Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7PbSvUR6D7rqUXVUoHl6lT5UEuY.roa
File: 7PbSvUR6D7rqUXVUoHl6lT5UEuY.roa (raw, json)
Hash identifier: Czip7RTsyxMogGoinqhGFWyNx18vfh/mruX8SrXtLlI=
Subject key identifier: EC:F6:D2:BD:44:7A:0F:BA:EA:51:75:54:A0:79:7A:95:3E:54:12:E6
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FF94174DC0AF8B93430AEF3B2DB1E75C7
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7PbSvUR6D7rqUXVUoHl6lT5UEuY.roa
Signing time: Sat 08 Jun 2024 19:09:27 +0000
ROA not before: Sat 08 Jun 2024 19:09:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 08 Jun 2024 20:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f9:41:74:dc:0a:f8:b9:34:30:ae:f3:b2:db:1e:75:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 8 19:09:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ecf6d2bd447a0fbaea517554a0797a953e5412e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:d6:fc:16:02:91:13:28:7a:5e:1b:41:6c:35:
d4:00:a5:e5:ef:16:69:4d:dd:30:ae:5d:79:7e:1e:
eb:df:a6:f1:ea:4a:bb:fd:30:3e:b8:81:1d:69:45:
1f:9a:73:78:74:2c:47:de:2f:8a:79:f7:7d:f1:9c:
3d:57:85:d8:9c:d8:d0:cb:09:8d:6a:c7:cc:07:f7:
86:4d:7a:df:3a:ac:dc:03:0b:48:29:1b:b4:c0:c1:
a4:3f:34:3b:1c:80:5c:e8:c4:e1:23:6f:91:63:ce:
e6:cb:30:bb:87:61:ef:e3:9f:33:e8:8c:28:e7:44:
37:17:7a:70:15:f4:b1:d4:f0:06:ae:56:73:0b:60:
7c:d0:d7:31:e4:ff:21:f0:9c:13:6d:a2:4b:01:71:
62:8d:b5:1a:92:af:45:f2:ec:03:84:76:ce:69:97:
83:c3:f6:44:ee:51:fc:7f:03:79:2e:d1:7d:35:b9:
2d:54:e2:6b:38:dc:68:d1:1b:93:95:9b:a0:6c:72:
9f:3d:a9:17:f1:93:d3:ca:df:06:f7:38:70:18:4e:
65:5e:08:c3:b4:97:8f:9a:7e:13:63:cd:38:86:02:
f8:05:80:dc:a1:fc:a2:cf:30:09:29:aa:16:ff:b2:
fa:8b:a2:cc:15:b7:4d:fb:43:d8:68:ec:4e:74:bf:
fa:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:F6:D2:BD:44:7A:0F:BA:EA:51:75:54:A0:79:7A:95:3E:54:12:E6
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7PbSvUR6D7rqUXVUoHl6lT5UEuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3c:83:33:b1:b1:1f:0b:84:26:b9:3f:5c:3d:fc:e2:b9:c4:5f:
84:8a:ec:b2:3e:5a:51:13:d1:1f:db:5e:74:5e:93:83:3f:24:
b8:45:8d:69:57:21:68:95:63:55:a6:fb:f7:9a:73:bd:ad:ae:
05:16:09:22:20:b5:c0:21:10:fa:62:81:ca:d8:70:8d:cd:4d:
ba:9f:4f:df:3f:1c:3f:9c:a2:99:ec:3e:af:40:30:c8:57:ff:
25:88:9c:f5:03:05:0a:cd:51:26:a6:95:f2:78:bd:03:c9:4e:
2b:c5:e0:f5:1a:84:70:83:9c:92:ad:b7:d0:54:8d:6b:82:36:
98:7f:86:f2:cd:07:0e:0e:9c:c8:1c:2a:b1:e9:3b:38:59:30:
42:50:0d:cc:fc:d0:a3:f1:70:07:6a:6d:dd:f9:55:c6:2d:c6:
a2:e8:11:3d:d7:af:a4:e9:8a:0f:1a:38:01:f8:7b:47:cc:02:
a8:cf:71:e0:b2:54:1b:01:bf:26:22:32:86:01:23:7b:a7:a1:
0f:9d:cb:85:62:ef:f3:70:10:df:b1:83:f7:a6:5b:8b:46:3d:
65:c5:82:d9:3e:83:68:e2:0e:62:9b:4f:e5:0e:98:f4:3d:9a:
cb:03:d6:f4:3d:a0:3e:7e:40:64:51:6f:ea:81:8d:7b:5b:c8:
93:f3:a2:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 21:10:10 2024 by rpki-client on console-fra.rpki-client.org