Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/5V3HmjTHILdCj4I1IT56IN8PFGQ.roa
File: 5V3HmjTHILdCj4I1IT56IN8PFGQ.roa (raw, json)
Hash identifier: JiX7M/McLs/UseRwcDhV3Z+iSSmQO1j/2tIFnB+UxuI=
Subject key identifier: E5:5D:C7:9A:34:C7:20:B7:42:8F:82:35:21:3E:7A:20:DF:0F:14:64
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FF977797E2BC3C284C479F43C1CD07FFA
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/5V3HmjTHILdCj4I1IT56IN8PFGQ.roa
Signing time: Sat 08 Jun 2024 20:08:27 +0000
ROA not before: Sat 08 Jun 2024 20:08:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 08 Jun 2024 21:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f9:77:79:7e:2b:c3:c2:84:c4:79:f4:3c:1c:d0:7f:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 8 20:08:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e55dc79a34c720b7428f8235213e7a20df0f1464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:01:31:42:7c:49:80:a3:19:64:cf:82:e2:aa:
2b:e5:14:18:2d:88:ef:eb:6d:e0:3c:46:98:ee:13:
40:fc:69:33:b0:9b:a1:75:f6:ba:0b:b1:90:89:5f:
d8:27:47:15:8c:60:a9:63:0d:d2:6e:6b:d1:06:b5:
ca:c4:9a:10:e8:ce:8b:b0:09:7b:03:fc:f0:b2:84:
90:96:d3:8f:25:5b:16:02:37:4b:6a:fd:36:30:76:
de:b2:79:95:44:9d:ad:63:ff:ef:2b:ab:6f:21:72:
9a:9f:9e:ae:c5:40:09:63:88:0b:eb:22:d5:7b:78:
8c:6b:70:78:24:ce:12:0b:52:7b:42:45:14:b6:94:
d3:99:0c:06:df:c9:71:f0:4b:bb:6c:a0:cc:9c:b9:
04:61:fb:30:56:e2:95:ce:cc:3d:e9:b9:89:51:a4:
7a:e1:d5:a8:22:71:dc:79:4c:dc:d2:33:20:6e:87:
24:10:8c:57:7d:56:c5:23:68:ef:77:8e:0e:4a:a7:
5b:41:15:6a:da:f2:dc:9e:4e:92:0f:d9:d0:2c:ca:
b8:ee:66:81:82:08:ee:b8:14:d2:3a:f7:3b:77:b7:
25:9e:3d:fe:f0:b5:4d:19:b9:bd:de:57:d2:4b:5d:
4e:cc:04:05:d2:b3:aa:95:a9:a5:89:13:92:6e:5a:
e9:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:5D:C7:9A:34:C7:20:B7:42:8F:82:35:21:3E:7A:20:DF:0F:14:64
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/5V3HmjTHILdCj4I1IT56IN8PFGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
33:6a:68:0f:07:32:06:01:31:ac:f0:6a:70:8e:5a:82:c2:3a:
a5:7a:39:3f:3f:d4:30:8c:18:ce:af:cb:dc:05:f0:07:19:50:
2e:6f:79:8f:3e:ac:58:cf:91:aa:59:9b:cd:e9:f8:f1:d7:96:
9f:e0:72:84:66:b5:ac:fa:fb:72:bf:7b:e0:1d:a8:08:10:97:
8b:8d:c5:8c:c4:ad:08:80:a3:f1:c5:3f:02:23:d5:7e:76:80:
57:20:84:9e:9b:a2:64:c3:83:24:c3:3b:4d:63:24:96:c0:5c:
a2:21:03:25:72:a8:fa:3c:21:56:30:70:b2:46:75:b9:8f:d9:
e2:80:f0:5a:61:56:ed:f8:3d:79:71:b1:94:71:ec:f6:a8:dd:
d0:0d:52:24:e4:55:56:8d:0f:61:4a:92:40:de:e6:0a:c7:f5:
39:bc:74:a9:ee:ce:b1:90:ad:c9:33:90:2f:0a:a7:bc:db:e0:
dc:f9:d8:63:3c:4e:bc:8c:77:1f:8c:a5:93:17:a6:e2:24:ae:
ec:59:d7:7a:79:0d:f3:a7:ce:37:33:c5:08:83:e4:38:b5:db:
eb:a7:94:93:17:97:13:70:a8:06:06:1b:37:47:d5:e0:05:4a:
da:49:d2:fc:35:f9:3a:82:9b:bb:74:01:57:66:96:b7:e8:29:
c6:72:cc:92
-----BEGIN CERTIFICATE-----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Generated at Sat Jun 8 23:05:17 2024 by rpki-client on console-ams.rpki-client.org