:3e:05:45:0a:0b:ed:57:
34:37:45:54:02:e9:6f:e4:1a:aa:de:10:36:3d:b9:
36:d1:64:f4:38:fe:c9:08:77:1e:1f:3c:a7:72:c8:
9f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:FC:A2:41:9F:C7:75:E6:F3:EC:77:EB:5B:4A:80:9F:2B:59:A5:C0
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/3vyiQZ_Hdebz7HfrW0qAnytZpcA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
52:2a:4c:87:7b:85:d3:fe:7a:23:13:d2:e9:29:e1:0e:16:cc:
56:41:58:d2:40:ac:34:db:ae:71:7d:22:c1:45:87:b7:08:67:
a1:61:35:43:d8:ef:69:2b:f4:08:62:83:79:57:5e:b3:7c:99:
91:8c:d4:a8:91:3a:5a:0c:77:62:a2:05:e0:2f:77:d6:0b:97:
8b:ed:a5:03:72:96:41:7b:4c:fa:99:89:6d:08:c8:b1:9c:01:
1f:ab:6c:f9:ab:db:0a:6a:12:5b:0f:f8:bb:95:0e:f5:13:67:
d2:86:ee:c8:92:7f:71:ba:1a:95:0c:7e:e0:e9:7a:a7:78:3e:
64:af:28:1f:36:d1:94:f4:c4:68:14:bb:29:96:be:85:7c:60:
b3:87:08:73:c5:96:86:5c:9e:f7:22:03:51:6f:dc:eb:ca:f9:
e0:c7:24:d7:1b:82:2c:0e:c6:f3:8f:62:09:5c:db:4e:fb:98:
9b:97:36:89:e7:32:90:86:af:e2:51:31:80:a3:12:98:ae:dc:
d6:ed:77:be:a5:6b:cf:a9:99:94:ec:9c:f9:73:2c:2e:b7:4f:
6f:35:75:7c:54:a9:e8:09:5b:87:d6:2e:5f:46:9b:d7:dc:19:
89:a4:f3:f8:89:31:77:10:c7:ef:0f:9b:21:8a:3e:58:13:60:
32:a0:92:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 3 04:44:33 2024 by rpki-client on console-fra.rpki-client.org