Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/WDbAiRdNUhrBluvOQQgpTrwztw0.roa
File: WDbAiRdNUhrBluvOQQgpTrwztw0.roa (raw, json)
Hash identifier: qiixceY4S+zMNw7PfjO09k/uF8JFEBnfsnJlTglu40o=
Subject key identifier: 58:36:C0:89:17:4D:52:1A:C1:96:EB:CE:41:08:29:4E:BC:33:B7:0D
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190095A599068AB9F92AA8F44D851B35E98
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/WDbAiRdNUhrBluvOQQgpTrwztw0.roa
Signing time: Tue 11 Jun 2024 22:10:34 +0000
ROA not before: Tue 11 Jun 2024 22:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 11 Jun 2024 23:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:09:5a:59:90:68:ab:9f:92:aa:8f:44:d8:51:b3:5e:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 11 22:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5836c089174d521ac196ebce4108294ebc33b70d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fd:77:7f:e3:16:36:60:80:8c:94:6b:57:b3:
46:d7:81:80:16:9b:69:c1:7d:b3:6c:00:53:ca:c4:
dc:72:73:d3:71:88:1b:08:35:ee:2b:0a:42:62:f7:
02:54:cc:6e:74:19:3d:21:81:dc:e8:7a:ac:08:e9:
72:23:ca:1e:fc:aa:de:2b:d8:67:1b:c5:97:f6:37:
5f:5f:8b:63:b1:1f:8d:9c:90:9e:aa:50:da:16:d7:
e9:21:e5:e7:a6:30:5e:0a:33:c9:8b:55:cc:3e:f1:
01:05:ff:c0:f5:90:51:70:98:d1:d9:8a:ee:e6:52:
aa:0b:78:a6:c4:00:ab:ec:61:3d:23:ff:5d:3c:f8:
1d:96:48:93:d6:f9:c8:15:bc:49:6d:26:1f:f7:e1:
0e:e4:0f:82:f2:2b:e1:19:bd:b2:9e:ec:fa:32:ba:
2a:2f:26:12:29:f2:a5:ae:cd:30:ed:a4:dc:c5:82:
1e:d7:f1:ba:e0:0c:81:43:f0:8f:67:d1:9f:12:4c:
e0:a5:c6:bf:f2:71:54:dc:3c:d5:f8:82:1f:96:45:
02:a5:a6:17:1e:64:d3:c9:6a:c4:d4:02:3a:39:d6:
03:ec:b5:7a:8b:b7:ef:91:2f:57:b5:71:7b:4b:0a:
40:f2:90:b5:24:43:be:40:c9:53:53:b3:4f:70:a7:
1c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:36:C0:89:17:4D:52:1A:C1:96:EB:CE:41:08:29:4E:BC:33:B7:0D
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/WDbAiRdNUhrBluvOQQgpTrwztw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
57:09:e8:aa:c4:b0:83:c1:fd:4e:3e:67:e4:8c:84:13:88:ac:
41:93:b3:50:b4:68:19:81:cc:d4:26:a2:ea:c0:83:69:6f:ed:
2d:a8:f4:ca:34:27:cc:9c:5c:14:ad:46:ef:50:9d:0b:ba:a4:
ef:35:57:c9:24:12:e5:e1:13:01:d7:6d:c5:2e:a9:18:23:a3:
0c:3b:49:23:98:9e:9a:e7:77:e7:86:c2:77:d5:c8:f1:c8:bd:
3a:db:30:f4:d7:a2:ec:d4:09:83:fa:96:49:5a:ac:f3:3b:66:
d7:28:76:62:ab:a2:b5:8a:00:32:2c:34:d0:12:7d:6e:8c:f9:
f2:80:7b:4f:5a:a6:77:ff:18:a9:a1:e1:11:11:c8:0a:7d:98:
f2:24:0d:73:72:02:e4:4a:9e:76:fe:97:ba:2f:67:64:36:f6:
78:14:31:ff:da:75:b7:70:dd:c9:b1:0d:3b:90:4b:fa:21:7e:
64:e3:0a:c8:d8:5e:f5:a7:ca:f0:42:0e:de:6e:6a:7e:4a:7d:
a0:9a:4e:0d:1b:ab:0e:e6:a7:19:33:58:83:90:9e:41:20:e9:
79:07:23:ad:29:29:e2:cd:d6:08:e0:0a:0e:eb:d0:88:82:fa:
cb:bd:d3:0d:cd:14:85:49:07:9f:28:5a:ae:24:56:05:b7:8c:
34:72:64:73
-----BEGIN CERTIFICATE-----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Generated at Tue Jun 11 23:39:01 2024 by rpki-client on console-fra.rpki-client.org