Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/9dTEsZ3jpgNowZhsgNG58Ftd8R4.roa
File: 9dTEsZ3jpgNowZhsgNG58Ftd8R4.roa (raw, json)
Hash identifier: 6qHaxAadHGLkGJ8FE08CoHWW+wfWhAl3cLq5RBVFpek=
Subject key identifier: F5:D4:C4:B1:9D:E3:A6:03:68:C1:98:6C:80:D1:B9:F0:5B:5D:F1:1E
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01907324529BC910B46306A210EBA38545E6
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/9dTEsZ3jpgNowZhsgNG58Ftd8R4.roa
Signing time: Tue 02 Jul 2024 11:11:18 +0000
ROA not before: Tue 02 Jul 2024 11:11:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jul 2024 12:04:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:73:24:52:9b:c9:10:b4:63:06:a2:10:eb:a3:85:45:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 2 11:11:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f5d4c4b19de3a60368c1986c80d1b9f05b5df11e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ac:ca:eb:d1:76:94:b7:d3:d8:e7:bf:63:19:
83:4c:ae:b6:00:5a:73:d0:fe:c8:0b:94:81:5e:c9:
c6:22:17:b1:80:0e:17:c1:38:48:f6:75:5d:9f:0a:
95:2c:63:ab:2d:60:ec:f9:dd:d4:a1:34:2d:1e:5b:
ed:7c:4a:16:45:d3:bd:8a:5e:51:f0:73:56:ab:c0:
c9:ad:47:09:20:a7:53:da:97:5e:74:e1:42:21:df:
44:0d:78:a0:14:07:20:e1:79:82:0c:f1:3e:98:ed:
c4:6f:80:05:1a:87:21:4b:66:75:86:22:a8:24:b4:
c8:29:26:81:03:03:f7:6c:2f:a2:c3:1b:54:29:7e:
0b:22:22:73:3f:4a:c9:0f:9d:07:19:93:dc:3b:92:
15:da:2b:8e:0a:b6:4f:23:d3:4f:94:7b:24:e9:01:
3d:7b:2d:d7:06:ce:06:b1:74:dc:32:f6:63:c1:09:
6e:5c:5a:74:81:b1:e4:da:a8:82:85:f9:14:33:2d:
69:36:5f:00:c8:57:31:0c:1c:b1:8b:60:07:f8:d0:
e3:77:8a:c2:a3:f4:e2:5a:28:6c:23:4c:4f:97:37:
e6:4f:0a:52:ab:b7:13:92:10:7b:da:c5:2a:20:e0:
62:09:70:0e:36:16:a2:9a:5b:56:7f:cf:88:95:dd:
07:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:D4:C4:B1:9D:E3:A6:03:68:C1:98:6C:80:D1:B9:F0:5B:5D:F1:1E
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/9dTEsZ3jpgNowZhsgNG58Ftd8R4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
30:98:5a:79:52:ef:5e:5f:0a:6e:25:f3:53:30:65:b5:d4:48:
29:91:7f:23:c5:e6:d4:3c:50:e8:3f:14:10:f0:2a:21:9b:85:
03:f6:a6:10:32:76:6e:59:69:d7:f7:2d:b3:e2:11:a4:55:39:
55:a7:30:af:e3:2d:b8:08:0c:81:d3:89:1d:c8:e5:eb:52:f6:
66:d2:01:e9:69:91:f8:f4:6e:9a:a2:02:fa:79:09:37:ea:3f:
97:d8:fb:e9:3f:57:15:19:1f:58:21:ce:d5:bc:b8:fd:43:30:
99:2e:72:27:45:b1:fd:d6:3e:3e:82:0c:0d:26:ab:f6:6c:04:
6d:e3:b5:d4:eb:34:7e:e9:8a:b4:00:fe:27:b7:56:52:4b:ac:
c5:86:db:3e:16:35:8d:34:90:b5:d1:25:27:91:c1:c7:36:d5:
16:45:f9:bf:05:16:57:14:cf:a3:39:9a:07:2c:8a:76:d0:b6:
98:58:6c:f2:97:fc:55:a7:f6:d9:ed:a6:e0:d1:e1:a3:71:bb:
49:64:3c:b3:76:b8:f1:42:89:70:60:8a:06:fc:40:8e:b9:4d:
5f:af:17:bc:a9:f7:7d:96:cb:c5:68:6b:6c:bd:43:2e:c2:67:
3b:d2:fe:87:b6:ee:26:e0:27:69:f1:83:97:94:5c:6b:08:2f:
50:dd:0c:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 2 14:30:22 2024 by rpki-client on console-fra.rpki-client.org