Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/DTsN2Zk1teBYKXTJXgfv7bU_7nI.roa
File: DTsN2Zk1teBYKXTJXgfv7bU_7nI.roa (raw, json)
Hash identifier: GqD4CT+I0Y/fslBI5m3bx8VxXyY3GnPYl35KhJvB6fc=
Subject key identifier: 0D:3B:0D:D9:99:35:B5:E0:58:29:74:C9:5E:07:EF:ED:B5:3F:EE:72
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01901DF3C9F080424085FD605ACF288FF304
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/DTsN2Zk1teBYKXTJXgfv7bU_7nI.roa
Signing time: Sat 15 Jun 2024 22:10:34 +0000
ROA not before: Sat 15 Jun 2024 22:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 15 Jun 2024 23:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1d:f3:c9:f0:80:42:40:85:fd:60:5a:cf:28:8f:f3:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 15 22:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d3b0dd99935b5e0582974c95e07efedb53fee72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3e:74:7a:64:a5:f8:c5:ee:0a:4c:c1:42:a9:
a7:8f:5a:6c:cf:e6:4f:43:dc:8a:82:9e:7a:e6:fe:
1c:c4:6d:cf:6f:3b:9c:65:d2:8c:5f:65:3e:72:eb:
ca:2b:32:33:93:31:d4:95:01:1a:78:42:ae:b0:c9:
03:ce:4c:fc:73:5b:02:e5:e4:c9:11:c6:9a:dc:27:
e0:dd:e8:91:f8:99:fd:70:94:d2:69:c5:ab:da:8c:
0a:73:93:c1:86:58:b7:44:16:68:99:29:d1:e3:59:
94:a1:ad:e6:3d:15:7c:d5:70:33:db:ec:e6:2f:21:
ac:f8:8d:5c:ec:84:bf:ca:ee:ee:94:ed:3c:5f:5d:
0a:7f:94:8e:7f:0f:54:90:cc:c2:86:58:1d:f7:91:
e1:4b:ac:b8:72:67:a2:44:67:2e:89:38:72:23:04:
bd:dc:13:bf:67:d1:43:1f:77:fb:c3:0d:d1:25:75:
1c:59:4c:18:a5:3e:21:2c:e1:cd:ea:20:17:6a:a0:
16:10:a0:ec:ad:2b:60:7b:fe:f1:fe:86:fe:c6:aa:
74:43:f8:47:92:48:d8:27:ce:39:dd:ff:5d:91:13:
1e:b4:e0:e3:d0:6d:ed:78:7e:46:52:2a:90:46:80:
ad:5f:24:3a:a4:f7:3e:11:f3:a4:a0:42:ad:67:b8:
87:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:3B:0D:D9:99:35:B5:E0:58:29:74:C9:5E:07:EF:ED:B5:3F:EE:72
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/DTsN2Zk1teBYKXTJXgfv7bU_7nI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
37:48:a8:d3:fa:66:8f:d3:51:ff:1c:d0:af:fa:e3:86:55:b7:
7d:f1:3c:77:0e:da:4a:06:cf:3c:61:59:83:6b:3d:ce:e5:48:
05:62:54:2e:82:2e:ff:9a:18:64:f5:25:53:80:64:9e:96:8e:
5e:d2:1f:61:23:8d:9a:e6:70:2c:3b:cf:45:a1:45:a0:73:6e:
73:c3:dc:b8:7d:80:08:4d:e2:60:bc:29:8d:46:b5:d4:1a:b3:
13:e2:68:27:db:a7:8e:0f:1c:01:f3:7e:2f:4f:69:f0:84:f5:
ae:bc:7e:39:ff:d4:2f:d8:34:1b:7b:ba:a6:46:26:f7:06:ee:
f8:18:4a:5f:b4:fe:2c:53:b9:50:ea:5d:46:73:36:08:2e:3e:
d9:c2:2b:9b:4c:f8:d9:72:84:55:f4:21:1f:e1:22:2c:61:52:
eb:f8:92:a3:bb:fb:4e:02:87:e7:69:64:70:7b:96:af:62:9d:
cc:88:ee:77:07:45:c7:22:93:e8:fc:5d:fa:09:4c:ca:1a:c7:
6b:b5:e9:35:25:53:09:f8:f0:50:d8:50:f3:d9:4f:5e:5d:f1:
a5:09:d1:27:35:52:82:f6:ef:49:ea:f6:37:c8:99:0b:ef:74:
4f:ba:a0:15:34:9d:85:32:cd:04:7b:aa:e4:d6:81:bd:7b:e7:
49:aa:ea:0d
-----BEGIN CERTIFICATE-----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Generated at Sat Jun 15 23:41:33 2024 by rpki-client on console-fra.rpki-client.org