Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/EVqmry55D8hjCYSCbm_7QXLu85E.roa
File: EVqmry55D8hjCYSCbm_7QXLu85E.roa (raw, json)
Hash identifier: GWa8PgadcPtHxmRosCsnJhCDvItvLnK3vN6p9/rFArI=
Subject key identifier: 11:5A:A6:AF:2E:79:0F:C8:63:09:84:82:6E:6F:FB:41:72:EE:F3:91
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01906CB1A0B97317999D2C940723551D19EB
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/EVqmry55D8hjCYSCbm_7QXLu85E.roa
Signing time: Mon 01 Jul 2024 05:08:18 +0000
ROA not before: Mon 01 Jul 2024 05:08:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jul 2024 06:04:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6c:b1:a0:b9:73:17:99:9d:2c:94:07:23:55:1d:19:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 1 05:08:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=115aa6af2e790fc8630984826e6ffb4172eef391
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a2:5a:cc:18:47:fd:34:a2:32:70:d3:f3:6e:
bf:58:9b:63:89:d4:a5:42:e3:80:e1:4f:35:23:ff:
b9:05:a6:2b:9c:12:7e:75:bf:47:d4:7e:c0:4d:21:
ae:db:a1:eb:6b:09:d6:72:86:b9:f0:71:63:28:e3:
72:95:db:ef:1b:fd:96:50:c1:dd:ef:59:2f:6d:cb:
8a:c7:ec:7a:ae:bd:99:a7:f7:b2:a4:f6:47:54:0c:
ee:e4:6c:5c:c8:2a:9d:35:3f:a8:ba:99:4c:80:ff:
67:7e:aa:1e:93:58:bc:6b:d0:27:29:2e:a9:8e:07:
5f:4b:b6:d7:bd:ed:cd:10:6e:fb:c3:c1:5f:4c:c0:
64:b0:f4:fe:b2:23:46:9e:ba:b4:41:8b:90:ca:69:
22:f0:fa:b8:04:f0:5c:b6:48:21:f8:84:00:6b:aa:
8d:83:3d:b9:f7:6b:31:69:57:15:4f:10:09:51:1f:
4e:d3:b2:bb:a6:cc:bd:85:63:7f:64:f3:32:e8:cd:
59:b4:59:7a:eb:96:89:4c:e0:d8:00:c5:5d:29:ae:
bf:4d:db:88:34:23:4e:10:ef:1b:61:bf:ef:27:65:
37:b3:47:2f:3e:83:2a:51:dc:ec:e1:f4:99:b4:29:
f5:dc:93:5f:69:29:d0:0c:c0:82:fe:f1:a1:fe:c2:
94:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:5A:A6:AF:2E:79:0F:C8:63:09:84:82:6E:6F:FB:41:72:EE:F3:91
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/EVqmry55D8hjCYSCbm_7QXLu85E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
66:db:ed:d8:61:db:30:d9:df:87:17:76:14:83:06:0b:31:83:
53:35:62:44:c9:3e:88:31:81:07:87:91:de:2d:8b:73:25:70:
aa:ee:1f:b4:d3:bc:41:30:3a:ea:08:bd:55:f8:f0:cf:0b:29:
89:a8:dd:ac:77:1e:f1:9c:63:4b:80:27:40:18:f6:56:92:c2:
82:48:ee:3b:0c:12:d0:53:f5:49:b8:26:81:97:64:b4:fc:ca:
0b:6f:d1:b7:8a:12:9f:85:ed:82:39:c2:44:bb:5d:89:0e:7d:
3a:c1:17:9b:57:87:26:7e:48:1e:4f:8d:48:6b:82:4d:63:a7:
76:61:c0:81:49:bd:0f:b5:20:65:76:34:8c:fa:65:52:c0:56:
d7:13:fd:b0:1f:21:fe:70:79:2e:50:4a:57:74:a7:e4:d0:a6:
95:11:87:ea:f8:4e:25:5c:ac:f8:9d:06:d2:d6:a1:74:42:c3:
44:cc:a7:86:a3:cf:49:a8:30:29:5b:4a:6e:bb:d9:56:69:50:
aa:fc:f6:92:f4:ac:80:1d:39:a6:0d:04:48:58:0f:7c:13:30:
ce:61:1b:c2:81:74:3a:db:e7:63:6d:e5:41:60:d6:92:14:80:
04:bf:21:74:7d:b1:ce:78:33:ae:c4:55:11:28:8f:eb:ae:fd:
3d:d2:4c:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 07:44:54 2024 by rpki-client on console-fra.rpki-client.org