Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/qBv0FvMFsJzsXWxrxbIXxW2E1Gg.roa
File: qBv0FvMFsJzsXWxrxbIXxW2E1Gg.roa (raw, json)
Hash identifier: IZPWZ/S+3LbMYEcOnN2FcPJXa3e5DI+uB3leVCrt6Zo=
Subject key identifier: A8:1B:F4:16:F3:05:B0:9C:EC:5D:6C:6B:C5:B2:17:C5:6D:84:D4:68
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FC2F8E5B8BEFB97A48175E88FA049BB87
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/qBv0FvMFsJzsXWxrxbIXxW2E1Gg.roa
Signing time: Wed 29 May 2024 06:10:42 +0000
ROA not before: Wed 29 May 2024 06:10:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 29 May 2024 07:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c2:f8:e5:b8:be:fb:97:a4:81:75:e8:8f:a0:49:bb:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 29 06:10:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a81bf416f305b09cec5d6c6bc5b217c56d84d468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:3a:b7:fc:2f:24:e9:ea:c6:76:f4:b5:24:8f:
39:f2:0a:92:ec:10:52:7f:7d:f3:eb:5b:da:71:c1:
ed:25:69:13:ed:3e:63:78:55:9d:43:01:96:35:f6:
1f:66:c2:db:b0:31:63:b7:4b:28:22:7d:28:df:04:
c4:85:aa:2f:0f:fb:68:a5:46:36:30:08:b3:88:59:
69:fc:76:88:98:c9:7a:cc:60:e5:10:a7:ee:bc:1f:
e1:39:64:42:10:45:d9:2d:6a:c2:bd:30:79:34:ba:
e0:64:c6:70:b0:14:d3:2b:97:29:1e:a7:88:7c:6f:
79:bd:b2:eb:bb:bf:30:51:59:f7:95:62:b4:7e:ff:
6b:f8:50:f4:40:bc:7b:8b:7c:5d:95:96:09:b1:c7:
7d:a9:d7:01:de:6d:9c:0a:cf:27:e4:fa:3a:5a:e5:
ad:47:fa:2b:66:a4:34:5f:fc:52:35:b5:65:f7:b4:
2c:4d:ad:32:f4:db:92:e2:59:43:ed:a3:aa:fa:1c:
1c:30:e7:43:e3:5b:9f:c1:67:8f:0d:72:dd:2d:82:
66:8f:25:2a:dc:2b:a1:7d:31:7d:4b:7c:9d:ff:84:
11:6e:bb:b1:b7:a5:6f:7c:4b:09:aa:f4:73:0e:cc:
53:77:13:a0:b8:81:24:3b:4e:ee:a8:56:25:c7:2a:
fe:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:1B:F4:16:F3:05:B0:9C:EC:5D:6C:6B:C5:B2:17:C5:6D:84:D4:68
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/qBv0FvMFsJzsXWxrxbIXxW2E1Gg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
4d:63:7d:44:f2:c5:5a:84:35:01:a8:e7:32:ae:cb:d0:f1:90:
75:a5:2a:1e:de:32:af:79:96:26:44:48:94:7b:94:41:9e:4e:
31:bf:b4:0d:f0:89:06:57:13:ad:1c:a7:78:f7:5e:d2:4b:8e:
dc:ff:0a:c2:eb:2b:97:20:da:c5:9f:41:b0:8a:cb:4c:9b:39:
91:ec:f9:5f:a5:2b:c4:6c:ca:64:ae:34:4d:87:14:8a:65:03:
46:5c:5a:f7:59:26:48:45:80:bb:5f:d6:0c:f2:26:e2:4c:a8:
6d:9e:44:2d:10:48:b2:f4:b1:8a:97:17:2c:62:99:2d:be:d8:
5c:22:1a:d8:1f:09:35:cd:ca:1c:91:f6:62:84:a8:5d:bf:05:
59:dc:4a:6a:d6:2d:ca:27:cf:92:50:9d:91:05:84:ae:4e:35:
88:d1:d0:4a:c9:70:be:2d:04:3c:09:0c:43:7c:63:67:af:f4:
1f:3c:f0:30:30:b2:d6:d0:7f:29:a4:9c:d7:d5:27:86:13:e1:
96:49:89:c6:3e:6d:fa:cf:a6:49:bf:41:cf:b5:ba:8d:c9:0d:
57:84:cf:1d:86:b0:00:16:7e:11:84:d5:1a:2d:f1:6b:4f:7e:
db:3b:a7:c6:05:43:4a:36:3f:06:ad:b3:05:23:21:62:4b:4d:
09:5b:f5:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:52 2024 by rpki-client on console-fra.rpki-client.org