Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/AFEDwPj0NtukB1ZZcYEeXu5ZtBI.roa
File: AFEDwPj0NtukB1ZZcYEeXu5ZtBI.roa (raw, json)
Hash identifier: dFrsyDBENwcqlT7zA7yDA6H1/GTZXOCtx04ujYR/xgI=
Subject key identifier: 00:51:03:C0:F8:F4:36:DB:A4:07:56:59:71:81:1E:5E:EE:59:B4:12
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019055180F586C1C62504D57D984238B68E9
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/AFEDwPj0NtukB1ZZcYEeXu5ZtBI.roa
Signing time: Wed 26 Jun 2024 15:09:18 +0000
ROA not before: Wed 26 Jun 2024 15:09:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 26 Jun 2024 16:04:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:55:18:0f:58:6c:1c:62:50:4d:57:d9:84:23:8b:68:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 26 15:09:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=005103c0f8f436dba407565971811e5eee59b412
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:76:65:e5:bf:7a:d0:c8:53:17:94:77:9a:6c:
40:8c:40:43:91:65:0e:1f:19:bd:30:ea:51:25:ed:
09:3b:59:33:5f:12:4b:40:2a:77:0a:e4:72:e6:a4:
fd:f8:0a:1f:02:ce:0a:5d:12:28:43:34:73:41:19:
2d:e0:84:36:ea:df:60:4c:84:65:a3:a8:30:f7:49:
7a:29:b3:34:4c:3d:3c:33:16:5f:ee:96:ca:37:ae:
d1:5d:0d:09:db:6c:43:69:34:b3:85:ab:7d:6f:ca:
8d:44:0a:b9:65:3f:18:2b:04:55:b9:d0:a2:13:f6:
ba:69:27:19:ea:b4:cd:ae:c2:93:37:6a:57:d0:69:
ff:e7:d8:2c:fa:10:4d:a7:49:ea:bd:c1:63:13:37:
f3:1a:d3:5e:87:6b:52:2a:1a:bc:bd:ce:55:99:c4:
73:8f:b4:4b:5c:79:42:4d:1e:05:7a:7b:70:ec:ff:
c8:d7:a7:69:f7:df:59:b7:19:a0:de:e4:ec:70:92:
ac:0f:77:c3:be:0b:1f:85:0a:90:49:b6:fc:61:48:
dc:17:6d:85:d4:cb:92:4d:91:b8:51:6f:53:68:0c:
dc:26:f3:47:90:ff:77:4d:7a:e8:7a:78:87:1a:c0:
8b:d0:2b:34:5c:03:28:3e:3a:9a:69:3f:d4:bb:64:
d1:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:51:03:C0:F8:F4:36:DB:A4:07:56:59:71:81:1E:5E:EE:59:B4:12
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/AFEDwPj0NtukB1ZZcYEeXu5ZtBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
44:07:f3:53:09:a7:69:5c:f6:54:aa:c4:7a:8b:1b:7e:a7:36:
dd:f4:92:ae:98:ac:90:a0:a9:be:79:68:aa:27:dc:ec:9d:fd:
35:e1:d8:ab:fe:50:00:13:ef:dc:21:43:43:49:cb:ac:24:43:
54:cc:a4:b6:15:5d:0d:2c:27:69:39:0d:36:ee:e7:c2:c0:3a:
fc:6f:5f:39:40:07:93:fb:45:ad:78:a9:b2:3d:56:09:56:b0:
72:5c:01:39:39:d6:e2:a7:2e:6e:ff:d8:14:54:30:2c:36:7b:
e1:aa:60:ad:be:7e:30:c7:7e:e5:f3:b5:de:cf:be:82:98:55:
68:eb:6d:bf:c7:c5:83:18:f2:f7:ee:af:f2:eb:fe:05:b5:47:
45:27:af:65:63:7e:a6:35:f1:26:87:58:5b:fd:55:b5:5e:88:
f6:db:3e:72:70:f6:ba:c5:ab:d6:2a:8e:48:42:d9:50:87:68:
ec:fb:15:4a:9d:97:32:dc:0b:0c:b6:b0:9c:a7:73:3e:d7:2f:
80:07:e4:ef:4c:e8:3e:14:d4:96:72:ad:5a:5b:ad:73:9c:15:
a4:60:7c:4b:af:4b:ad:0c:f4:7f:78:37:97:a3:b7:72:cc:57:
be:9c:e0:87:a1:a4:19:a2:e8:2a:8d:4d:99:78:90:b2:fd:ed:
b4:0c:8b:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 22:31:07 2024 by rpki-client on console-fra.rpki-client.org