Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Yvc7JRU4smGMPXUjuFg7sUmdW-I.roa
File: Yvc7JRU4smGMPXUjuFg7sUmdW-I.roa (raw, json)
Hash identifier: jV9ixiGeMhXPFVT6h3NvXX0yK0B/rOtXMWlUVwFYpWg=
Subject key identifier: 62:F7:3B:25:15:38:B2:61:8C:3D:75:23:B8:58:3B:B1:49:9D:5B:E2
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01900169C798195C9E2D0A0BB84048411875
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Yvc7JRU4smGMPXUjuFg7sUmdW-I.roa
Signing time: Mon 10 Jun 2024 09:10:27 +0000
ROA not before: Mon 10 Jun 2024 09:10:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Jun 2024 11:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:01:69:c7:98:19:5c:9e:2d:0a:0b:b8:40:48:41:18:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 10 09:10:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62f73b251538b2618c3d7523b8583bb1499d5be2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ec:02:ec:c4:5e:a5:e0:64:c4:75:7f:0a:05:
96:1c:85:ea:2d:58:a4:c5:03:49:e4:23:41:81:c1:
74:1e:17:26:1d:57:12:ff:4a:d6:56:7e:eb:51:09:
58:06:01:04:3f:53:64:3d:dc:88:d4:d4:83:7d:f8:
18:fe:37:89:29:a0:ab:d3:cd:bb:79:79:53:6d:61:
87:cb:fc:f4:82:39:24:86:b2:d3:a3:1b:a5:65:ea:
a8:b3:48:37:43:87:d0:75:ad:fa:0b:63:c9:28:35:
94:c4:7e:73:72:51:d0:b8:4b:96:51:a9:a5:3c:df:
9e:2f:b4:bc:93:e4:60:d9:3f:21:19:97:1e:ad:d8:
36:f5:cb:8a:47:1e:9a:52:51:f1:83:21:b7:aa:38:
b2:13:f1:28:b8:d7:82:30:98:92:09:e8:6b:13:f5:
23:dc:41:3b:b1:a9:30:3f:bf:d4:f7:f3:cf:d3:22:
30:6f:da:b5:d3:1c:14:83:a4:18:c3:ae:74:3c:b3:
ec:34:68:37:f6:90:0e:53:7f:61:f5:16:1c:43:70:
8f:3f:85:a3:70:e6:ef:ba:a7:23:95:00:fa:b4:4f:
ed:20:09:b4:3c:68:92:a2:b4:97:18:fd:65:cc:cc:
4e:34:65:cd:62:48:22:ee:fb:fd:13:e5:1e:f9:c6:
e0:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F7:3B:25:15:38:B2:61:8C:3D:75:23:B8:58:3B:B1:49:9D:5B:E2
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Yvc7JRU4smGMPXUjuFg7sUmdW-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
27:a4:49:ab:11:8a:57:8a:5f:ea:e9:a9:92:7f:d4:0d:92:62:
28:82:3a:48:39:3c:31:8c:11:c4:a9:a1:57:fa:8d:f3:23:7e:
9d:e5:d0:39:ed:ca:a2:db:c7:db:50:12:fb:f3:65:3a:f6:90:
c4:7a:ee:b8:3c:99:16:65:4d:54:73:40:af:0f:3d:f7:34:36:
9e:23:ff:58:21:0c:54:fa:3f:fe:03:45:d4:10:98:bd:8d:44:
cc:1a:82:18:b4:94:58:2e:2f:e4:4f:56:c7:a2:ec:0f:0b:af:
b5:41:55:62:c5:57:5c:11:d0:ac:60:15:c6:fe:3b:76:c0:ac:
3b:f4:df:9c:83:77:a8:18:4e:91:86:e7:16:62:e2:66:5e:31:
ab:2e:cb:05:f0:19:65:47:53:97:85:81:13:2c:c9:59:7f:cd:
69:02:a3:ce:5e:9d:b9:9e:a3:5c:e0:1c:2c:ac:07:4b:aa:62:
ac:24:94:ea:ac:8d:1d:7f:4f:32:b6:18:e9:c3:db:7d:cb:50:
ee:50:40:36:1f:bd:f4:a3:31:dc:ab:b5:99:7d:f7:fc:60:da:
16:02:cd:85:89:b5:bb:9d:2a:fe:87:8a:ba:7d:83:98:4c:dd:
05:62:96:0c:26:2d:cd:bf:db:26:36:1f:8d:f2:2d:23:0e:09:
8e:49:b2:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 10 14:02:08 2024 by rpki-client on console-fra.rpki-client.org