Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/aVypLIkqKJJfsUYt5XnZPy0W1mk.roa
File: aVypLIkqKJJfsUYt5XnZPy0W1mk.roa (raw, json)
Hash identifier: GqQlZ5sEgnRlxRFnCHH6rL0mN1O0nvghbcJ+SRyNy4w=
Subject key identifier: 69:5C:A9:2C:89:2A:28:92:5F:B1:46:2D:E5:79:D9:3F:2D:16:D6:69
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019037B47FE776EC8C313798DFB342AF59E2
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/aVypLIkqKJJfsUYt5XnZPy0W1mk.roa
Signing time: Thu 20 Jun 2024 22:11:34 +0000
ROA not before: Thu 20 Jun 2024 22:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 20 Jun 2024 23:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:37:b4:7f:e7:76:ec:8c:31:37:98:df:b3:42:af:59:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 20 22:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=695ca92c892a28925fb1462de579d93f2d16d669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:5b:ab:d0:aa:51:9f:d0:f4:cc:4a:73:9b:51:
b7:31:cc:c6:84:5d:fb:ef:72:c2:2c:6c:ee:06:d8:
0c:5b:bb:47:2b:1c:c8:ea:d0:03:e8:83:c5:eb:13:
44:2a:d6:fa:45:df:ee:16:42:b5:e4:16:2f:75:1e:
bd:59:c1:e2:b9:49:e2:8f:7a:28:ed:95:bb:6f:52:
d7:55:9c:66:52:43:2a:96:52:6e:75:ec:15:83:87:
f4:71:8d:f0:b8:6c:bd:75:2c:38:2b:1e:0d:11:2e:
20:29:84:d1:35:63:3d:87:ba:17:96:d7:2e:33:52:
5c:69:06:c5:75:18:ed:ad:74:83:cd:a3:7e:99:93:
5c:ca:22:e3:b7:f1:b4:ad:b6:bb:07:00:25:bc:f8:
10:0a:17:25:f5:1d:67:3c:70:a4:5e:13:e9:86:e3:
92:3e:78:18:5c:ad:00:3f:4f:b1:43:be:00:85:42:
51:49:ac:4d:22:23:60:0a:35:02:5f:9c:98:77:05:
41:0f:a0:65:ac:4b:04:74:76:41:79:2a:c2:7a:6f:
67:09:32:38:1a:3f:ce:b1:d0:5d:5a:ae:c7:69:ca:
cd:c8:a6:5e:bc:14:74:eb:4f:49:2e:bc:a6:22:1a:
c2:6b:fa:94:ed:cb:aa:b0:96:5e:34:5d:e2:95:61:
f7:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:5C:A9:2C:89:2A:28:92:5F:B1:46:2D:E5:79:D9:3F:2D:16:D6:69
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/aVypLIkqKJJfsUYt5XnZPy0W1mk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3f:6b:81:27:fb:75:87:6a:a5:8c:61:b9:ef:22:8f:b8:3a:02:
8d:f6:3d:54:15:7d:24:1b:3a:14:ce:98:b9:8c:1a:50:cc:80:
c2:74:71:39:c2:81:26:54:5e:e9:76:ca:f8:ec:ad:94:f1:1a:
6d:3f:84:19:0e:ff:88:96:c2:f3:23:e6:8c:45:93:4e:01:70:
da:56:f5:34:f0:9e:37:17:d2:85:be:06:f6:29:ac:cd:98:f8:
4a:ec:1d:59:c5:ce:b1:94:66:99:c9:3a:29:c6:c1:e3:79:99:
02:26:8d:93:98:68:e7:fd:55:4b:a5:1f:f0:36:4a:92:4a:6b:
c5:70:9c:87:1c:59:99:cf:f2:bd:3d:b7:73:01:bc:e2:7a:6b:
ca:d8:9a:90:81:d4:0c:f2:53:b4:96:85:b4:11:20:47:95:c3:
50:41:2d:40:81:dc:cd:d0:f0:b7:3d:7a:6f:f3:e3:03:44:54:
69:18:14:dc:68:aa:dc:43:f6:10:08:a4:7e:50:b3:48:c0:23:
07:92:29:ab:be:2e:9c:32:36:7e:bd:e4:2a:8e:e9:f7:6f:eb:
04:a2:fd:aa:5e:9f:56:11:00:49:6c:e5:33:06:8a:ce:76:24:
cb:3e:1d:e3:d9:6e:28:6a:10:35:07:a5:19:3b:31:5f:7a:df:
d7:ab:f4:5d
-----BEGIN CERTIFICATE-----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Generated at Fri Jun 21 00:39:05 2024 by rpki-client on console-fra.rpki-client.org