Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/RbwW-iG8Ni8zBK_Oetz5gr0L4BY.roa
File: RbwW-iG8Ni8zBK_Oetz5gr0L4BY.roa (raw, json)
Hash identifier: aXHjRAhPOyFe08eY27avp32t1i7enR6mhHQ9qy3/kq4=
Subject key identifier: 45:BC:16:FA:21:BC:36:2F:33:04:AF:CE:7A:DC:F9:82:BD:0B:E0:16
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019033D7BBA4F53E636751A35087B604B253
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/RbwW-iG8Ni8zBK_Oetz5gr0L4BY.roa
Signing time: Thu 20 Jun 2024 04:11:34 +0000
ROA not before: Thu 20 Jun 2024 04:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 20 Jun 2024 05:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:33:d7:bb:a4:f5:3e:63:67:51:a3:50:87:b6:04:b2:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 20 04:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=45bc16fa21bc362f3304afce7adcf982bd0be016
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:42:cf:91:7e:b0:29:5d:41:2a:fc:33:a8:33:
c9:f8:12:c5:fa:c1:99:90:08:84:ba:c5:17:da:c0:
08:fa:c5:3f:85:8f:1b:b0:03:a0:5b:7c:25:7f:34:
05:ab:8c:f4:28:95:10:97:df:ae:64:e4:a4:5b:a5:
ed:30:45:32:52:4d:b4:60:e6:0f:d2:0c:af:2f:87:
71:df:b2:bc:86:24:6c:62:62:60:30:36:e3:a6:0b:
57:2e:d1:4f:09:43:e8:41:4a:eb:99:9e:10:16:02:
bf:9e:07:34:a3:6b:db:5e:2b:ff:48:d5:73:c3:96:
5d:d9:47:74:92:e9:00:f9:82:f4:5d:3f:8f:47:c3:
85:68:3a:02:d6:50:eb:77:88:2a:29:86:d6:18:ab:
39:e3:c6:a5:9b:4f:e6:f8:26:80:a9:98:bc:0c:22:
f8:7d:43:00:3a:b8:fe:46:29:6c:e1:28:34:7c:72:
5f:60:99:c5:5b:50:2a:bc:a1:76:ec:4c:6f:01:00:
15:ff:22:2d:e4:24:0f:61:e5:b6:ba:ec:f9:d7:a1:
65:bd:e8:1d:5b:74:ae:37:d6:73:0d:ab:27:49:18:
be:7d:92:f4:2d:f8:64:a8:06:d7:34:aa:81:53:df:
a0:dd:eb:4d:fc:3c:60:e4:7b:fe:46:99:7a:ea:01:
ce:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:BC:16:FA:21:BC:36:2F:33:04:AF:CE:7A:DC:F9:82:BD:0B:E0:16
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/RbwW-iG8Ni8zBK_Oetz5gr0L4BY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
61:c1:62:49:dc:79:45:dc:e0:f4:02:12:e6:aa:29:97:dd:b9:
62:c3:51:7c:d6:86:db:20:d9:aa:15:07:48:2c:1d:45:9b:b5:
f7:2b:fa:3c:43:e7:d2:ed:dc:c5:0c:bb:7f:fc:f4:e7:57:f3:
18:c9:19:60:e3:2b:3b:d7:af:e6:74:c2:07:a3:23:f9:1d:48:
15:1e:83:42:ba:e0:03:50:ce:5c:22:52:06:73:88:60:58:de:
62:19:62:4a:f2:a5:77:24:ef:52:0d:73:15:3c:cc:0a:a2:3a:
65:c4:68:a5:52:3a:22:9c:90:18:c9:73:ab:23:f1:fa:e2:5d:
5a:8f:51:e8:c7:32:25:dc:7e:a5:4c:e3:45:42:26:c6:ce:f1:
0c:59:d8:09:ef:cd:16:d1:fb:eb:0b:18:75:d6:c0:73:9c:d4:
eb:1b:46:b6:0d:6f:84:fa:5a:4a:2e:6c:72:36:93:39:b5:9f:
f4:bd:eb:48:86:d3:0e:c1:43:66:5c:2c:92:62:e2:89:ba:cf:
68:59:b6:b9:57:47:da:e3:40:8b:cf:44:18:90:33:a9:ba:98:
b0:ec:41:b1:c3:9c:c8:54:d7:13:68:59:72:21:ea:b6:68:a1:
17:8f:3d:4c:d8:8a:65:9f:12:b3:c2:f7:92:a3:26:10:ca:42:
fc:32:c6:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 06:05:20 2024 by rpki-client on console-fra.rpki-client.org