Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/GRt19nFqHfc6fj8aGW9Kaehc4lM.roa
File: GRt19nFqHfc6fj8aGW9Kaehc4lM.roa (raw, json)
Hash identifier: nUxwVf6XifakuvNLDQdDaDSe5SmazUDZoExYRC9yGF8=
Subject key identifier: 19:1B:75:F6:71:6A:1D:F7:3A:7E:3F:1A:19:6F:4A:69:E8:5C:E2:53
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FD836E6F17D8008115D5C9610866B30D1
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/GRt19nFqHfc6fj8aGW9Kaehc4lM.roa
Signing time: Sun 02 Jun 2024 09:10:27 +0000
ROA not before: Sun 02 Jun 2024 09:10:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 02 Jun 2024 10:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d8:36:e6:f1:7d:80:08:11:5d:5c:96:10:86:6b:30:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 2 09:10:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=191b75f6716a1df73a7e3f1a196f4a69e85ce253
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:1b:c4:54:58:2d:c5:07:1f:83:24:4d:a3:7c:
48:f7:68:a3:0f:b8:8d:c8:53:20:df:52:df:d3:9e:
1d:72:5a:ac:c7:d0:d3:6e:ed:7d:59:53:97:77:77:
49:3b:09:1d:49:61:9b:7a:bb:1b:19:ca:0c:08:e3:
e5:9d:f1:43:7c:73:f3:5f:bf:13:c2:fd:9c:28:83:
0d:dd:5e:b3:85:32:b9:47:91:d7:09:d9:15:50:c0:
8c:5e:c5:fe:38:ed:6d:99:28:f2:7a:40:40:cd:bd:
90:ee:9b:02:93:f0:09:50:47:b9:26:b1:50:ab:80:
bf:b4:b4:ca:8a:33:74:8a:1a:7d:8a:59:a7:e0:e4:
25:a5:53:97:85:d4:40:ba:e2:54:c8:10:a2:e3:24:
9c:79:f8:60:5b:60:2e:7b:91:bb:6a:fc:27:80:30:
d2:59:63:2e:70:85:83:37:0a:ea:23:af:6f:2e:22:
ec:b7:49:84:43:9d:6e:71:73:f1:83:40:16:c1:88:
02:5a:b6:78:d1:60:76:a6:15:86:63:43:ec:a2:68:
04:5d:da:98:b1:22:24:f3:86:92:72:7c:c7:ad:5c:
53:1d:04:2b:ca:bd:02:44:5f:a8:9a:0e:42:12:fb:
ad:cf:f9:44:43:54:87:55:6c:0a:9f:30:69:9e:39:
d6:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:1B:75:F6:71:6A:1D:F7:3A:7E:3F:1A:19:6F:4A:69:E8:5C:E2:53
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/GRt19nFqHfc6fj8aGW9Kaehc4lM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
56:95:43:f0:24:ca:57:8d:5b:97:ff:fd:9e:13:99:62:1a:e8:
5f:08:15:bc:d3:4b:50:bc:aa:11:a2:7b:ad:9e:c6:91:f7:51:
49:62:45:7b:59:ca:a9:e6:64:3f:e8:10:c4:32:cc:b2:0e:b1:
23:d7:f7:fe:4f:4a:8a:36:7d:46:b5:31:16:b0:c0:3a:a2:cf:
c3:2e:5d:ae:da:87:1c:55:92:6d:80:46:4c:d1:2d:9a:38:c3:
9f:ce:ac:2f:54:97:af:19:c9:15:76:06:42:33:5f:1d:89:97:
63:e6:c8:eb:4a:0a:92:1e:d6:f1:02:63:27:a6:3d:87:59:a5:
0c:1c:cd:1c:b0:34:a8:e4:ab:74:4f:3a:e8:90:ef:4e:22:73:
eb:5e:14:5d:59:ab:76:7d:78:d9:eb:0e:ee:1a:16:7a:3a:40:
1d:b0:48:4c:ae:6b:a1:95:7f:4d:d5:cd:9f:92:86:b6:34:ed:
0d:7d:48:f7:fd:d3:54:d2:f5:0d:60:a5:99:6b:df:1f:da:30:
5a:dc:b9:37:5c:be:ce:07:2c:26:02:7a:25:56:55:fc:99:4a:
ff:4d:09:0a:2e:6a:b4:ef:ca:2a:2e:a7:38:ad:7e:36:d5:0a:
80:b7:5a:6e:04:6c:51:db:50:02:e0:1f:8a:92:9e:2d:3a:45:
8d:70:f6:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:51 2024 by rpki-client on console-fra.rpki-client.org