Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Yu6Z7Fap8vwqKJfC3Ca4sWLrg8k.roa
File: Yu6Z7Fap8vwqKJfC3Ca4sWLrg8k.roa (raw, json)
Hash identifier: dsfF8bMGb6/Hvxg8FWD23uuHDvQBISqeKdtVAp0B0tI=
Subject key identifier: 62:EE:99:EC:56:A9:F2:FC:2A:28:97:C2:DC:26:B8:B1:62:EB:83:C9
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01903DB69639C71756813CA38A4B6167EC6D
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Yu6Z7Fap8vwqKJfC3Ca4sWLrg8k.roa
Signing time: Sat 22 Jun 2024 02:11:34 +0000
ROA not before: Sat 22 Jun 2024 02:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 22 Jun 2024 03:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:3d:b6:96:39:c7:17:56:81:3c:a3:8a:4b:61:67:ec:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 22 02:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62ee99ec56a9f2fc2a2897c2dc26b8b162eb83c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f2:73:3e:9b:8c:08:69:6e:94:fa:cd:ee:25:
53:08:8e:cb:7d:dc:4b:e5:a3:a2:06:9d:34:3b:53:
a8:24:0d:dc:7c:86:15:1a:eb:7f:d8:e3:02:a8:5e:
1b:74:9a:6a:ab:d9:f8:b5:5c:2c:d7:8f:62:c9:fa:
c3:01:dc:eb:0a:52:f8:8c:e2:1f:6d:b0:ae:9d:b7:
9b:44:d4:65:b6:e8:5e:e7:b1:94:ba:08:ef:82:50:
d1:ac:f3:ed:6d:7f:20:1c:a6:c9:42:48:e3:cd:cb:
4f:a7:2a:26:c7:e9:5e:20:61:a1:a0:e2:5e:ba:f5:
32:de:5b:fc:76:ff:18:b8:c8:bf:8c:04:3f:ba:42:
e3:f0:e0:bb:39:fa:44:b1:bb:fc:73:09:a7:1c:9a:
99:69:cf:84:06:da:39:d5:36:e7:23:5c:16:e7:c1:
c0:1c:1c:f0:6d:a2:06:f8:3b:77:c2:27:b5:68:ca:
6b:30:f9:42:67:a2:ba:4b:06:4d:71:90:9f:fd:6d:
4e:e4:99:64:a3:ef:32:c9:3a:2f:b2:22:5e:20:e8:
66:6a:0d:5f:a5:8f:e3:d8:43:90:07:fc:2f:66:98:
40:c6:9d:3d:43:6a:44:c1:79:1f:e2:89:cd:34:96:
1c:b8:da:ad:3f:78:7f:8c:3f:c7:e2:8d:8e:d8:17:
e8:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:EE:99:EC:56:A9:F2:FC:2A:28:97:C2:DC:26:B8:B1:62:EB:83:C9
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Yu6Z7Fap8vwqKJfC3Ca4sWLrg8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
4c:d3:99:5b:26:1c:3b:a5:90:85:c7:64:4f:a1:1e:1a:b6:02:
19:a5:db:00:c9:64:1b:14:1e:01:19:5a:83:33:db:fc:da:e6:
bd:be:15:f0:43:86:8c:91:24:1e:ab:8b:e8:e8:84:36:95:f9:
80:6b:3d:c2:09:f4:73:2f:74:47:0d:1e:ce:fc:cb:8d:af:70:
6d:77:0e:fd:86:7c:09:8e:8d:1e:fe:3e:96:4e:f1:8b:ca:a5:
68:fd:36:38:42:61:0d:b8:75:aa:84:32:df:2c:91:90:43:de:
a2:59:49:60:2f:d1:da:5e:cb:5f:a8:db:fe:a3:8b:76:73:3f:
ba:3e:26:82:80:97:f6:b9:05:b2:db:7a:dd:ac:41:82:a1:59:
ae:c3:e4:4f:8f:0a:b3:f3:53:62:63:e1:bc:6d:75:08:c8:e4:
dd:0c:e4:2f:fa:4e:07:d4:b0:29:81:76:36:dc:78:0c:83:84:
31:64:12:e8:ab:fd:59:a1:13:3a:0d:8f:28:24:b8:3c:15:ba:
2b:b6:7a:1c:19:59:68:f1:ac:54:06:ff:be:e4:7b:3b:7d:8a:
bd:da:f8:e0:33:93:ce:54:99:7c:b7:fe:c4:1b:0a:52:09:e7:
e0:14:a3:a9:c9:1d:de:5c:04:8e:f3:48:38:82:a4:92:b5:d5:
66:8f:3d:a9
-----BEGIN CERTIFICATE-----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Generated at Sat Jun 22 05:02:50 2024 by rpki-client on console-ams.rpki-client.org