Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/YR8mepfotrhB98Ki7xXrvCRRuOY.roa
File: YR8mepfotrhB98Ki7xXrvCRRuOY.roa (raw, json)
Hash identifier: VMwP9JPJ3F5DyV4C9/jud8xWo/3D+7xmxXTrJWTRXIw=
Subject key identifier: 61:1F:26:7A:97:E8:B6:B8:41:F7:C2:A2:EF:15:EB:BC:24:51:B8:E6
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FFC0C7C0DBCB0F198EAEA9DCC1B7C801F
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/YR8mepfotrhB98Ki7xXrvCRRuOY.roa
Signing time: Sun 09 Jun 2024 08:10:27 +0000
ROA not before: Sun 09 Jun 2024 08:10:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 09 Jun 2024 09:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:fc:0c:7c:0d:bc:b0:f1:98:ea:ea:9d:cc:1b:7c:80:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 9 08:10:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=611f267a97e8b6b841f7c2a2ef15ebbc2451b8e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:fc:9c:83:b8:39:d1:42:c9:49:05:ee:63:49:
82:1a:5c:49:9c:4e:9b:8f:11:1d:7f:a8:49:32:ca:
86:9b:05:2f:d5:83:7e:9f:bc:02:ec:4d:10:42:e4:
42:b0:63:e1:67:84:b5:79:ed:31:55:e7:09:63:23:
3f:5a:d0:32:dc:26:5b:81:c8:6a:20:cf:67:95:3a:
8a:cd:43:6c:0c:04:d3:91:6f:e7:92:41:24:7d:1e:
d4:9e:63:3c:6f:bb:be:b6:0e:07:19:5f:69:59:01:
46:a3:f5:d4:95:e7:db:67:f6:0c:2a:99:fd:5a:21:
5e:f6:ec:2f:ca:39:1e:40:6a:97:4f:b3:f8:a2:8e:
b1:c9:2e:2d:65:ff:8f:bb:d9:d8:9f:65:ce:c3:84:
b1:1e:ba:ae:f1:19:11:8b:be:5a:ff:e8:56:fe:ae:
8a:d5:35:bd:88:2b:79:ac:9e:49:e6:2a:1b:13:79:
06:0c:1e:86:d3:a5:37:1e:6a:12:55:80:26:3d:2a:
af:a7:02:eb:35:79:65:2e:1b:29:6b:a5:9d:3a:3c:
b2:38:93:7d:72:f9:0f:be:06:58:5c:f2:1d:23:c2:
96:a8:01:84:cd:cd:ac:71:a3:bd:0e:9f:57:3d:ab:
2c:5d:68:1a:31:cb:44:40:f8:31:35:22:70:8f:14:
fd:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:1F:26:7A:97:E8:B6:B8:41:F7:C2:A2:EF:15:EB:BC:24:51:B8:E6
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/YR8mepfotrhB98Ki7xXrvCRRuOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
28:69:1c:81:d2:89:b6:5d:ac:e0:fe:7b:3b:7a:e8:68:c9:c7:
db:11:20:50:e9:d3:81:f6:0e:6b:d2:26:c2:1c:77:45:d0:ca:
85:e6:5c:11:6b:88:7f:77:72:a1:af:37:72:13:3f:49:af:d8:
c2:b8:e7:79:ba:8f:8f:d2:26:bd:5f:8b:f1:2d:14:7f:00:cb:
86:98:cd:96:54:23:90:1b:21:7b:02:fe:4b:eb:bb:0f:40:41:
94:98:8c:3c:d9:56:93:ea:e3:f2:18:fd:9c:35:e7:f6:13:d8:
d1:ea:f4:63:de:ee:3e:ee:32:96:01:b9:8c:8e:a9:ec:d1:7e:
ee:e8:48:a7:ce:53:0b:7e:62:2d:79:8e:ba:c7:2f:b4:eb:c1:
e3:d0:f3:ac:c2:8f:8b:e8:91:0d:a0:f5:11:c7:1b:56:2d:c7:
da:e5:f1:e3:47:1a:e3:35:d3:b5:7e:df:d4:48:36:58:34:65:
a8:25:84:ba:90:f5:09:ca:e4:10:54:4c:8c:29:81:ae:10:e5:
70:5f:9c:a1:87:58:a1:ad:67:89:c9:53:1a:6f:14:d3:df:88:
2e:55:ab:d4:21:58:95:d9:4d:d5:9b:5a:d7:47:12:7f:80:e2:
75:b2:3f:38:22:2d:f7:42:a1:99:44:3c:c3:6c:48:96:34:88:
e1:30:37:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 9 10:22:34 2024 by rpki-client on console-ams.rpki-client.org