Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/91QxbxHKcjvrIrbqC5X7kPFXGTk.roa
File: 91QxbxHKcjvrIrbqC5X7kPFXGTk.roa (raw, json)
Hash identifier: OtG1KNzP0xFGyq8Qt5avokxL4eD+PKaha1/qtwpy7r4=
Subject key identifier: F7:54:31:6F:11:CA:72:3B:EB:22:B6:EA:0B:95:FB:90:F1:57:19:39
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019018CD6D1865E37FC68D5240652183D6E7
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/91QxbxHKcjvrIrbqC5X7kPFXGTk.roa
Signing time: Fri 14 Jun 2024 22:10:34 +0000
ROA not before: Fri 14 Jun 2024 22:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 14 Jun 2024 23:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:18:cd:6d:18:65:e3:7f:c6:8d:52:40:65:21:83:d6:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 14 22:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f754316f11ca723beb22b6ea0b95fb90f1571939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a0:08:81:b6:11:09:64:16:cc:b0:24:fd:c2:
d9:6b:fa:f1:6b:b9:3a:f3:9c:9c:b1:fd:8e:04:9a:
1c:92:c6:5e:f6:20:1e:35:58:38:54:ca:c0:d1:dd:
0f:fb:70:71:4d:ea:56:ba:6a:30:48:14:78:0a:00:
c2:d7:23:6a:dc:2d:e7:8e:dd:6a:3b:b4:25:fc:09:
1a:b3:48:34:50:18:41:53:98:b4:0b:ab:19:e1:64:
0e:14:49:75:06:9e:27:35:bf:db:fe:e6:91:4a:87:
1d:7f:65:bc:27:6c:6b:86:1d:19:6d:df:5f:44:ba:
b4:d8:58:be:1c:95:5d:a3:53:60:96:e7:81:f9:30:
ab:c5:f2:1d:95:6b:9b:e0:a7:71:3f:ee:6c:a5:ed:
14:69:9f:56:d6:a8:f7:99:b0:6b:2d:44:e7:83:37:
ce:24:3f:5b:16:03:90:ff:64:67:08:c3:0d:0f:bb:
9d:8c:76:66:d9:50:39:a0:e2:06:56:d6:15:68:9e:
79:13:e5:16:be:91:e7:06:8a:73:16:eb:1c:9d:db:
bf:3e:5d:33:00:c4:9c:01:75:60:82:b6:6f:52:d9:
91:49:4c:86:cb:58:0c:f2:48:2e:75:4e:52:68:fb:
39:81:e0:88:c6:40:01:29:19:11:ce:ae:98:df:e1:
ac:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:54:31:6F:11:CA:72:3B:EB:22:B6:EA:0B:95:FB:90:F1:57:19:39
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/91QxbxHKcjvrIrbqC5X7kPFXGTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
52:bf:fe:44:fc:e7:12:87:aa:cc:47:14:ec:17:2d:42:60:0f:
4e:dd:83:6d:cb:9b:79:d2:c8:c6:d2:f1:da:6c:df:94:09:fa:
2c:df:23:9a:40:f1:c4:b5:36:bc:dd:73:50:40:a6:84:0b:23:
5e:13:99:9b:f2:c3:b5:fe:1f:79:56:62:94:10:db:bb:cd:6f:
bb:7b:02:2f:df:cb:ef:b9:1e:36:1e:4e:e8:28:67:6c:81:7d:
d5:79:8a:c7:d0:f4:32:21:cf:b7:30:3d:17:29:56:40:b5:98:
f2:3c:f5:f5:59:16:78:a5:77:33:12:b0:ca:bf:9b:a4:4e:75:
33:df:08:ce:5c:f2:aa:6f:0f:d3:d6:c1:1c:d8:5e:dc:2a:f4:
84:d3:ce:ee:26:6b:53:ab:3e:5d:3c:8a:81:88:40:9a:38:59:
ed:65:5a:27:f3:9f:15:cf:71:84:87:12:7e:51:c0:db:1c:ef:
43:a4:64:7f:f9:d8:ff:63:0f:6a:2a:22:18:75:bb:7b:1e:ff:
42:21:99:bd:aa:2b:32:2d:74:aa:bc:50:12:fc:df:41:06:9c:
52:29:29:6b:04:20:c0:cd:b9:69:80:e0:ec:6c:6b:92:d0:9e:
70:59:c3:60:dd:d2:f0:13:0f:e8:e7:da:20:2d:64:0e:11:40:
04:69:25:f3
-----BEGIN CERTIFICATE-----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Generated at Sat Jun 15 01:22:06 2024 by rpki-client on console-fra.rpki-client.org