Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/XHpVR4HtPMD41Ys3x8SovEUQt5A.roa
File: XHpVR4HtPMD41Ys3x8SovEUQt5A.roa (raw, json)
Hash identifier: GcdRVep2hE9yrOdGXJAxOSiCfmAZcy950WMPADk7OPg=
Subject key identifier: 5C:7A:55:47:81:ED:3C:C0:F8:D5:8B:37:C7:C4:A8:BC:45:10:B7:90
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FF60A66AA56FD59E3AA3F2AAEE12478E3
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/XHpVR4HtPMD41Ys3x8SovEUQt5A.roa
Signing time: Sat 08 Jun 2024 04:10:27 +0000
ROA not before: Sat 08 Jun 2024 04:10:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 08 Jun 2024 05:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f6:0a:66:aa:56:fd:59:e3:aa:3f:2a:ae:e1:24:78:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 8 04:10:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5c7a554781ed3cc0f8d58b37c7c4a8bc4510b790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bf:bf:5c:d9:e0:38:a6:24:01:91:63:c6:20:
ab:75:46:9e:04:38:b7:fb:91:a6:16:51:5a:d4:bc:
ea:99:fe:48:b8:aa:80:26:db:7b:eb:81:3a:5e:68:
76:78:84:64:8a:62:ef:a2:8b:4d:ab:65:3d:ca:8b:
f3:21:c7:79:94:40:09:04:cd:32:54:d2:6f:9a:a5:
5c:9b:dc:c2:a2:2f:f0:69:49:2b:e2:ad:3a:e5:4e:
bb:e9:e8:15:98:47:35:99:d2:12:b7:3c:5f:1b:da:
03:1f:98:39:ea:c3:e7:41:16:38:c7:cf:bd:6b:1a:
98:57:f0:d6:8a:0f:f4:fd:f7:a0:06:58:52:e2:98:
e7:b0:32:35:35:af:8c:37:80:72:3d:2c:8d:65:63:
b3:71:43:48:b1:ba:7c:9c:ef:70:b8:98:12:ab:a2:
64:10:a0:50:0a:0a:e6:08:65:de:72:b0:fc:55:6a:
6f:25:be:a2:94:09:9e:25:cf:d0:c6:41:66:08:1e:
ed:e6:09:f9:eb:00:df:12:19:5e:4c:68:e7:7e:fd:
83:5a:97:a5:61:19:2d:84:44:c7:e0:f3:42:a6:33:
81:d4:d1:51:72:cd:e6:02:c0:8b:a5:f9:c5:2b:e7:
d2:24:5d:b7:c3:73:c5:f9:f1:a8:ef:d5:35:05:a2:
e4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:7A:55:47:81:ED:3C:C0:F8:D5:8B:37:C7:C4:A8:BC:45:10:B7:90
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/XHpVR4HtPMD41Ys3x8SovEUQt5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7d:c4:1a:18:a7:50:8b:79:b6:6c:04:e6:65:bd:49:a0:e9:8f:
1b:15:00:a2:89:ab:22:45:ab:fc:7e:d2:15:d3:ec:3d:91:e1:
6f:7d:8f:5c:5c:e4:6e:fb:d9:21:79:5e:7a:d7:5f:59:ef:ef:
39:3f:4a:3b:a9:50:7f:94:93:20:c9:54:5c:38:7c:3d:1e:cd:
bc:52:7a:8c:3a:14:d7:6b:ac:ea:2b:c1:61:be:e2:af:df:aa:
4b:83:a7:49:02:d4:a8:6c:0a:1c:77:1f:cf:91:62:14:a0:4a:
e7:fa:be:83:7a:f7:2c:f5:80:cb:11:54:80:10:67:b3:eb:59:
05:66:da:58:ff:b5:79:fc:62:7c:0f:40:bf:31:84:f6:68:4c:
58:00:92:95:33:e7:4b:9d:57:a9:f6:17:ab:30:55:e8:be:cb:
74:bd:c3:cd:a6:0b:14:02:70:c3:a8:b5:d2:24:b3:77:38:fe:
0b:b1:42:b7:2b:56:04:3d:eb:d7:34:2a:0f:97:3e:59:7b:d3:
fc:61:b2:da:24:15:5a:a0:ac:b2:4d:d4:28:48:12:94:10:9a:
26:54:62:ee:7b:3a:9a:5a:10:7d:93:94:4c:35:c5:b8:43:98:
1b:79:1a:de:7a:ac:fd:ed:45:6c:57:30:8d:06:6c:f0:cb:c5:
43:ab:93:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 07:14:02 2024 by rpki-client on console-fra.rpki-client.org