Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/JgFDW0GBuZ-ctCTxtzUqEiJHMkg.roa
File: JgFDW0GBuZ-ctCTxtzUqEiJHMkg.roa (raw, json)
Hash identifier: snNDQU9aNxxAkwF2JZTX18RnTvLpMQ74QFpKEu1E8GE=
Subject key identifier: 26:01:43:5B:41:81:B9:9F:9C:B4:24:F1:B7:35:2A:12:22:47:32:48
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019076CB131D9368B2FDB5497A68D8A9ADA7
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/JgFDW0GBuZ-ctCTxtzUqEiJHMkg.roa
Signing time: Wed 03 Jul 2024 04:12:18 +0000
ROA not before: Wed 03 Jul 2024 04:12:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 03 Jul 2024 05:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:76:cb:13:1d:93:68:b2:fd:b5:49:7a:68:d8:a9:ad:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 3 04:12:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2601435b4181b99f9cb424f1b7352a1222473248
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:10:3f:c4:92:b9:0e:8a:8f:53:b5:35:7b:d1:
31:ae:f9:a1:d4:7a:57:07:ce:9b:df:52:20:cd:71:
88:cc:bc:d3:ef:b7:da:3d:74:72:c2:05:a1:b9:1d:
78:63:93:b7:33:56:17:5b:08:27:cc:9f:a5:2c:67:
b7:20:15:4f:8a:a3:f5:f4:5d:65:69:f4:8b:21:77:
44:5e:57:93:7d:ab:e1:b2:c7:ae:45:62:de:64:c1:
a6:1e:96:a0:83:94:8f:7d:cc:52:8c:c3:f9:48:b7:
d0:90:79:6f:2c:6c:e7:46:34:5b:72:ff:1b:bf:ee:
cf:b6:84:a4:bf:92:84:79:df:a4:76:61:a0:c9:98:
e9:de:bf:e5:eb:fe:30:5b:7d:91:9c:ca:4d:21:26:
f7:d9:aa:68:0a:4d:6e:38:9e:bd:ad:dd:a8:6b:7d:
f5:06:59:b7:39:c9:26:ae:99:ca:fa:58:eb:e2:0e:
b2:f7:60:00:f9:1f:09:f0:0a:52:c6:dd:45:e8:d0:
5f:7a:33:44:08:51:d0:e2:aa:90:59:b6:29:35:d2:
10:33:f2:51:dc:bb:ec:86:ba:40:82:f3:c3:18:df:
e3:25:1e:de:52:44:5d:4b:dc:5a:4d:cd:c0:5d:f7:
c9:28:6c:c8:6b:ee:a7:9c:6d:d4:01:16:f9:9c:f5:
a5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:01:43:5B:41:81:B9:9F:9C:B4:24:F1:B7:35:2A:12:22:47:32:48
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/JgFDW0GBuZ-ctCTxtzUqEiJHMkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
92:64:67:2a:0b:90:c1:ea:99:de:25:8e:51:f7:9e:83:19:70:
9d:ef:99:46:37:90:84:b8:4b:5e:7a:42:5c:d2:1f:2b:05:35:
a2:be:b6:94:99:8d:ec:51:f6:b7:fb:ee:45:8c:f9:9d:34:25:
40:b1:50:38:9e:4d:a4:78:24:81:58:61:73:7a:94:a6:15:12:
65:30:2f:f5:b4:02:18:36:4e:9c:90:c2:e9:09:7a:93:ae:03:
fe:bb:24:6f:9c:3f:e9:26:0d:5d:90:0f:09:fc:da:d7:42:4e:
27:76:93:f4:60:5d:f4:f6:6d:9a:24:91:b3:82:6f:2d:0b:8f:
e7:fe:d4:94:34:95:9f:bc:bf:c9:17:4d:16:c7:7d:75:1b:89:
08:2d:a7:c4:61:19:c9:08:6b:05:13:89:fe:45:e5:7b:ae:6c:
c4:6d:43:5c:72:15:0b:ec:05:c6:6a:de:e0:98:75:ff:6a:05:
5f:24:2d:16:27:26:a4:8a:54:74:0d:52:81:91:4b:4f:c3:4f:
e1:c3:40:c5:e9:68:c1:ad:98:bc:0d:bf:34:6a:30:c2:f2:33:
a7:b2:fc:6b:41:72:f7:b2:44:4a:a9:00:77:3e:0e:d5:99:e6:
0b:4a:ae:13:d1:cc:f5:d4:77:84:52:cb:ba:6c:f1:e9:42:dc:
53:1e:75:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 3 06:38:49 2024 by rpki-client on console-ams.rpki-client.org