Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/caTGRm9TIclJ7OfsfGFb7bL6S3s.roa
File: caTGRm9TIclJ7OfsfGFb7bL6S3s.roa (raw, json)
Hash identifier: ig1oJwgdn0X3xfvIOlQthB+jfemY4tHOveuEIcTiEoU=
Subject key identifier: 71:A4:C6:46:6F:53:21:C9:49:EC:E7:EC:7C:61:5B:ED:B2:FA:4B:7B
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190242EA3445291F8CB42963F99F95BA547
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/caTGRm9TIclJ7OfsfGFb7bL6S3s.roa
Signing time: Mon 17 Jun 2024 03:12:34 +0000
ROA not before: Mon 17 Jun 2024 03:12:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 17 Jun 2024 04:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:24:2e:a3:44:52:91:f8:cb:42:96:3f:99:f9:5b:a5:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 17 03:12:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=71a4c6466f5321c949ece7ec7c615bedb2fa4b7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:37:9b:02:f5:58:c6:c5:23:53:8a:eb:c7:76:
d0:bf:43:5a:5e:6b:aa:81:20:f3:ef:92:7f:4d:28:
cf:c5:db:3e:b0:f4:4c:f8:97:a1:73:30:cd:50:de:
78:99:57:38:15:b5:a4:d2:49:17:36:b2:ef:ba:d2:
74:f2:83:11:64:13:92:7e:10:16:92:c5:08:07:1f:
80:67:01:b1:1a:22:4f:8b:10:9e:5e:05:2e:7f:56:
57:3d:fc:9b:09:c5:b9:aa:11:05:58:cf:49:4f:fd:
95:ca:fd:a3:06:20:aa:c2:61:74:3b:21:31:07:c6:
73:83:61:60:36:6a:81:41:9f:32:04:84:7c:28:34:
53:01:69:d5:13:be:e1:08:96:d6:03:d4:52:c3:0e:
45:ed:ae:ec:5c:52:a8:7a:02:be:ea:8b:66:ab:97:
45:1f:ae:8d:62:d5:4d:b6:d8:3e:1b:5a:7c:3f:0b:
00:84:af:80:c8:7e:83:97:ef:11:43:f1:ba:be:8f:
17:47:54:93:49:b0:e0:11:a3:10:31:1a:23:0e:17:
9c:03:95:db:88:60:b1:b3:55:c3:d9:2c:7c:00:d5:
0c:73:6a:77:70:c6:f0:c2:59:b9:0a:eb:89:db:0d:
18:8b:0e:5c:1b:23:23:e0:af:6a:27:6e:96:fb:19:
3f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:A4:C6:46:6F:53:21:C9:49:EC:E7:EC:7C:61:5B:ED:B2:FA:4B:7B
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/caTGRm9TIclJ7OfsfGFb7bL6S3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
63:dc:c6:0f:21:27:7e:9b:bc:6a:dd:b6:ae:f2:33:69:fc:17:
55:90:c8:27:4d:f6:eb:dd:ea:22:5b:44:78:b5:4a:02:14:a8:
08:e0:bf:64:6b:18:c9:49:46:c8:cc:f7:86:4c:94:9c:b7:3d:
c8:41:17:a0:09:22:71:40:95:e3:09:10:ca:9d:69:b7:be:0a:
f6:e4:07:20:ce:71:4d:37:b5:23:e1:65:6f:1e:56:af:b1:ea:
4c:25:ec:3e:5e:37:43:ac:8e:d5:ce:a3:e0:c9:ed:af:11:9a:
12:44:31:86:b8:f9:a1:e3:58:a8:d5:2f:9b:c7:5c:9b:f9:31:
29:da:3c:01:8d:6b:f8:29:dc:70:49:0b:fa:05:4f:91:cf:1a:
c1:ce:73:95:ab:42:fc:f4:49:25:2e:c7:5c:7d:a4:7a:f1:a1:
a9:20:3a:f5:74:55:07:d4:9c:f9:8b:ea:d0:ea:84:a7:0a:d7:
d4:9e:24:13:97:16:1d:8a:21:76:79:7e:54:4e:5a:16:c6:e2:
32:05:cf:be:c0:58:5f:71:66:66:7f:03:2e:b6:28:8b:6f:ec:
4b:b3:9b:d7:a7:7b:ed:d6:50:73:ec:a1:39:57:51:d2:53:71:
bb:e1:60:1c:b0:f4:bc:75:14:d5:b3:67:7a:86:c9:59:b9:d8:
b6:e0:59:ee
-----BEGIN CERTIFICATE-----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Generated at Mon Jun 17 05:00:58 2024 by rpki-client on console-ams.rpki-client.org