Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/6e4L7OFSk31fPSRUOOGQF4sR-2M.roa
File: 6e4L7OFSk31fPSRUOOGQF4sR-2M.roa (raw, json)
Hash identifier: eMZSnL5cwuRilUYsH4BRM26+ezyyjKlV0na1qcTg6Lw=
Subject key identifier: E9:EE:0B:EC:E1:52:93:7D:5F:3D:24:54:38:E1:90:17:8B:11:FB:63
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01904313E15CF7B13BC93E6318EC702B3469
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/6e4L7OFSk31fPSRUOOGQF4sR-2M.roa
Signing time: Sun 23 Jun 2024 03:11:34 +0000
ROA not before: Sun 23 Jun 2024 03:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 23 Jun 2024 04:05:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:43:13:e1:5c:f7:b1:3b:c9:3e:63:18:ec:70:2b:34:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 23 03:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e9ee0bece152937d5f3d245438e190178b11fb63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4c:4e:c1:3b:20:66:23:ed:bc:0b:c0:a9:70:
d6:5f:48:44:96:10:eb:7c:91:b2:34:67:eb:86:87:
f3:0a:81:f9:6d:c3:dd:08:94:d2:33:80:5f:02:80:
05:6d:1c:05:df:98:4c:f9:6c:76:f8:f9:ac:8d:ee:
aa:04:38:7c:44:44:3e:f4:e9:3e:7a:cd:53:73:15:
46:16:15:8e:45:8c:6c:a8:89:3d:ba:b7:db:ef:e2:
dd:92:86:e8:27:e0:73:42:4b:c7:a2:e8:60:91:4d:
1d:26:2d:3f:47:47:c9:58:3d:fa:9a:33:fe:bf:fb:
03:07:ed:7e:be:05:ac:88:fd:86:10:a7:9b:bf:5c:
32:36:8f:2c:73:75:18:6c:b9:d1:ca:98:4a:38:4e:
11:9e:c3:1c:71:52:2c:ba:b7:b6:e8:d8:fc:ff:22:
f9:04:45:f3:1c:95:5d:85:f7:4f:5c:fd:c6:ac:5e:
f6:c6:50:07:43:1a:ea:45:7f:48:2e:3f:b0:dc:d9:
5d:ba:7e:fb:8a:a1:81:85:a5:ae:3a:1f:94:d4:1c:
d8:35:4b:48:6c:d2:cc:02:1b:33:b2:57:94:b7:15:
55:aa:9c:59:db:63:55:8e:30:b0:08:a5:61:fc:aa:
db:5e:9a:1c:79:14:76:54:68:64:73:9b:be:25:cd:
84:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:EE:0B:EC:E1:52:93:7D:5F:3D:24:54:38:E1:90:17:8B:11:FB:63
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/6e4L7OFSk31fPSRUOOGQF4sR-2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
15:76:e0:05:5e:cf:c9:5c:4c:ff:fe:11:18:68:f8:e0:76:f7:
91:51:29:bd:1b:64:2a:94:d0:df:c1:52:06:b1:a0:66:c1:4f:
95:7c:6d:34:13:dc:f9:eb:4e:db:5f:a5:97:fb:43:8d:8a:d8:
60:0c:e5:17:b5:c4:c0:c6:43:e4:15:37:af:0d:39:7f:9f:34:
bd:51:57:06:fe:25:e8:70:e2:0e:11:af:1f:72:ed:e5:5d:33:
5f:1a:20:13:3f:04:8a:b0:08:95:50:71:28:79:2a:1e:28:31:
ea:6d:af:04:7e:26:a0:2a:6f:c6:bd:63:aa:3b:68:da:69:5f:
b2:67:11:b9:d2:71:fe:97:57:c6:cb:8e:fe:c2:53:4e:a6:c0:
1f:06:79:6e:48:6e:1e:49:e8:21:da:fc:bb:7a:35:b5:6d:d7:
d2:fc:9c:86:c8:74:11:c5:cf:a9:29:66:f3:96:94:eb:85:a0:
d9:73:52:c6:46:d1:66:97:c7:1c:24:bd:90:20:f6:a7:7f:dc:
f7:61:9a:e4:16:e6:59:f2:f6:7d:51:a2:d9:8d:83:25:c6:b2:
83:ab:c9:e5:87:c1:ba:57:5f:14:ea:9c:61:9c:d5:d7:e8:59:
a4:59:df:ce:17:56:91:47:6c:b1:3b:48:f8:74:e8:7c:4d:d8:
79:68:5a:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 06:12:54 2024 by rpki-client on console-ams.rpki-client.org