Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/flLyJdSC-S5L4-k0cJCAOTPfha4.roa
File: flLyJdSC-S5L4-k0cJCAOTPfha4.roa (raw, json)
Hash identifier: /TXPGK/3nTXy1gGpHFsDfImrf5API8iYq2IN1W0fP44=
Subject key identifier: 7E:52:F2:25:D4:82:F9:2E:4B:E3:E9:34:70:90:80:39:33:DF:85:AE
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01907ADCF1C0F41E39925888EF503C2D4063
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/flLyJdSC-S5L4-k0cJCAOTPfha4.roa
Signing time: Wed 03 Jul 2024 23:10:18 +0000
ROA not before: Wed 03 Jul 2024 23:10:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 04 Jul 2024 00:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7a:dc:f1:c0:f4:1e:39:92:58:88:ef:50:3c:2d:40:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 3 23:10:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e52f225d482f92e4be3e9347090803933df85ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:10:ad:d6:99:f4:9c:3c:d6:c1:52:64:f2:d4:
db:ba:0f:a0:73:5c:6c:8c:11:0f:65:bb:40:eb:c2:
f9:b6:cb:60:d8:3d:a4:fe:bd:dc:cb:4c:70:9d:1a:
b9:53:69:0e:bc:6a:11:4c:33:21:8b:36:65:40:42:
cc:95:69:11:29:f8:02:d9:00:60:57:a4:2f:81:56:
4c:3d:9f:44:d9:2e:4e:a9:a1:ea:6a:3e:94:5a:68:
fa:e7:8c:00:00:73:07:64:45:e1:77:01:e6:e4:f6:
e3:93:92:3d:fd:1c:0c:5f:f0:f3:9b:71:93:c9:f6:
3a:cd:82:fa:1e:b9:0c:a6:a1:0a:56:02:3e:f2:9f:
c9:a4:d9:05:6c:37:56:d8:df:ca:78:10:71:a6:a9:
68:66:cf:0c:c3:a5:b5:9b:69:eb:fd:3e:d2:32:0d:
b0:f1:bf:06:7a:f3:8d:f9:f3:fb:f5:47:a3:d6:61:
a6:a4:3d:43:7e:ab:7c:67:fe:6d:6c:49:c4:d7:b3:
84:73:f2:ef:f3:81:27:7e:8f:99:5e:33:e7:76:8e:
8c:1b:e1:21:10:1d:7d:68:c4:f8:31:d6:f3:99:64:
7c:ca:9a:f4:54:14:71:18:e5:c6:e6:d7:a5:b4:df:
ef:c0:99:8b:a0:30:ea:cf:dc:a7:21:01:da:d3:4c:
d7:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:52:F2:25:D4:82:F9:2E:4B:E3:E9:34:70:90:80:39:33:DF:85:AE
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/flLyJdSC-S5L4-k0cJCAOTPfha4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
67:74:e2:32:a2:5f:ca:14:92:dd:51:43:ad:d0:72:65:91:04:
54:84:cd:fa:04:0a:0b:c6:a9:97:a4:3a:aa:dd:bd:95:0f:7b:
1b:8c:ac:7e:ab:af:fc:6e:2b:96:62:43:35:16:c4:23:e8:a8:
5e:57:8f:94:9e:f5:3f:27:17:88:87:ea:8d:b8:27:ea:6f:5a:
d3:7e:54:ba:55:31:a9:d7:bf:29:05:f2:b3:fb:a1:36:75:24:
d0:86:ae:14:dc:9a:01:47:e5:a6:2b:63:ca:02:e8:6d:44:e2:
6c:cf:bb:e4:52:5f:a0:18:c3:8f:98:a9:45:9a:27:54:23:97:
7c:1e:81:ed:e3:13:87:62:11:01:a9:06:ab:d5:6b:98:d9:0c:
94:22:70:a3:f6:c7:19:1c:3d:b3:c8:8c:bc:f2:6b:8c:69:4c:
ec:f0:4c:4f:63:2e:ea:b8:47:bd:2c:df:df:3d:ab:2b:78:0a:
1e:73:cc:ed:d1:6f:b9:5b:06:a3:98:51:3d:ba:d6:48:c9:3c:
c9:56:1f:94:70:c2:4c:c7:87:14:5b:93:04:13:00:c2:2f:b8:
d0:ee:6a:0e:b2:98:c6:5e:05:73:9c:f1:d3:f5:70:51:17:c2:
36:cb:cc:27:49:d7:ff:90:77:41:00:d3:fc:fb:e2:04:82:78:
17:cf:fc:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 4 02:29:53 2024 by rpki-client on console-ams.rpki-client.org