Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/c8-KAhkNvLLNHZN7Z6QvqB6pe10.roa
File: c8-KAhkNvLLNHZN7Z6QvqB6pe10.roa (raw, json)
Hash identifier: +WRUj7kqUEGd0NjF9UBcSScOf6Hp9MIxc+TveCoulig=
Subject key identifier: 73:CF:8A:02:19:0D:BC:B2:CD:1D:93:7B:67:A4:2F:A8:1E:A9:7B:5D
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FE92B6AF8451AB8EE9B81826CD32BC175
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/c8-KAhkNvLLNHZN7Z6QvqB6pe10.roa
Signing time: Wed 05 Jun 2024 16:11:27 +0000
ROA not before: Wed 05 Jun 2024 16:11:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 05 Jun 2024 17:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e9:2b:6a:f8:45:1a:b8:ee:9b:81:82:6c:d3:2b:c1:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 5 16:11:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=73cf8a02190dbcb2cd1d937b67a42fa81ea97b5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:75:2f:fa:22:fe:6c:38:3f:97:ce:f5:d2:43:
83:a2:95:d9:c5:63:de:7a:02:38:4b:9d:96:1f:89:
ba:4e:ee:fb:82:d4:3a:15:b0:19:01:c7:c9:6f:44:
b4:bd:89:39:21:8c:24:78:de:b0:3e:4b:c2:12:16:
ec:53:ec:b5:1d:1d:42:bc:44:cd:5f:7c:87:60:f4:
2d:fc:8d:bc:28:b9:dd:9a:54:b7:8a:fa:b0:2e:06:
84:41:1d:d3:e9:a9:06:51:73:b3:57:44:30:93:89:
e3:31:2a:9d:1d:fd:f5:c1:37:e3:11:3e:96:ed:9e:
65:d0:d4:77:ea:1e:b7:e9:9e:11:ae:45:8c:a8:ec:
ed:35:2d:59:8c:29:85:68:87:1a:f8:80:23:2f:73:
5c:64:c4:30:b6:ee:c9:6b:62:86:51:ff:2d:3e:08:
6b:68:c9:6c:c9:d4:b1:be:5f:7e:f4:ff:78:60:2b:
f2:f7:dc:72:3c:18:59:57:4c:80:9b:49:98:65:8d:
3c:8a:fb:de:dc:e1:e0:9f:e0:44:b1:26:2d:4d:66:
21:c9:29:9f:6d:00:7e:27:5d:ad:de:a0:06:ba:4c:
0c:fc:ab:cc:20:36:15:ca:a2:1f:08:5b:da:b6:a5:
09:0a:c7:5f:f7:f3:19:0e:66:66:6d:34:2e:71:1b:
14:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:CF:8A:02:19:0D:BC:B2:CD:1D:93:7B:67:A4:2F:A8:1E:A9:7B:5D
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/c8-KAhkNvLLNHZN7Z6QvqB6pe10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
4d:36:52:05:6a:a9:8a:2e:3d:f8:a5:4e:4c:9c:00:ed:07:62:
00:01:9c:0b:10:e9:b5:7f:70:f5:28:3c:b8:d5:bd:74:52:f4:
ad:79:3a:1f:f2:c9:68:49:14:1b:ff:bc:d7:13:54:4b:26:41:
fb:a2:0d:d2:be:5a:85:d8:33:9f:b4:f8:ed:48:85:1a:90:76:
71:42:cc:18:c0:00:69:c8:f3:28:ea:d9:22:d4:e6:b8:05:4c:
41:dd:88:0f:da:f4:86:51:92:87:ca:da:70:53:81:ea:73:09:
20:54:ac:6b:eb:fa:44:76:b9:83:34:8a:05:47:87:2d:75:6b:
f5:97:f7:8f:66:44:5c:5a:20:b9:1d:b7:f3:f4:97:db:c5:0e:
36:91:4f:82:80:2d:60:a0:f3:89:51:02:f1:05:b7:37:00:67:
8d:11:10:53:17:34:96:72:19:1b:b1:c5:da:e7:38:be:f9:d6:
dd:a9:7c:00:fb:47:ac:9e:28:23:80:86:c5:b2:aa:4e:d7:9b:
a0:d8:1c:be:a7:c6:4a:39:f5:09:f5:5b:92:42:67:f0:21:f8:
73:bd:97:52:d4:bd:cc:fa:35:77:2d:fb:1c:31:49:ef:af:ff:
6b:60:90:8c:0b:fe:e8:76:a1:a3:f4:2a:83:d6:8c:66:eb:a0:
3a:f9:70:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:52 2024 by rpki-client on console-fra.rpki-client.org