Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/gMnnw29mn4xAwcLB2HS45FeijEI.roa
File: gMnnw29mn4xAwcLB2HS45FeijEI.roa (raw, json)
Hash identifier: 6qsSALoheRkFJK/+ObaboFhEvQhjd8BEZVN9wo9FW4Q=
Subject key identifier: 80:C9:E7:C3:6F:66:9F:8C:40:C1:C2:C1:D8:74:B8:E4:57:A2:8C:42
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019079CA493ACF6B41F6C9940D1358B8B841
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/gMnnw29mn4xAwcLB2HS45FeijEI.roa
Signing time: Wed 03 Jul 2024 18:10:18 +0000
ROA not before: Wed 03 Jul 2024 18:10:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 03 Jul 2024 19:04:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:79:ca:49:3a:cf:6b:41:f6:c9:94:0d:13:58:b8:b8:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 3 18:10:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=80c9e7c36f669f8c40c1c2c1d874b8e457a28c42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e3:0b:f3:20:89:e9:56:e7:c0:c1:ac:cd:c9:
48:22:e3:8f:d8:58:ac:e9:79:ad:b2:17:6c:9a:b5:
fb:8c:40:12:6c:2e:04:9e:c3:5d:96:4a:86:87:81:
9d:f1:1a:a1:26:8b:62:66:76:d6:81:18:91:72:84:
5c:f3:00:ce:15:d7:f1:91:30:eb:c2:50:b9:27:31:
9b:e2:56:00:4d:54:ed:c4:f5:48:24:55:df:2a:18:
e9:7f:7c:de:f0:b0:c4:19:92:61:5c:0e:16:b9:24:
e7:b8:d2:cb:0c:da:57:52:1c:e6:39:08:b0:a7:d8:
4c:bb:b2:6f:b7:31:49:45:ec:5a:36:33:2d:75:01:
3f:0c:5e:7d:3e:99:3a:59:ac:fb:e7:87:b8:a2:fb:
65:58:fe:6e:6d:1a:4c:35:47:5d:2d:36:cc:dd:db:
2d:9e:fe:be:07:c4:78:89:fb:eb:6b:dd:22:6c:c7:
9d:a0:4e:7f:38:e2:13:6a:37:d6:eb:5f:bb:45:b5:
c1:63:86:6d:ac:72:0f:68:da:a9:e3:60:38:a9:20:
e1:99:c0:9e:ff:bf:1f:fc:4b:f9:73:16:f0:e1:0a:
03:83:79:63:fb:63:0b:ce:fe:1b:a2:4e:7c:12:7f:
a9:ee:50:1a:08:0c:ce:a4:07:29:63:25:7e:e8:63:
d6:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:C9:E7:C3:6F:66:9F:8C:40:C1:C2:C1:D8:74:B8:E4:57:A2:8C:42
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/gMnnw29mn4xAwcLB2HS45FeijEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
93:21:a1:d9:a7:7b:26:a0:3f:85:a2:47:7c:4f:f2:58:26:f6:
1b:a9:da:76:a5:6b:21:75:69:4b:d9:4d:2f:3c:47:8c:c5:09:
cc:ea:bb:d2:e3:66:34:28:18:9e:25:43:5e:dd:e6:33:b6:96:
87:03:f7:80:4a:16:1a:6a:50:95:a0:55:ea:4f:1a:8d:68:e9:
6f:26:36:1d:01:ad:9c:41:ab:dd:41:e9:d0:54:5c:02:25:65:
a6:0a:08:99:d4:53:65:ce:7b:73:d8:71:c0:47:14:80:70:e2:
21:64:49:b6:7c:4c:f8:d3:8a:8c:8f:ce:83:52:15:92:47:f5:
9f:e9:18:cc:4e:d9:69:4f:c3:0a:67:4e:15:bd:25:d8:dd:97:
a6:bf:d2:5f:a1:29:d4:d4:b9:9b:d7:9d:88:0b:f5:fa:5c:16:
d9:c4:83:59:47:b8:05:65:6d:0d:8c:52:ce:1f:9c:0f:98:69:
92:96:90:ac:42:07:fa:47:09:5d:e3:02:f0:c5:ac:4a:67:25:
57:3a:1f:f5:d9:7a:31:e1:c5:9e:7f:9e:bb:6e:59:20:fb:6c:
fd:69:7b:5d:db:14:1c:50:37:b2:2a:d8:3e:ec:32:7c:4c:31:
11:08:ad:f4:fc:c1:f6:c0:46:06:53:31:99:77:37:2a:d4:fe:
7a:24:e2:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 3 20:16:31 2024 by rpki-client on console-fra.rpki-client.org