Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/eTQHjCVIWkehRDeCvfis3ejWdeQ.roa
File: eTQHjCVIWkehRDeCvfis3ejWdeQ.roa (raw, json)
Hash identifier: IytyfzLvtjk2OBYAXb3U/pYmeOYNyfrd2aeyx3dbPwk=
Subject key identifier: 79:34:07:8C:25:48:5A:47:A1:44:37:82:BD:F8:AC:DD:E8:D6:75:E4
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01907C285D78D721D0F78458B9AF2F26C124
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/eTQHjCVIWkehRDeCvfis3ejWdeQ.roa
Signing time: Thu 04 Jul 2024 05:12:18 +0000
ROA not before: Thu 04 Jul 2024 05:12:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 04 Jul 2024 06:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7c:28:5d:78:d7:21:d0:f7:84:58:b9:af:2f:26:c1:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 4 05:12:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7934078c25485a47a1443782bdf8acdde8d675e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:37:7b:c5:15:68:dc:42:41:9e:2b:28:4c:d0:
aa:32:ba:fc:c1:c6:6e:ba:b4:f9:2e:32:f9:74:88:
d1:15:be:7b:12:d6:9e:08:f8:43:6c:25:a6:1a:39:
37:b1:6b:b0:29:ff:2c:c2:bb:e8:0f:50:da:a9:ff:
aa:a9:b9:36:fd:c8:fb:f5:2e:5b:72:c6:2a:af:1b:
f8:97:7c:9b:14:39:ab:d3:3f:37:ea:17:af:21:2a:
be:ff:1b:1f:f0:91:fb:98:24:41:05:10:50:7d:96:
4e:4d:65:5c:1f:aa:7a:6b:54:43:9f:0f:ff:35:e0:
84:03:c9:e9:ba:62:58:bf:aa:b5:d5:d3:a9:e0:78:
2f:39:f1:d4:b7:09:af:c3:ee:ef:9c:4f:4e:2b:11:
42:72:ef:2f:c2:6c:94:e6:bd:86:f9:75:55:ab:e1:
c9:f2:59:3a:96:10:5b:17:b8:10:59:c7:b6:c4:27:
1a:a3:7a:60:df:ac:fb:ba:ab:ed:2b:48:00:25:65:
8f:45:75:2b:cd:88:ed:74:6c:c1:d6:46:95:f3:53:
f5:e4:6e:fa:15:be:6b:dd:20:e5:1e:ec:ee:0b:09:
11:12:fe:9e:11:c5:d0:47:36:93:4f:a4:de:61:98:
78:59:a9:4a:eb:81:f5:5a:ec:ea:9d:59:ad:f4:d1:
8d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:34:07:8C:25:48:5A:47:A1:44:37:82:BD:F8:AC:DD:E8:D6:75:E4
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/eTQHjCVIWkehRDeCvfis3ejWdeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3f:d1:09:21:b0:b2:af:96:ee:36:56:25:43:75:75:f4:47:65:
90:24:8e:63:ac:46:cf:a9:36:f7:66:43:e7:cd:87:9b:bf:a1:
d6:06:fe:75:97:44:4b:73:06:1e:30:b4:93:d1:39:75:8d:26:
b4:b3:5c:b2:10:d9:af:6f:88:46:52:82:a5:d1:82:ee:12:4c:
f3:7c:b6:5e:65:63:90:37:68:fb:31:9f:24:d7:1e:a8:11:45:
a5:9d:02:5f:d7:a9:73:6d:76:e2:d4:46:54:a3:71:3e:a0:98:
27:06:2a:c7:38:98:61:75:6a:6e:aa:99:2a:40:68:a6:76:15:
9f:d2:b1:f1:fb:24:31:00:8b:f7:54:a6:a0:98:2b:88:28:4d:
95:81:0d:3f:78:41:e2:86:43:87:07:d7:ae:fb:93:6f:b7:68:
8c:42:4a:ae:4e:b2:d9:07:17:88:ac:5a:96:69:5a:1b:38:a9:
86:e4:c5:24:c5:de:1e:8a:7e:8d:5b:9e:fc:b9:22:6f:ed:00:
33:f7:6d:94:d6:a5:1a:7a:80:0d:60:61:2e:f7:d9:cf:65:f0:
05:c5:79:d1:36:7b:1c:57:4d:bd:db:f8:fc:5b:dd:6d:df:36:
ec:12:e9:95:18:cc:7a:a4:f9:df:ba:ec:f8:35:54:b3:a6:92:
cf:88:3d:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 4 07:10:49 2024 by rpki-client on console-fra.rpki-client.org