Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7mW3uIaQm5wKeVVIl1LLhyEh96U.roa
File: 7mW3uIaQm5wKeVVIl1LLhyEh96U.roa (raw, json)
Hash identifier: e7YOAbzJyGmfX8znGQNo+suBoztcmZZlg6cMWv+j2MM=
Subject key identifier: EE:65:B7:B8:86:90:9B:9C:0A:79:55:48:97:52:CB:87:21:21:F7:A5
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190592A2843F2D30E04D477139AB610B903
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7mW3uIaQm5wKeVVIl1LLhyEh96U.roa
Signing time: Thu 27 Jun 2024 10:07:33 +0000
ROA not before: Thu 27 Jun 2024 10:07:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 27 Jun 2024 11:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:59:2a:28:43:f2:d3:0e:04:d4:77:13:9a:b6:10:b9:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 27 10:07:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee65b7b886909b9c0a7955489752cb872121f7a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2c:78:58:e6:20:e8:9b:ba:b8:3a:3c:46:68:
f3:08:85:d6:69:bd:ac:d8:92:d7:d6:aa:fd:34:a5:
15:ba:6d:bf:52:78:b0:21:a3:c5:a0:43:6a:61:bb:
d4:91:1c:3c:17:71:96:ff:b8:e8:0c:96:c0:7b:a8:
3b:27:92:0e:16:4a:7c:66:7c:1d:27:2f:bd:e1:af:
0c:ff:32:2d:ca:b0:29:87:70:56:47:fa:28:a6:8f:
a3:70:cb:ac:f9:70:8b:53:a9:8c:71:47:84:4b:64:
e5:5b:50:ab:ce:55:20:f9:be:82:59:7f:cd:d8:3d:
16:9d:78:27:ed:6a:3f:c9:28:f6:25:76:02:04:84:
ee:40:69:3b:cb:ae:25:e0:f7:6b:f9:7e:33:e4:f0:
c5:44:bf:fc:bb:08:b6:e1:e4:a5:29:38:b0:2d:a7:
14:56:c3:16:f5:2a:b2:0b:38:8c:2f:63:4e:d9:f1:
7d:3b:3c:45:cf:41:3a:2f:1d:c6:23:63:a0:8e:e5:
5f:ae:7c:8c:8b:e6:23:73:41:e4:0d:c4:29:61:85:
ed:9b:7b:40:7a:6c:86:b7:9e:53:ae:5a:d2:bc:8b:
ee:df:1e:b2:c8:41:9a:a8:7b:ed:8b:ce:ef:fd:8f:
f3:79:32:ac:5c:08:06:71:c3:94:28:dd:2d:97:01:
e9:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:65:B7:B8:86:90:9B:9C:0A:79:55:48:97:52:CB:87:21:21:F7:A5
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7mW3uIaQm5wKeVVIl1LLhyEh96U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
61:5a:cb:fd:ec:6d:37:71:cf:88:94:21:04:20:7a:bd:42:74:
0d:4c:2d:29:96:e0:fa:5c:e4:d1:39:04:8d:12:d7:fe:33:14:
6d:b9:bb:47:0d:6a:a0:66:bc:0b:08:f3:f5:d8:f2:22:07:e5:
d4:7d:ec:19:39:a1:b2:c5:d3:ec:2c:9f:ba:1b:75:d1:67:d7:
d0:37:ff:97:5c:18:4a:4d:ff:88:a2:a9:63:64:0b:30:98:a6:
31:a5:b2:3a:c6:1e:d3:8e:1c:a3:f2:0d:15:56:77:c3:c4:54:
5f:f6:04:a7:47:30:2b:42:bd:72:fb:99:16:71:45:7e:e6:53:
2e:d2:a0:81:01:43:51:5c:84:15:7c:a7:a8:b9:16:fc:bd:7e:
f5:20:b2:84:97:9f:8c:4f:d3:e5:86:c1:ac:36:ba:8f:a8:6d:
3f:d0:c1:54:97:34:99:41:c0:1f:ce:94:6b:ea:7d:25:16:e8:
78:63:d3:e4:c6:24:9d:7a:7a:fe:cc:f7:a4:3d:ff:6f:0e:9f:
72:e4:82:87:65:4e:7b:af:53:40:91:94:e2:0e:d1:53:bd:c3:
7e:a4:de:f3:79:ef:66:88:b9:36:b1:f7:a8:a8:56:c6:c9:65:
d4:80:fd:de:bf:a3:64:10:68:2b:89:8b:3c:dd:ed:58:64:1a:
48:f1:92:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 27 17:22:27 2024 by rpki-client on console-fra.rpki-client.org