Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/FuynmfPo6zgJBLcchgV1nT1mQqU.roa
File: FuynmfPo6zgJBLcchgV1nT1mQqU.roa (raw, json)
Hash identifier: w93FUXBJ0ZMEBHau9PEIzVBnja10DnlFbbaRdwkwbhc=
Subject key identifier: 16:EC:A7:99:F3:E8:EB:38:09:04:B7:1C:86:05:75:9D:3D:66:42:A5
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190291B511EC16C9938015FE2B05C481653
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/FuynmfPo6zgJBLcchgV1nT1mQqU.roa
Signing time: Tue 18 Jun 2024 02:09:34 +0000
ROA not before: Tue 18 Jun 2024 02:09:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 18 Jun 2024 03:06:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:29:1b:51:1e:c1:6c:99:38:01:5f:e2:b0:5c:48:16:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 18 02:09:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=16eca799f3e8eb380904b71c8605759d3d6642a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c3:f2:e3:b5:b1:c9:a6:6e:32:7b:d8:c5:a2:
08:48:d8:e7:18:2e:6e:e1:33:1c:df:9f:c1:cf:fe:
a1:fb:ce:63:b9:a0:ef:8e:b0:93:22:e2:fa:00:79:
09:2e:e1:39:49:7a:9e:d0:6b:40:36:66:cc:81:c5:
e3:85:89:d5:4d:b5:af:fe:6c:22:8b:ec:ff:d2:d5:
5e:51:fb:45:e1:d2:ae:99:ef:b3:93:79:21:1b:d0:
bf:73:e7:fe:f8:fd:33:f8:63:b5:63:51:72:5b:89:
d7:29:5d:33:97:64:fc:52:c0:c6:84:96:0e:03:cd:
ca:48:10:20:26:df:8b:05:ec:a5:e9:97:3b:e1:fc:
02:9b:5d:50:e1:7a:23:a4:d0:02:1e:ff:d6:e0:67:
04:3f:f1:e8:b5:0b:b2:46:ce:5a:b0:86:b7:ac:3a:
96:56:b9:3d:b3:90:ed:61:19:c5:50:b6:54:ae:74:
1e:5b:09:be:66:16:5c:84:2b:72:76:9d:05:f3:5b:
be:4d:e5:f7:ea:7e:07:7b:55:2c:44:74:50:25:f1:
d1:9d:1f:6e:ce:8f:58:0d:84:c9:0f:a5:b8:c9:1e:
19:4a:e7:29:7c:8f:34:84:25:d6:0f:08:8a:40:14:
b5:53:6c:d5:09:c6:8b:4d:ca:72:da:7c:df:16:99:
c0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:EC:A7:99:F3:E8:EB:38:09:04:B7:1C:86:05:75:9D:3D:66:42:A5
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/FuynmfPo6zgJBLcchgV1nT1mQqU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7f:5a:00:e2:8b:a8:33:8b:eb:cd:81:34:20:8e:4e:3f:b9:9a:
36:76:7a:32:fa:69:2b:c1:45:e8:4f:9a:f2:1f:b1:c1:c6:7e:
86:7d:89:f2:8e:88:ee:db:11:aa:39:eb:61:db:00:fb:87:6b:
88:4a:19:b3:f2:e3:38:1b:15:e0:a7:0f:a6:d7:89:9f:61:ea:
79:1d:41:59:b4:55:d9:cc:b1:dc:3f:85:6a:de:2d:13:0e:0b:
fb:12:67:f4:d6:69:4b:0a:84:37:dd:bb:ee:cd:8f:56:4c:62:
8b:33:72:5a:93:10:ea:a3:7b:0c:69:c2:0b:29:f8:72:ca:83:
4e:18:70:73:f6:13:37:9d:ee:a3:95:f9:8d:b5:a5:0e:3a:f8:
7c:e3:1c:9d:ed:4f:bf:59:39:5b:bc:95:7c:d9:dc:77:c9:22:
96:42:97:41:04:54:d5:67:e5:77:40:b9:5f:29:67:23:bb:20:
be:42:c2:91:7f:be:29:c9:b8:03:ad:be:17:85:32:f7:dc:4c:
f3:07:b5:c0:57:9c:a9:c6:d6:a3:38:74:ad:f5:7d:9d:6b:ac:
8f:85:7e:8d:48:b9:91:e4:72:ea:8f:5d:82:af:13:46:f5:19:
55:ea:03:75:2d:e3:d9:59:57:42:5e:08:bb:15:fb:ef:c0:5d:
27:8b:bb:2a
-----BEGIN CERTIFICATE-----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Generated at Tue Jun 18 03:38:12 2024 by rpki-client on console-fra.rpki-client.org