Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7dP9Wb3sBdSQEu4lAN3kTjValKQ.roa
File: 7dP9Wb3sBdSQEu4lAN3kTjValKQ.roa (raw, json)
Hash identifier: E9fz24lHCs21EWXVgSnC9UrERWBZONg2wpd82lcGp9I=
Subject key identifier: ED:D3:FD:59:BD:EC:05:D4:90:12:EE:25:00:DD:E4:4E:35:5A:94:A4
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019035223D14E36E935107AE939871181716
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7dP9Wb3sBdSQEu4lAN3kTjValKQ.roa
Signing time: Thu 20 Jun 2024 10:12:34 +0000
ROA not before: Thu 20 Jun 2024 10:12:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 20 Jun 2024 11:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:35:22:3d:14:e3:6e:93:51:07:ae:93:98:71:18:17:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 20 10:12:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=edd3fd59bdec05d49012ee2500dde44e355a94a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:45:42:b2:52:ef:48:4f:97:07:bd:b1:51:cb:
4a:82:8a:b0:4a:71:e0:7c:d7:d3:6b:88:1f:9e:0c:
9c:72:b2:7b:23:ad:ba:0d:70:f6:87:0b:10:23:a5:
ae:df:61:95:2c:d2:4d:b1:9c:30:86:27:7b:a6:05:
bb:82:a0:b4:87:da:f5:85:d3:c4:2f:b6:5f:45:95:
54:6a:94:01:8a:77:a2:5f:be:0f:d8:75:e0:54:59:
83:3e:c1:4c:33:c8:f6:d2:a8:3b:1a:dd:ca:d1:07:
48:e6:4b:64:f9:49:82:66:d9:e8:46:40:44:1b:91:
6f:06:c4:e9:e1:be:50:8b:70:e0:13:fb:12:70:2e:
63:0e:4c:f5:9f:54:0e:79:6a:d0:84:84:1e:1e:fa:
03:d2:48:71:7c:7a:fa:87:c4:86:9d:05:30:78:81:
9e:22:66:9c:b1:6c:54:03:3c:ee:d1:a1:fa:42:cc:
07:39:ea:ff:5a:15:f7:6b:65:ce:75:8f:f2:db:84:
77:f2:11:9a:a2:97:e3:9f:20:c4:1c:90:0f:cb:8e:
25:58:a0:af:d3:43:80:fa:a5:a1:eb:9f:5b:e5:1e:
69:51:83:c9:f1:c0:b1:c0:ae:a9:95:1f:31:96:bf:
c2:d4:ee:11:18:90:7a:0d:46:6f:e2:f0:29:22:16:
f8:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:D3:FD:59:BD:EC:05:D4:90:12:EE:25:00:DD:E4:4E:35:5A:94:A4
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7dP9Wb3sBdSQEu4lAN3kTjValKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
75:1e:3f:7e:74:61:0e:76:3f:55:3c:df:89:b6:f7:b2:b4:cb:
f6:6e:66:d2:ef:92:24:d3:0f:5b:4e:6c:b9:0c:e0:be:11:04:
08:61:cc:2b:d0:c3:48:c7:23:39:ab:d7:8c:f5:08:f2:63:75:
a9:28:4e:0d:bb:a0:1f:ec:ef:d4:85:f6:3f:a2:0c:46:7b:e9:
fe:9f:98:93:e9:ae:7f:ad:6e:60:a6:d5:d8:5a:22:b3:f7:07:
ab:dc:e6:d2:de:96:87:92:e0:8d:12:2e:15:ff:99:48:d1:5b:
a2:e9:59:d1:8a:b3:94:34:8e:a5:17:9f:97:9b:ef:11:1b:97:
f1:14:2f:f5:bd:b7:4d:02:55:12:77:09:fe:71:ed:3c:d1:7f:
17:f1:ff:4c:d8:43:2f:d4:1e:c7:7c:7d:6f:ed:8f:98:02:5e:
d5:ff:eb:08:7d:af:d0:30:eb:13:b4:69:a2:7f:09:92:1b:6e:
79:da:89:bb:36:95:d0:76:41:fa:99:fb:fd:fc:29:6c:1c:94:
d7:81:99:08:8f:64:4b:c1:5d:38:f7:f6:36:30:8e:7f:a3:59:
cd:15:30:33:40:de:bf:a6:9f:0c:8a:9b:39:4c:65:99:2f:91:
30:9b:af:01:5e:c6:8b:52:5f:67:08:81:98:61:16:9d:f9:08:
f5:1e:47:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 14:44:47 2024 by rpki-client on console-fra.rpki-client.org