Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/GGCPV5Oj1ggHcUp0JTKbo_S9rlM.roa
File: GGCPV5Oj1ggHcUp0JTKbo_S9rlM.roa (raw, json)
Hash identifier: 7bnygKSJHSuaXt5iw3Nsrc/HEsslU8M9qbDq2U19MOA=
Subject key identifier: 18:60:8F:57:93:A3:D6:08:07:71:4A:74:25:32:9B:A3:F4:BD:AE:53
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190637B3A83ADF03F92CA565A0B829078B9
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/GGCPV5Oj1ggHcUp0JTKbo_S9rlM.roa
Signing time: Sat 29 Jun 2024 10:12:18 +0000
ROA not before: Sat 29 Jun 2024 10:12:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 29 Jun 2024 11:04:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:63:7b:3a:83:ad:f0:3f:92:ca:56:5a:0b:82:90:78:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 29 10:12:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=18608f5793a3d60807714a7425329ba3f4bdae53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d1:ca:b8:2b:90:62:a8:88:a3:7c:9c:80:a3:
2c:07:05:e2:cc:fd:bf:5e:5f:ff:cf:93:2c:70:75:
3f:37:65:a3:38:35:64:26:15:5e:0b:31:33:c7:cb:
d3:23:b4:bb:13:46:5b:4f:7a:ae:4d:44:3f:cd:56:
02:91:21:4e:76:6e:08:a8:5c:db:ad:52:15:55:be:
d5:48:b8:fb:ba:b7:50:3f:92:6c:68:e0:31:45:6d:
04:d2:a9:82:b0:55:03:ad:85:d9:18:1f:7b:82:a4:
26:9d:b6:24:07:82:da:bb:c1:c8:4f:e4:94:71:40:
79:18:44:f3:bf:df:5b:cb:2b:f2:aa:6b:ec:73:6e:
1d:c5:f6:65:56:cd:05:16:bc:8a:1a:ac:fb:a9:69:
d2:00:69:3c:b6:52:7a:fb:6c:5b:99:5a:1c:e2:39:
42:5b:a0:15:61:92:20:f3:01:8f:c0:2a:93:38:46:
58:d3:49:0b:5c:ff:04:c9:d6:55:87:70:dd:4c:e7:
19:85:fd:bc:c2:77:76:48:fc:6f:10:01:91:5a:51:
38:66:2c:f0:d5:8a:08:52:35:dc:c2:4b:0f:80:0f:
b4:8b:7c:cf:74:e0:2e:bf:ff:2d:31:ec:7d:09:77:
10:d8:f8:f3:10:2f:39:8d:1a:b3:49:e0:b3:b9:dd:
d0:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:60:8F:57:93:A3:D6:08:07:71:4A:74:25:32:9B:A3:F4:BD:AE:53
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/GGCPV5Oj1ggHcUp0JTKbo_S9rlM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
56:e4:4d:18:c7:2b:49:d6:39:18:66:6a:64:1b:b2:4b:db:43:
f2:1a:88:8f:c2:bf:4b:38:f6:b7:07:96:94:9e:07:0d:e2:ea:
d6:c3:78:03:4e:9c:3d:f3:77:a5:ce:3f:ab:8d:56:6f:7f:12:
53:1d:2e:87:4d:58:fa:4b:d2:e8:7b:f8:6c:bc:0d:6b:db:85:
19:0c:38:26:b1:51:e2:27:60:9a:8a:1d:66:4c:38:98:13:be:
21:d7:9a:bb:eb:c2:98:40:fb:6b:3a:c2:80:85:f2:52:51:bb:
c9:e1:f5:26:18:9e:99:1a:22:9d:ab:83:ed:95:32:26:de:e0:
6e:d3:7f:b3:fe:0b:a8:5e:5b:9f:ba:b9:17:fd:5d:6c:69:94:
86:0f:8e:11:73:ca:03:57:5e:db:5c:bb:a7:11:85:1e:cb:23:
e4:9e:e0:99:b5:82:3e:52:f6:96:6d:0e:e9:06:c6:24:cb:2e:
e8:2c:f4:bf:da:21:9d:a0:2f:e0:a5:8c:f2:21:ca:e0:fc:b0:
3c:40:ee:8e:81:1b:7e:c7:56:7f:94:64:e5:a8:3c:d2:aa:cc:
dc:38:ed:a8:79:ca:3e:6e:54:58:70:ff:33:dd:cf:92:cb:06:
8e:65:3a:1e:19:db:81:5d:84:4d:23:09:d2:eb:08:53:5a:52:
74:fc:21:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 29 15:00:46 2024 by rpki-client on console-fra.rpki-client.org