Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/D51dJq5YJd8WmqwMpANzJXIZCDs.roa
File: D51dJq5YJd8WmqwMpANzJXIZCDs.roa (raw, json)
Hash identifier: NY5gxjGDYNZCfL3qCjNNjDM3PDiizwFHwmjGzDxvUFM=
Subject key identifier: 0F:9D:5D:26:AE:58:25:DF:16:9A:AC:0C:A4:03:73:25:72:19:08:3B
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FDA25492A0238751A8C606ED1DCB08EE4
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/D51dJq5YJd8WmqwMpANzJXIZCDs.roa
Signing time: Sun 02 Jun 2024 18:10:27 +0000
ROA not before: Sun 02 Jun 2024 18:10:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 02 Jun 2024 19:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:da:25:49:2a:02:38:75:1a:8c:60:6e:d1:dc:b0:8e:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 2 18:10:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0f9d5d26ae5825df169aac0ca40373257219083b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d5:78:eb:b5:5e:c6:73:05:21:ac:a6:99:1a:
cb:5d:52:e5:34:a4:90:5a:86:40:37:8f:6a:05:b7:
47:82:96:11:2f:8e:09:7c:a0:e9:4f:08:08:7b:8c:
80:bc:53:83:2d:95:5c:04:3d:cf:83:a2:e1:1a:83:
cf:75:26:f5:2e:c2:ac:0a:38:64:24:f6:13:2a:b8:
7c:83:78:13:8e:65:50:54:fd:62:19:44:aa:7f:43:
4b:2c:90:86:6b:0c:ce:cd:fe:ee:c1:f3:b8:4c:6b:
e4:c1:8a:82:29:07:97:31:fc:13:9a:87:06:1f:27:
7c:18:3f:43:58:86:7c:04:45:4f:d0:0a:fe:50:dc:
bf:c0:6b:a1:ed:bd:d1:91:f4:be:ea:ea:b8:36:41:
ac:c4:ac:61:55:e9:92:28:57:ba:f2:34:0c:76:00:
1e:8f:4b:18:0b:1d:fe:f7:b8:fc:4a:bd:15:b2:f5:
d3:a5:da:56:cc:31:6c:85:12:e6:5e:51:8b:1b:8d:
cf:5d:a5:f6:76:95:36:70:ce:0e:49:7b:ec:2f:5d:
98:24:38:e1:28:70:04:dc:1c:23:7f:7e:3b:33:0e:
dc:93:03:c1:be:d7:49:1c:1a:a0:6a:62:a1:cd:07:
2c:06:b4:e3:af:e1:de:f0:c0:6e:d7:9e:f5:ce:fa:
b5:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:9D:5D:26:AE:58:25:DF:16:9A:AC:0C:A4:03:73:25:72:19:08:3B
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/D51dJq5YJd8WmqwMpANzJXIZCDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5a:ab:58:ad:30:8c:21:ae:e7:dc:54:cf:ac:62:76:c3:4b:96:
40:ea:68:3a:1a:24:71:54:04:62:5e:70:17:d1:ff:1b:3f:d8:
f5:88:8f:1e:f0:3f:43:bc:e6:96:86:a0:59:39:9c:cf:b4:5f:
54:c1:e4:5e:a8:4b:cd:38:c2:78:1b:d2:88:df:8b:c3:06:b8:
ed:0c:66:a4:ac:d3:e9:57:03:6b:77:6a:72:85:3b:d3:4b:4b:
68:2e:4a:7c:cb:56:f6:e3:39:20:69:32:4d:96:fb:56:00:42:
f5:54:50:04:5d:03:e4:0e:1c:d4:ad:4b:80:14:b8:c4:f3:42:
e8:57:82:62:9d:77:fc:07:72:47:fe:ce:72:e5:21:51:f6:dd:
75:b4:37:f1:80:27:4b:15:16:2e:25:f1:99:95:76:a1:a9:b0:
bd:16:22:68:4f:d8:e3:35:26:db:27:4f:90:8a:45:e0:2d:8a:
9d:2b:24:62:ed:b6:60:a2:09:1c:64:95:3b:d0:83:5b:02:ef:
c5:64:52:c1:13:e4:c2:f2:a6:83:3a:93:5a:bb:00:54:a3:87:
9b:74:bb:d0:21:0c:57:6a:77:6d:13:6d:ce:7c:e6:74:2f:a3:
93:00:99:27:9e:04:88:d0:6a:89:a9:65:a4:80:c4:df:90:e0:
a6:fd:92:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:51 2024 by rpki-client on console-fra.rpki-client.org