Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/VpmCCBIKEikiF8Pz1HDW2qYh-u0.roa
File: VpmCCBIKEikiF8Pz1HDW2qYh-u0.roa (raw, json)
Hash identifier: cldoeUn1IeR98TWF+Lu7Yg3fZxrW7H2iYBp25pkmIyU=
Subject key identifier: 56:99:82:08:12:0A:12:29:22:17:C3:F3:D4:70:D6:DA:A6:21:FA:ED
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FB5743342151D4326AAB0BA6D82691A23
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/VpmCCBIKEikiF8Pz1HDW2qYh-u0.roa
Signing time: Sun 26 May 2024 15:10:42 +0000
ROA not before: Sun 26 May 2024 15:10:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 26 May 2024 16:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b5:74:33:42:15:1d:43:26:aa:b0:ba:6d:82:69:1a:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 26 15:10:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=56998208120a12292217c3f3d470d6daa621faed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:93:eb:fb:46:cf:7a:78:2a:eb:4b:b6:b7:b9:
14:43:ab:93:4b:64:d1:ec:8f:79:29:99:b7:3e:c7:
82:40:99:29:26:d6:98:ff:08:06:27:72:5c:11:b6:
6c:77:7f:8b:e0:fd:37:4a:9c:c7:de:06:d5:b9:fa:
cd:1e:26:52:72:1c:96:14:44:18:c8:db:02:09:62:
81:ed:0c:a6:45:c5:5a:b6:24:df:f3:35:52:cd:72:
12:a0:b1:fe:fa:25:3e:cd:89:4c:ae:35:44:55:38:
9f:9f:b4:d4:29:ec:27:be:0a:f1:ce:ae:63:6d:ea:
af:fe:88:ea:7c:cc:ad:ca:57:90:0c:d3:3d:9d:f0:
a0:6e:96:b4:a1:a4:c3:fd:ab:51:99:c8:72:3e:1e:
1f:66:45:62:7b:0a:b8:50:d1:52:fc:6b:ff:da:9b:
ae:cc:0b:6e:a3:e6:8c:2d:5e:9d:c5:08:1e:0e:60:
d6:15:b4:e0:0d:92:bd:6d:e5:d0:fe:80:c9:15:ea:
fd:f8:8a:3c:e2:3f:ad:bb:a6:f9:94:89:9a:ca:f1:
5d:6f:8d:9c:7b:b4:c6:88:11:7b:b6:ae:ca:49:14:
20:4b:99:ec:50:a9:9a:18:29:0e:6f:9f:36:bb:16:
a2:5f:29:bf:26:2b:22:e7:6a:a8:bc:b1:49:9e:b2:
bc:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:99:82:08:12:0A:12:29:22:17:C3:F3:D4:70:D6:DA:A6:21:FA:ED
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/VpmCCBIKEikiF8Pz1HDW2qYh-u0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
85:ae:f7:69:67:cb:26:63:8d:27:08:ff:4a:0b:7d:f7:27:07:
39:7e:e1:1a:81:01:97:14:e5:e5:d1:2d:c1:97:a8:83:a9:10:
a1:dc:74:d5:bc:e9:31:0d:fd:5b:ce:54:ac:ea:26:b4:dd:f6:
e6:8e:e6:70:df:4d:2b:87:3c:95:cb:3e:61:57:75:99:47:32:
2f:09:2f:f1:eb:c7:1e:b0:17:dc:56:4f:cb:e4:68:8b:d6:3d:
12:d2:cd:36:8e:43:24:7f:f7:35:e5:80:0c:01:48:f0:51:36:
7d:64:81:0c:84:11:95:f6:d7:a7:86:9a:2e:63:58:da:d7:98:
cc:e4:28:4d:f0:20:5d:16:cd:0d:2b:6e:4d:2f:56:10:c0:67:
8d:65:a0:cb:41:0e:fd:1c:62:49:50:27:9a:47:67:f4:0c:50:
09:3a:2f:0e:a6:8d:94:0e:3f:79:34:9f:29:ba:42:5d:90:2f:
2c:a4:c5:42:8c:4e:f2:80:2b:50:de:65:20:aa:4f:05:b6:b0:
05:9f:19:7a:6b:51:66:7b:c4:f7:2d:f5:b4:a2:28:3c:c5:70:
ca:1a:77:56:eb:cd:ce:60:44:f0:af:f9:55:92:1a:60:48:7b:
8a:f5:fb:5b:36:2f:42:4b:0a:09:65:19:7a:7b:0b:ba:78:fd:
85:6f:27:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:52 2024 by rpki-client on console-fra.rpki-client.org