Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/J_lUUy-cT5lC662QjMzmsBY4Axo.roa
File: J_lUUy-cT5lC662QjMzmsBY4Axo.roa (raw, json)
Hash identifier: aP59V4WwmSmwetfIyqHEYzYpAbJ790et5JSInj0Cf+g=
Subject key identifier: 27:F9:54:53:2F:9C:4F:99:42:EB:AD:90:8C:CC:E6:B0:16:38:03:1A
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FF41C033935AFDCF0D05CF0D54BB9A409
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/J_lUUy-cT5lC662QjMzmsBY4Axo.roa
Signing time: Fri 07 Jun 2024 19:10:27 +0000
ROA not before: Fri 07 Jun 2024 19:10:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 07 Jun 2024 20:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f4:1c:03:39:35:af:dc:f0:d0:5c:f0:d5:4b:b9:a4:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 7 19:10:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=27f954532f9c4f9942ebad908ccce6b01638031a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7d:89:17:53:84:34:d0:17:c6:ef:9f:25:65:
c6:49:41:f6:0b:6f:c0:31:ec:80:dd:bb:b4:17:aa:
86:0e:ac:79:ad:03:af:55:41:79:de:a1:70:48:cb:
92:cd:34:5e:c7:76:70:db:d0:2a:d6:29:71:df:68:
84:b3:e8:f2:c1:c6:08:a7:90:25:4f:0b:ce:20:80:
d4:a6:5a:fe:60:3d:61:c1:94:d7:4d:7c:f5:58:07:
4a:8c:b6:5c:e2:66:ad:b4:12:f0:6d:1c:ae:2d:cd:
e7:39:f0:82:9d:da:f0:49:fe:70:d4:ee:a7:a7:61:
aa:92:e6:f0:30:56:cd:80:e7:c5:73:a5:d8:f2:3c:
3a:f8:45:5d:86:62:f6:f5:a8:c4:09:ec:e8:a3:23:
8e:39:0d:f7:61:85:47:ef:ca:47:97:de:5b:81:51:
cc:51:1e:11:13:1e:00:dc:1f:1a:6a:5a:6a:af:da:
f6:b6:1a:1b:9b:e3:2d:07:f6:ba:dc:c0:01:65:a7:
21:d2:70:d8:e6:fd:a7:01:a5:f1:4a:87:0b:29:61:
99:70:12:fa:48:54:f7:43:61:69:af:42:32:c4:da:
97:40:9c:0c:32:c8:f3:d6:59:fd:cb:8e:44:b5:b4:
76:e5:dd:1a:79:a5:aa:e4:25:c9:d1:b3:29:f4:b3:
66:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:F9:54:53:2F:9C:4F:99:42:EB:AD:90:8C:CC:E6:B0:16:38:03:1A
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/J_lUUy-cT5lC662QjMzmsBY4Axo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
2b:12:e8:87:b6:ff:68:7f:81:e5:d7:b9:bc:75:bb:25:eb:77:
5c:fa:77:dd:e7:86:38:fb:5f:e9:fa:8e:b4:a6:7f:c2:a3:93:
7a:fc:01:b1:39:05:0c:0c:c0:fb:04:33:30:5b:db:61:d9:93:
5b:85:84:f1:ee:8f:11:d1:47:21:cc:34:b6:7d:05:a6:ab:87:
90:bb:6b:aa:01:38:84:c3:a3:88:3b:3c:31:80:c9:1c:b3:74:
0a:cb:85:23:57:30:7e:ce:15:1c:77:f7:9f:a3:09:42:ac:a1:
71:77:3a:1f:a5:ef:8d:41:44:98:0d:98:fe:a2:37:21:a6:c0:
bc:a3:5c:66:4f:7b:a0:8f:89:42:fb:92:1f:9f:b1:f1:6b:97:
68:03:af:6e:4d:11:e8:96:72:4b:ea:cc:a7:f0:45:e8:14:38:
a0:f1:5b:fd:35:72:79:cf:92:4f:49:cc:a5:3b:40:ab:f2:64:
62:8d:df:bf:e8:0f:7b:2c:60:5e:9a:86:cf:16:c4:28:53:1f:
99:64:cf:1c:8a:98:02:58:4a:0c:20:d1:5c:f9:41:6b:24:b4:
20:2a:f8:c6:97:ad:a0:ad:ef:f3:4d:67:f5:bf:14:47:18:fa:
f4:94:a8:4a:ed:95:60:a2:4e:c2:18:fe:9e:ce:f6:b2:47:ce:
77:00:8a:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 22:02:51 2024 by rpki-client on console-fra.rpki-client.org