Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/RldPuPDtq7GXJoENKiAzm1JMdtQ.roa
File: RldPuPDtq7GXJoENKiAzm1JMdtQ.roa (raw, json)
Hash identifier: g9FLTTKnA30JyuDFvUNqbblJvtgr3Svkfs5LWlGlcwI=
Subject key identifier: 46:57:4F:B8:F0:ED:AB:B1:97:26:81:0D:2A:20:33:9B:52:4C:76:D4
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01905C9D69E211EFD528DAA61C49BDE4E20B
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/RldPuPDtq7GXJoENKiAzm1JMdtQ.roa
Signing time: Fri 28 Jun 2024 02:12:18 +0000
ROA not before: Fri 28 Jun 2024 02:12:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 28 Jun 2024 03:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:5c:9d:69:e2:11:ef:d5:28:da:a6:1c:49:bd:e4:e2:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 28 02:12:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=46574fb8f0edabb19726810d2a20339b524c76d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:8a:a2:d4:d8:a4:42:25:29:ca:52:45:d5:fc:
ee:d2:30:aa:bd:56:96:32:c4:4b:c5:a2:9c:e0:e6:
2c:87:2a:06:62:54:4e:ed:80:19:c1:43:fb:2f:54:
0f:19:5a:07:01:54:a9:25:24:02:97:e7:4b:5c:78:
0d:28:06:47:d6:71:dc:8b:5c:c9:5c:32:41:48:24:
45:37:8d:84:da:07:f3:45:72:a3:cc:b7:c1:50:2e:
d7:33:00:27:b5:a0:dc:61:76:8a:9e:be:ae:3a:55:
b0:4c:b0:ed:b9:15:89:23:79:7c:86:f3:37:36:51:
6b:5b:2d:3b:a0:f8:c3:31:3e:6e:73:05:12:83:33:
b0:29:43:12:64:8b:02:51:b7:ae:a9:71:0b:42:93:
b6:38:c7:51:4f:f0:74:5a:b6:72:2b:1e:b1:19:60:
37:66:cb:cb:cb:5c:d9:6f:7e:2b:7c:38:89:a0:06:
f9:11:ae:b7:45:e8:5b:41:7e:5e:8a:98:d5:0b:18:
f6:15:24:2a:5b:1d:9e:0f:3f:95:fd:60:78:b9:e6:
fc:c8:dd:f0:e4:e5:ca:7a:ba:02:6e:59:e5:0e:06:
ce:21:fc:06:43:49:d1:7b:f6:da:95:01:a8:5c:0f:
05:bf:0a:2c:df:bf:c5:fd:90:e7:49:b9:65:75:97:
f7:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:57:4F:B8:F0:ED:AB:B1:97:26:81:0D:2A:20:33:9B:52:4C:76:D4
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/RldPuPDtq7GXJoENKiAzm1JMdtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
15:98:73:7b:b0:6c:14:2f:e9:a6:87:99:9a:57:ab:17:7d:cb:
9d:5a:34:f9:cb:3e:cb:2d:5e:c7:f1:0f:87:d4:04:0c:e9:42:
1e:7a:49:40:b1:38:6c:65:16:67:d8:51:55:63:ea:85:96:d9:
25:fc:93:9a:24:75:3f:37:a1:4f:19:d0:7d:02:ce:b9:3f:b2:
90:02:96:21:d7:d7:2e:b5:b3:90:9a:fc:e6:77:25:45:b6:bd:
a7:0a:1c:5c:36:6b:e0:e7:e9:99:6b:1a:cc:7a:15:57:b4:57:
5f:92:b5:76:12:c3:c3:71:81:88:cb:1c:80:e8:79:cd:57:ff:
ce:e0:89:5c:32:20:f7:71:2e:f0:aa:a4:b1:ba:8d:f2:02:8c:
c6:ce:13:a7:2b:ce:92:80:1e:0b:9c:55:59:36:2b:30:9f:44:
0b:e3:e6:1c:ab:21:eb:ed:3e:4e:7b:67:47:cf:2f:8e:b5:bf:
49:9a:49:8a:4e:d5:2b:ef:f3:04:1b:2b:83:00:2a:47:bd:35:
2a:a7:dc:8f:63:87:3f:4a:c9:21:20:5c:b0:8c:95:52:2a:67:
6b:d8:21:dc:d6:9e:41:1d:14:99:84:53:ea:0c:b2:b2:a6:b3:
8f:95:84:11:4d:72:ca:b1:07:c1:b9:40:56:d2:a4:2f:43:e0:
f0:13:a5:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 28 05:10:41 2024 by rpki-client on console-fra.rpki-client.org