Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/T_VhkCG2MzmviarlHtUDSqZVcnQ.roa
File: T_VhkCG2MzmviarlHtUDSqZVcnQ.roa (raw, json)
Hash identifier: VqgfM335BFYwdVC2C5T3NmSr4NhrX4rGtjERZgv5PDY=
Subject key identifier: 4F:F5:61:90:21:B6:33:39:AF:89:AA:E5:1E:D5:03:4A:A6:55:72:74
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01906F45B8608D462E8E29CD9B2D78F873BC
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/T_VhkCG2MzmviarlHtUDSqZVcnQ.roa
Signing time: Mon 01 Jul 2024 17:09:18 +0000
ROA not before: Mon 01 Jul 2024 17:09:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jul 2024 18:07:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6f:45:b8:60:8d:46:2e:8e:29:cd:9b:2d:78:f8:73:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 1 17:09:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4ff5619021b63339af89aae51ed5034aa6557274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:74:06:eb:57:16:19:be:e2:ec:a8:9e:b6:1d:
2f:14:f1:35:9c:1e:a7:6d:c4:7a:a9:76:23:05:a7:
3e:ba:9f:e8:24:7d:7b:13:09:b4:04:59:3a:17:ec:
f8:9f:d4:f4:67:de:6a:6c:de:2a:cf:cf:cf:92:a2:
bd:1a:aa:4c:0e:34:5d:ba:a6:96:a1:0a:80:7b:50:
09:e1:8c:f2:60:0b:bb:33:bb:6c:e7:be:0f:5d:55:
c2:6a:cd:fa:88:ef:d6:b9:76:81:96:0f:fb:ba:69:
4f:1c:7b:b8:c8:26:63:14:6d:f7:f7:10:fa:10:99:
ef:47:e0:aa:5a:e0:0e:30:5f:8f:a8:cc:9a:8b:08:
f9:6c:ca:76:8d:db:a9:4d:da:1e:5f:2a:8a:d0:27:
b8:b5:fb:fb:c0:df:1b:5e:2d:23:52:da:68:f5:68:
75:87:ad:ed:b4:96:bf:4e:8d:9e:0f:1c:e8:8e:37:
ae:4c:7b:b5:7a:7a:b3:a8:db:dd:fc:75:77:8c:27:
15:0c:b7:bc:5f:e9:3f:1f:a0:31:b7:24:0b:95:57:
c4:98:b2:f0:53:c2:89:e4:53:4e:66:cc:33:32:d8:
04:12:7a:77:4d:88:76:65:8b:0f:35:85:af:7b:21:
3a:ef:d4:d2:39:0e:21:cd:72:c2:56:fd:4b:ad:8e:
e4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:F5:61:90:21:B6:33:39:AF:89:AA:E5:1E:D5:03:4A:A6:55:72:74
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/T_VhkCG2MzmviarlHtUDSqZVcnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
8c:31:8d:58:ea:04:91:42:0e:8a:2b:c5:7f:47:10:79:64:41:
af:7b:6a:f7:da:a2:c9:a7:07:d7:d7:8a:b1:04:7a:e2:9b:a8:
ec:34:05:77:33:73:bd:8f:f8:88:ae:b8:c0:3a:b7:6f:74:7f:
df:c3:0c:4e:b4:1c:c3:05:81:81:b4:70:38:0a:b9:d6:28:8c:
31:13:b5:b5:e9:3f:3d:27:fb:73:75:38:2c:24:21:9d:57:0f:
a4:bd:a1:b6:cf:e0:39:5d:a5:52:28:09:30:d9:6a:c7:26:5b:
5b:d0:7f:a7:20:bf:8a:0a:78:f3:d1:1d:12:a0:4f:bb:51:6b:
88:17:ed:88:5d:ef:d0:0b:2b:f6:f8:56:30:15:55:fd:af:48:
c3:cb:4d:93:74:28:75:30:e2:21:85:b0:a6:8a:a4:45:06:13:
fc:64:0f:9c:ab:31:21:63:58:9e:a0:66:a3:4d:87:34:0f:ca:
1e:2e:08:3a:3c:88:81:aa:33:21:c4:08:c9:1a:4b:8b:3e:01:
14:01:99:27:74:03:d9:a9:0a:94:14:07:90:5e:00:9d:23:81:
90:db:0d:33:34:24:4d:f0:54:a9:df:4d:a8:4b:63:00:ae:9d:
43:30:87:49:36:18:72:f5:a1:3d:41:ac:17:61:81:46:8c:da:
b9:a7:90:f9
-----BEGIN CERTIFICATE-----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Generated at Mon Jul 1 19:57:19 2024 by rpki-client on console-fra.rpki-client.org