Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/EZZDFyaqEh0T7R81vohvlk8zRD8.roa
File: EZZDFyaqEh0T7R81vohvlk8zRD8.roa (raw, json)
Hash identifier: z6YPLk+fpFjXP0CPBgq18kZGQKzna0zBavwb06WuVFc=
Subject key identifier: 11:96:43:17:26:AA:12:1D:13:ED:1F:35:BE:88:6F:96:4F:33:44:3F
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FE70703C7CAFC4862678A68F11FEC00D0
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/EZZDFyaqEh0T7R81vohvlk8zRD8.roa
Signing time: Wed 05 Jun 2024 06:12:27 +0000
ROA not before: Wed 05 Jun 2024 06:12:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 05 Jun 2024 07:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e7:07:03:c7:ca:fc:48:62:67:8a:68:f1:1f:ec:00:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 5 06:12:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1196431726aa121d13ed1f35be886f964f33443f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:66:4d:63:9d:f2:72:07:b1:f3:af:2b:4e:58:
b2:d4:7c:04:0a:9f:99:f6:f1:7f:dd:d3:31:b9:cd:
dc:ff:34:3f:61:cc:48:1a:4c:66:54:96:fa:5f:f5:
d7:8f:a3:8f:42:aa:51:5c:57:4a:a9:6a:51:47:42:
f6:c0:fc:6b:e8:d2:bc:13:70:9a:10:88:fd:16:4a:
58:09:2e:bd:b2:c9:55:49:65:0e:5a:0f:e3:58:54:
f6:e1:27:69:7d:19:a3:6b:05:0e:7d:05:89:34:74:
3a:54:f5:d8:b4:ce:23:ef:e4:b1:5a:bc:df:e1:1f:
04:26:02:77:85:21:cc:d3:12:5a:f4:31:00:e8:a4:
dd:a3:05:66:a0:20:2c:7d:6f:69:75:5a:4e:af:6f:
d8:26:44:6a:e1:74:c4:fc:dd:04:2f:cc:e0:63:27:
c1:f9:4e:36:f0:b4:99:6a:7d:9f:46:f6:f1:6b:ed:
90:1f:85:35:c7:15:8a:fd:c5:97:38:6c:82:14:ae:
20:0a:d9:ce:4a:3c:d7:5d:26:48:74:f7:3e:e1:5f:
1c:35:ef:14:70:64:a6:92:12:cd:56:3b:32:7f:f2:
bb:a1:db:2c:39:75:ee:2e:80:6f:28:59:30:9e:43:
16:d6:39:92:0f:ec:69:d0:64:35:89:1e:18:9b:da:
e0:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:96:43:17:26:AA:12:1D:13:ED:1F:35:BE:88:6F:96:4F:33:44:3F
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/EZZDFyaqEh0T7R81vohvlk8zRD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7d:8b:99:6e:86:7b:98:63:42:e5:67:3a:1d:c6:16:cf:1a:51:
74:c8:30:c0:85:6d:79:92:fd:8c:a7:f5:a3:57:ce:24:c7:7b:
24:c2:49:ed:c6:17:a6:e2:c7:59:5a:7b:23:16:97:4c:c7:21:
d1:94:4f:4d:89:5e:ec:19:1b:61:2b:66:fe:00:13:dc:d8:fd:
30:8e:2d:49:ee:dc:d0:9b:be:25:30:21:97:dc:ee:7e:82:c7:
c7:ef:aa:9e:d7:52:e9:d3:78:82:1b:0c:9a:f1:83:dd:1c:a5:
45:40:83:9f:49:4a:66:f0:ea:88:c6:17:a9:f9:30:98:d2:6e:
39:5b:be:19:6d:ca:1f:55:14:46:00:02:3a:f0:de:ce:e7:5b:
cf:f1:70:b4:6b:64:b1:d5:c6:03:d8:68:cd:95:26:e7:5c:46:
80:5e:71:d8:0f:03:90:05:9b:08:bd:87:b9:74:30:5b:d7:35:
4e:4a:8c:1e:ed:56:89:6f:2c:85:a2:bd:c3:7a:25:34:36:e3:
a3:e8:c5:13:9f:78:bf:37:5e:a1:51:2d:9b:09:3c:ea:8d:5e:
3f:2e:2c:e8:8f:60:f6:81:ba:4c:7f:4b:4f:f3:60:15:27:1e:
77:cd:d5:b8:1b:06:03:89:3d:56:28:b3:40:75:a6:57:a6:b4:
8b:60:5e:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:51 2024 by rpki-client on console-fra.rpki-client.org