Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/PpbnQ4Pf5lqWXiHMnJ5UaVDv8h4.roa
File: PpbnQ4Pf5lqWXiHMnJ5UaVDv8h4.roa (raw, json)
Hash identifier: gZMmHaiE2T5cgTanomEs8nKfoN0czuVloCv8XSrtCqQ=
Subject key identifier: 3E:96:E7:43:83:DF:E6:5A:96:5E:21:CC:9C:9E:54:69:50:EF:F2:1E
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FF11AF887A9FFA2F28F427804FB24600A
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/PpbnQ4Pf5lqWXiHMnJ5UaVDv8h4.roa
Signing time: Fri 07 Jun 2024 05:10:27 +0000
ROA not before: Fri 07 Jun 2024 05:10:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 07 Jun 2024 06:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f1:1a:f8:87:a9:ff:a2:f2:8f:42:78:04:fb:24:60:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 7 05:10:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3e96e74383dfe65a965e21cc9c9e546950eff21e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:98:0f:bf:b5:73:59:de:51:00:aa:21:88:43:
b9:1f:03:d0:a2:87:4a:f6:f7:c9:b8:62:8b:5a:95:
1f:b2:58:30:eb:c2:2b:8f:70:59:a9:49:08:2e:2d:
89:af:a2:f1:61:c0:bc:37:19:cb:99:b1:5c:6d:ba:
0b:31:13:01:79:17:ca:e4:5d:be:75:6d:b9:90:66:
b7:5a:61:2e:30:5a:8b:bc:4e:46:86:cd:3f:c4:fa:
76:c9:99:73:43:19:1b:89:51:40:cb:3b:12:c7:19:
c2:8b:05:8d:d5:cd:a4:1f:59:52:0d:3a:75:50:18:
5a:9c:7f:de:eb:5d:c5:f2:14:67:74:d7:6f:bc:33:
be:9e:b7:f2:2d:89:19:61:3e:bb:81:65:a3:9e:b1:
68:26:d9:58:64:49:72:d3:38:31:60:94:ee:6f:af:
50:14:d0:86:74:50:fc:5f:9b:62:48:da:7a:a0:eb:
0a:6a:26:18:a6:9f:d1:54:90:6d:76:48:eb:31:03:
c4:2c:8e:5b:f2:7b:c2:e8:40:f9:f7:cd:65:96:55:
6f:a2:93:e8:67:eb:7b:6c:e4:b9:58:a7:e0:b3:c0:
93:fc:60:5c:5b:16:0e:bd:98:42:09:b0:34:af:54:
d8:5f:c8:0d:e6:20:58:ef:a8:0a:ba:c3:07:d0:bc:
2c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:96:E7:43:83:DF:E6:5A:96:5E:21:CC:9C:9E:54:69:50:EF:F2:1E
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/PpbnQ4Pf5lqWXiHMnJ5UaVDv8h4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
63:3a:f5:40:27:1a:fb:c0:b0:93:d1:ca:c3:85:e1:ed:1f:b4:
5e:4b:64:65:b8:f4:53:47:ad:d3:e7:97:0f:f8:5f:21:50:23:
4a:11:4e:98:8d:22:9a:c2:57:7d:c9:d1:cb:b8:71:8d:82:7b:
3b:1b:1d:98:a3:7d:33:9e:80:77:c6:09:99:36:3e:02:4b:59:
0b:32:5d:f3:c5:d7:f0:ac:f9:03:a9:7e:c1:24:84:1b:9c:58:
7d:f7:a4:50:1e:f9:db:70:94:cd:ee:1c:c6:0f:36:37:48:ba:
d1:ca:8f:62:0e:80:ee:0d:74:0a:91:97:ac:2c:be:b2:a6:ce:
b4:88:d6:9f:33:f2:65:6c:71:3c:d6:0e:2e:c7:27:49:6a:23:
84:95:61:fc:1d:54:8e:66:60:e8:78:50:25:83:b1:58:70:fa:
fb:7f:4c:69:79:78:53:54:b1:e3:b3:82:c3:ad:da:b9:fe:22:
b2:93:35:36:61:0f:57:19:3e:ca:19:4e:79:c1:e6:57:da:5e:
48:26:11:f0:6e:3a:f1:c9:a4:27:15:17:bb:c2:b9:98:70:c9:
57:a3:78:18:a5:d5:80:fb:02:70:c2:b0:4e:a9:9d:d3:23:2b:
94:12:73:d6:18:67:3c:97:44:38:f4:5c:d9:6f:41:de:8f:8c:
d7:bf:fa:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 08:14:35 2024 by rpki-client on console-fra.rpki-client.org