Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/dMgVWDOykDfTFfmkLz-r8QAPStM.roa
File: dMgVWDOykDfTFfmkLz-r8QAPStM.roa (raw, json)
Hash identifier: IsETCTgP+TlOAhCGtUnlUq9LPofT+dNcIWFTOAsj4n8=
Subject key identifier: 74:C8:15:58:33:B2:90:37:D3:15:F9:A4:2F:3F:AB:F1:00:0F:4A:D3
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FE58593AF97DB045A1F253AA8F72B1CE2
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/dMgVWDOykDfTFfmkLz-r8QAPStM.roa
Signing time: Tue 04 Jun 2024 23:11:27 +0000
ROA not before: Tue 04 Jun 2024 23:11:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 05 Jun 2024 00:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e5:85:93:af:97:db:04:5a:1f:25:3a:a8:f7:2b:1c:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 4 23:11:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=74c8155833b29037d315f9a42f3fabf1000f4ad3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:97:2b:5d:e9:32:7d:d1:5c:c1:bf:aa:5d:8b:
83:02:40:b4:e3:d8:dd:10:cb:e2:e1:a6:89:3b:8f:
03:9e:77:84:b7:ca:12:82:06:30:bb:89:d6:fe:32:
6f:5e:86:c3:29:15:2d:10:10:c1:c0:0b:98:d7:62:
00:7f:36:6d:d7:18:a4:d7:93:b4:c9:7e:0a:ef:96:
e1:7f:d6:f9:1b:7b:61:9d:48:a0:d2:b5:5b:51:94:
86:61:51:dd:fe:c3:9b:f7:bb:61:3e:eb:1e:6d:05:
da:55:70:b3:af:f8:72:a8:e3:2e:67:9e:c4:1a:08:
f8:47:42:6a:f5:c5:25:d7:ae:a6:01:f6:66:62:6f:
34:33:07:09:5d:c1:e9:8d:48:6b:53:18:c5:e8:57:
27:c8:5d:4f:c3:d3:79:70:54:b4:a1:40:52:45:18:
60:49:fc:d0:15:79:c2:a5:cc:84:68:62:20:e8:05:
a3:ea:43:e8:d8:ef:7a:aa:55:31:49:09:2d:23:2a:
f7:e4:92:3a:d1:c0:60:7a:ee:85:3a:5a:02:99:05:
2a:78:67:60:83:ac:6b:8e:a8:9a:99:02:d5:5b:1a:
02:12:c6:9f:c4:51:fd:2c:f5:7c:11:9f:41:ef:53:
2b:71:0a:84:9b:37:74:e7:71:88:eb:58:a8:ee:a2:
ba:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:C8:15:58:33:B2:90:37:D3:15:F9:A4:2F:3F:AB:F1:00:0F:4A:D3
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/dMgVWDOykDfTFfmkLz-r8QAPStM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
46:98:34:aa:20:9d:49:52:a4:0e:71:9f:30:60:59:54:b6:24:
81:f1:bd:6c:a9:d7:a8:7c:88:03:80:09:3d:56:94:37:0d:af:
c3:3a:61:59:cd:79:bf:6a:ca:80:17:53:f3:30:db:3c:d2:85:
46:32:4b:9e:ca:49:f4:f6:bf:db:93:44:0a:22:bb:c0:d2:a8:
72:d1:7c:04:3b:15:3c:c1:54:40:91:3e:78:a8:fa:9f:b6:87:
7b:2f:3e:e0:c7:ea:9f:02:60:5f:22:d7:4d:47:ff:a6:b4:e9:
fa:77:69:6c:00:61:6d:af:75:1e:a8:1e:9b:52:59:09:ef:9a:
dc:b0:2a:4f:24:68:b4:5a:d6:9e:a8:71:14:b7:2d:b8:e0:02:
d2:81:e2:aa:a1:52:1b:d5:cb:26:f4:19:78:50:9e:31:6f:9d:
74:29:49:23:27:ee:83:30:3b:c0:1d:7c:dd:94:53:fb:88:b9:
83:99:f5:ca:af:50:4b:cb:d7:1b:b7:2a:a6:33:47:6b:f8:5a:
31:a4:ed:63:cf:c1:60:6f:76:57:f9:98:8d:e8:f6:ed:4c:91:
d0:f8:b6:a8:69:8a:53:a8:37:da:b6:9b:00:b8:aa:eb:f8:3a:
c1:89:20:0c:17:bd:87:ff:07:2e:4d:1a:d1:a3:fc:56:21:63:
e6:4d:51:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:15 2024 by rpki-client on console-ams.rpki-client.org