Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/92eeSrScX7HdPfdwVnHNBKLLU0s.roa
File: 92eeSrScX7HdPfdwVnHNBKLLU0s.roa (raw, json)
Hash identifier: DiajP4PqIwf6zwbktCIM66V8IWScSPaO7G/El2bd+hk=
Subject key identifier: F7:67:9E:4A:B4:9C:5F:B1:DD:3D:F7:70:56:71:CD:04:A2:CB:53:4B
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190539A876AC65CF9E2685C34DD16EE00A0
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/92eeSrScX7HdPfdwVnHNBKLLU0s.roa
Signing time: Wed 26 Jun 2024 08:12:34 +0000
ROA not before: Wed 26 Jun 2024 08:12:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 26 Jun 2024 09:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:53:9a:87:6a:c6:5c:f9:e2:68:5c:34:dd:16:ee:00:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 26 08:12:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f7679e4ab49c5fb1dd3df7705671cd04a2cb534b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f5:86:b8:5b:0d:ba:74:35:6a:a9:46:83:9e:
ab:e1:1b:ec:82:00:24:2d:52:1d:24:a0:90:b5:87:
ba:9b:bf:91:29:60:01:ab:d4:2d:27:9a:20:1d:22:
49:fd:8b:b7:00:fa:8e:ed:37:66:31:66:11:f7:f2:
51:1a:0d:7d:f7:9e:5f:62:62:16:9a:c1:89:e4:92:
51:3c:da:43:1f:b5:d8:11:ca:7b:7a:5e:6a:f3:b0:
c3:db:51:b7:db:d8:00:f5:17:91:91:c1:a1:e7:d2:
1b:68:32:09:3d:41:e5:b3:fd:af:15:e1:26:46:2f:
43:7b:34:02:95:9d:6e:a6:2c:0f:ad:44:08:e9:50:
4c:be:32:3d:19:ed:b2:c1:ea:a2:84:1f:41:24:56:
3d:a9:99:46:4d:b0:aa:f4:36:8a:8c:f2:dd:f3:38:
4b:99:bd:e5:1b:1e:77:1e:01:f2:c1:fc:34:29:d8:
4d:f2:b5:96:8c:5f:d6:b0:a4:fd:85:5b:27:52:13:
73:41:b5:89:49:29:5d:87:b8:2f:89:b4:7f:c0:b1:
0e:5e:18:46:43:8e:f0:75:2b:21:10:b8:39:0b:e0:
a3:e1:39:7d:cc:1b:b4:24:d4:39:2f:94:df:3b:31:
a7:e2:d2:9c:74:ed:af:60:ae:e0:22:e9:73:bf:3b:
28:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:67:9E:4A:B4:9C:5F:B1:DD:3D:F7:70:56:71:CD:04:A2:CB:53:4B
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/92eeSrScX7HdPfdwVnHNBKLLU0s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
0d:f5:5f:2d:27:fc:82:e9:62:f6:11:f3:09:33:5b:16:cb:80:
56:46:dc:66:8c:ca:b3:5f:8b:79:0c:3d:2b:dc:25:a5:8e:4b:
dd:ef:72:9a:a5:0c:23:4b:2e:9c:78:35:ca:aa:09:f7:42:23:
5f:19:13:3b:da:28:db:55:38:29:3d:ad:22:a9:f3:2c:53:3e:
9b:05:ed:58:de:63:b2:e3:bd:d9:58:49:c1:91:ca:2d:48:7a:
0c:56:ff:9b:58:0e:62:ba:d4:9a:dc:2f:28:36:61:0b:84:82:
19:80:10:b7:99:b5:89:59:e0:28:64:17:77:9c:13:b4:5d:28:
3e:ac:2e:76:c6:2a:04:38:79:bf:ba:20:f4:35:df:45:df:76:
9f:ff:a9:f7:2f:22:da:ff:3d:5f:a4:26:e0:91:2e:e4:9a:31:
06:41:e2:3c:4f:5b:13:2d:15:53:d6:21:a6:21:12:ef:fc:05:
25:66:81:be:01:25:fc:29:05:c4:3d:f8:0d:9b:21:93:c0:13:
ff:43:92:73:0c:50:59:c7:70:04:26:0b:a1:47:ad:21:39:31:
12:38:28:b7:94:8b:47:35:dc:1f:9f:44:34:89:16:78:d2:c1:
bc:2a:2a:80:91:6e:00:2a:b8:c3:25:19:c6:b1:f1:71:cb:0f:
46:63:19:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 15:27:01 2024 by rpki-client on console-fra.rpki-client.org