Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/iaUznyylDmBDixEZnHY1I9Zg6qs.roa
File: iaUznyylDmBDixEZnHY1I9Zg6qs.roa (raw, json)
Hash identifier: DEz2kkvGaewKOuNKDCJMlYwUQdaCkZnELNT4AQrLLJI=
Subject key identifier: 89:A5:33:9F:2C:A5:0E:60:43:8B:11:19:9C:76:35:23:D6:60:EA:AB
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019032221B3AE4ADEFBB0DCB6FE653D00B82
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/iaUznyylDmBDixEZnHY1I9Zg6qs.roa
Signing time: Wed 19 Jun 2024 20:13:34 +0000
ROA not before: Wed 19 Jun 2024 20:13:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 19 Jun 2024 21:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:32:22:1b:3a:e4:ad:ef:bb:0d:cb:6f:e6:53:d0:0b:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 19 20:13:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=89a5339f2ca50e60438b11199c763523d660eaab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c8:f5:4d:2d:8c:72:88:f8:d7:db:c6:fc:3c:
ce:05:75:56:b6:ed:d4:a9:aa:c7:b3:c0:41:35:74:
5d:75:3d:a6:cf:30:24:41:fa:8b:ab:6a:b2:4f:2d:
76:e0:3a:3c:49:69:06:bc:1a:04:cf:c2:4a:11:19:
8f:cc:86:93:74:bd:b8:b5:c0:48:18:27:a6:fe:a5:
94:95:cd:dc:23:45:0b:62:ce:84:93:1a:f9:2a:97:
70:11:7b:bb:c9:a9:38:c0:41:19:54:f3:50:e6:ff:
27:dc:dd:10:74:72:76:21:2b:6b:c0:a9:e7:a9:a1:
f3:cc:7c:02:da:d5:a2:7d:74:8e:e0:d8:35:ec:58:
b2:77:30:7b:41:67:02:ce:ac:c7:0a:7e:15:14:75:
1c:60:a8:6a:bf:78:41:70:f8:1b:df:7f:eb:53:92:
00:42:47:f0:40:60:3e:e8:91:fa:ca:00:ec:9d:44:
12:28:92:f5:7c:8c:a3:b8:31:a3:b0:ad:07:75:01:
98:80:3d:51:03:44:b2:da:d7:86:58:20:ab:9b:ce:
1c:fc:6f:25:d8:c1:bd:30:7c:11:ee:c1:ed:b9:8d:
0c:c6:5e:c9:e7:b6:9f:01:1c:b0:b9:f3:db:52:de:
6a:97:54:70:f9:95:1b:29:e1:a6:4d:32:b4:11:1a:
fc:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:A5:33:9F:2C:A5:0E:60:43:8B:11:19:9C:76:35:23:D6:60:EA:AB
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/iaUznyylDmBDixEZnHY1I9Zg6qs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
8b:72:b0:cc:88:f3:7e:6a:f5:ef:eb:d2:15:94:32:e8:81:b8:
0e:a7:a2:22:d8:6e:aa:5d:0f:f7:23:02:f4:07:f0:ff:23:92:
c3:ef:93:92:b5:12:10:df:4a:2a:5e:35:05:45:3d:c3:10:75:
ad:33:60:84:44:da:b0:87:53:74:dd:57:f1:0c:7c:35:02:00:
81:68:22:9c:cd:69:20:ad:4c:5f:4a:6a:13:20:9a:1b:5b:40:
2e:c4:1b:88:9c:db:3b:b0:de:3b:4c:5b:54:8b:2f:90:ca:86:
25:41:e8:6d:5c:82:a3:7b:27:34:2d:96:c0:f0:09:35:cc:e6:
75:19:f4:62:58:98:55:b6:d5:90:2b:92:8c:96:4a:b7:6a:34:
fc:9c:40:c6:f9:dc:e8:b7:5a:a4:b4:14:bb:3b:ba:73:b6:72:
06:1d:97:01:8f:d0:c1:d0:71:4f:9e:c6:b6:fb:a1:9b:f2:28:
de:f3:32:5c:a5:9f:da:df:89:64:48:83:06:f9:20:1a:ee:06:
1f:39:f4:6c:a5:98:a6:8a:b3:9b:a0:7e:10:ad:33:ac:9d:4a:
28:17:cb:bb:d2:06:c8:2a:be:11:a4:ed:95:3e:af:27:b8:28:
3d:9a:c3:3d:c8:9e:03:61:2c:8a:0b:5e:c5:fb:58:ef:16:3c:
a2:99:35:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 02:16:15 2024 by rpki-client on console-ams.rpki-client.org