Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/FUZtuwo4MZILutPFMiK4ki9B5rM.roa
File: FUZtuwo4MZILutPFMiK4ki9B5rM.roa (raw, json)
Hash identifier: UZV+TEIK2wGONyG0pSBTihzV92jePPgR8ouv+OezRlQ=
Subject key identifier: 15:46:6D:BB:0A:38:31:92:0B:BA:D3:C5:32:22:B8:92:2F:41:E6:B3
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019034B54A150DA541A1CD4D3F1FB4CEDA02
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/FUZtuwo4MZILutPFMiK4ki9B5rM.roa
Signing time: Thu 20 Jun 2024 08:13:34 +0000
ROA not before: Thu 20 Jun 2024 08:13:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 20 Jun 2024 09:05:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:34:b5:4a:15:0d:a5:41:a1:cd:4d:3f:1f:b4:ce:da:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 20 08:13:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15466dbb0a3831920bbad3c53222b8922f41e6b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:33:70:75:b6:db:7a:67:87:eb:2b:4a:43:a6:
2d:7f:88:3d:2c:c5:19:d4:1d:87:ce:15:07:f7:54:
e3:bb:6f:8c:2e:1c:07:ec:ca:12:10:05:0e:b4:3c:
c3:7f:e0:ef:91:ea:90:9b:c6:6b:8a:55:c3:f0:e6:
b6:7e:c3:13:b8:6a:3e:0f:58:ee:df:ed:bb:40:bf:
9a:21:02:64:bd:75:fa:27:00:b9:ce:b2:70:1d:9a:
bf:9f:f0:b4:0d:a9:aa:53:3f:2f:fe:fd:bc:d4:4c:
8e:e3:16:59:0b:69:e6:ec:01:6b:a4:45:6f:75:d0:
05:da:43:87:d9:85:76:29:a0:1d:3b:86:da:a5:00:
b0:5b:3c:67:58:d8:78:bf:39:56:c8:76:45:99:a3:
12:a7:96:2c:b1:31:7e:08:f9:07:b1:8f:b9:e2:96:
b7:1c:65:bc:14:53:dc:cc:d9:b9:62:cc:d2:33:c0:
58:c6:d1:f4:dc:0e:35:e2:75:e3:bd:c1:86:38:13:
5a:ab:94:d3:43:5b:32:b1:84:f2:91:83:67:f5:e2:
6a:39:9a:a6:0f:a1:29:f2:78:99:3a:11:f0:df:04:
c8:8c:09:73:63:43:a0:69:f9:97:ba:a5:5d:74:1f:
ad:99:47:cd:21:41:db:fd:3d:58:a0:67:e4:3c:0e:
8b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:46:6D:BB:0A:38:31:92:0B:BA:D3:C5:32:22:B8:92:2F:41:E6:B3
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/FUZtuwo4MZILutPFMiK4ki9B5rM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
66:87:41:15:cb:5a:48:7a:51:f3:78:3f:a2:1c:fd:8c:b9:73:
0a:d6:5d:25:ff:c9:66:18:98:16:40:cd:98:51:77:43:a6:47:
58:44:09:ac:dc:f6:51:bd:e2:72:33:7f:c1:fc:aa:3f:2f:ba:
8f:25:31:65:8c:96:a0:2c:21:e0:c2:00:55:27:91:29:bb:a0:
b8:4f:54:84:20:01:0a:dd:d7:3b:ad:0d:99:6c:07:21:8f:e6:
79:91:f2:e2:f5:01:ad:d9:1b:bd:db:94:8e:44:e4:2d:12:4f:
2d:0c:2d:8d:c0:46:6f:6e:28:08:28:83:90:b0:7c:6c:43:a2:
f8:c0:3d:63:88:fd:06:41:8f:33:7e:31:60:e0:85:af:88:79:
3a:a9:70:44:7d:29:8d:42:be:60:e2:42:73:13:15:f7:60:eb:
85:47:cc:25:49:3c:21:cb:74:9f:af:93:e6:d6:22:1f:99:38:
ef:e7:a0:60:52:26:98:85:20:b3:7a:bd:f1:84:58:9a:0b:48:
77:e1:fc:76:f6:fb:e3:a2:c3:16:66:25:8c:33:c0:1d:09:5f:
3d:89:09:65:02:3c:4f:db:eb:45:32:21:5e:69:ee:5b:62:8f:
f3:ec:e9:aa:3c:ac:b5:a5:05:78:56:04:44:f9:85:0a:10:b4:
b6:91:43:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 12:35:50 2024 by rpki-client on console-fra.rpki-client.org