Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/a60YISiZ0OuPA_rAd-EIYTeJCiU.roa
File: a60YISiZ0OuPA_rAd-EIYTeJCiU.roa (raw, json)
Hash identifier: Yl18qBBiIH8PJCepE0M9F6B1nCZRgEKi2exEnGTGkbo=
Subject key identifier: 6B:AD:18:21:28:99:D0:EB:8F:03:FA:C0:77:E1:08:61:37:89:0A:25
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01903D47CEBEF7364D752EA3FB70663FC2E2
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/a60YISiZ0OuPA_rAd-EIYTeJCiU.roa
Signing time: Sat 22 Jun 2024 00:10:34 +0000
ROA not before: Sat 22 Jun 2024 00:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 22 Jun 2024 01:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:3d:47:ce:be:f7:36:4d:75:2e:a3:fb:70:66:3f:c2:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 22 00:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6bad18212899d0eb8f03fac077e1086137890a25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:cc:5c:81:83:7f:38:f1:1c:1d:53:5f:c3:b1:
10:5a:25:d1:95:6b:b3:91:2d:5d:77:01:4d:dd:00:
79:db:59:00:2a:3d:c2:50:19:0a:6b:8b:72:81:85:
e6:b5:30:61:f4:43:1c:e5:de:75:4e:d8:c0:dc:7e:
9f:6e:ae:3d:b6:41:48:81:47:ba:11:d5:a5:64:21:
e7:06:f7:37:ed:3d:fb:a5:63:cd:50:23:b2:29:7c:
ba:42:d4:cb:ba:ba:5d:e8:76:af:45:dc:93:5a:05:
94:6c:4c:18:d7:7e:6b:b0:5b:a4:3e:b6:ce:f1:4c:
be:3c:b2:33:9c:c9:c6:4a:aa:01:9a:f8:c9:a3:6e:
56:94:38:63:f1:5e:fa:9d:72:e6:ae:e4:07:bc:2e:
24:2f:f9:fe:11:7f:ba:58:17:97:b2:b4:58:c5:7b:
da:f9:ef:29:bb:14:72:83:d7:e7:ba:82:18:a6:d8:
e4:cd:cc:3a:34:ee:0c:52:8e:72:d9:c8:de:60:01:
64:d6:d0:db:5b:17:6a:ee:bb:b8:b8:a9:b1:b5:b5:
7c:2d:71:8a:97:65:45:62:b3:e1:d5:ff:e2:1f:c9:
20:79:af:6e:92:39:d5:fb:9d:20:ee:a2:11:91:48:
33:97:48:74:52:43:05:aa:04:11:ed:e3:dc:5c:2b:
14:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:AD:18:21:28:99:D0:EB:8F:03:FA:C0:77:E1:08:61:37:89:0A:25
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/a60YISiZ0OuPA_rAd-EIYTeJCiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
98:21:13:f2:0b:0b:db:fe:ca:02:31:3e:14:04:85:d2:70:6f:
d9:a5:31:d6:33:50:55:4a:e3:14:a3:54:f4:da:43:6c:22:cb:
37:d3:0c:0a:08:05:20:c2:51:64:61:d0:5f:2e:74:6a:c6:33:
59:c4:15:e0:2b:38:3e:17:23:83:ed:40:c9:8b:e9:01:51:4b:
ce:c9:35:ca:b4:ce:c0:55:4b:fb:40:9a:ca:3d:ed:e9:3c:ca:
69:41:d8:4e:00:50:0c:c8:c6:5a:c9:b0:ef:24:d7:2d:fb:ea:
5a:1c:2a:94:9d:04:d6:50:75:09:9b:90:fd:03:c2:ac:d6:15:
1d:03:28:72:b4:44:85:b1:e8:eb:51:b7:6d:03:3a:5f:6c:39:
60:62:bc:f6:e0:0b:33:0b:85:04:30:1c:2b:74:f8:ef:b9:6c:
5d:42:f9:63:f9:16:80:d8:c2:09:e9:20:4a:28:f3:4e:2c:d4:
f6:70:23:68:71:79:3a:08:0d:f7:58:81:fa:bf:02:96:ca:1c:
88:55:5e:66:5a:29:6a:f0:80:f4:eb:38:ed:4b:2f:12:5e:fe:
1c:21:47:f7:14:61:58:53:be:86:78:ec:cb:f9:4f:5d:4d:ee:
e1:5f:55:e4:e2:ba:d8:65:ef:bc:54:d5:6f:f6:6a:28:19:c7:
90:c0:bf:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 03:46:02 2024 by rpki-client on console-fra.rpki-client.org