Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/q_VXu2RvHzXkEKzQipG3zXtAJsM.roa
File: q_VXu2RvHzXkEKzQipG3zXtAJsM.roa (raw, json)
Hash identifier: D0SsnSrJmOU/qpNPNLpXFroGF0QYvsZNdtSEGXXoJR4=
Subject key identifier: AB:F5:57:BB:64:6F:1F:35:E4:10:AC:D0:8A:91:B7:CD:7B:40:26:C3
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FCB8DEECFE06532C8E26E9748E358B075
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/q_VXu2RvHzXkEKzQipG3zXtAJsM.roa
Signing time: Thu 30 May 2024 22:10:27 +0000
ROA not before: Thu 30 May 2024 22:10:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 30 May 2024 23:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:cb:8d:ee:cf:e0:65:32:c8:e2:6e:97:48:e3:58:b0:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 30 22:10:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=abf557bb646f1f35e410acd08a91b7cd7b4026c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1f:e5:af:9e:9a:7e:5f:c2:f7:bf:3d:1c:c1:
c4:99:c9:ea:f9:81:b7:54:8b:76:32:73:09:57:99:
9f:d7:b8:17:75:10:4c:57:d2:6a:7f:47:5d:60:87:
b3:4b:e1:a5:74:d1:f5:ca:1a:a0:ce:ec:78:8f:8e:
e2:61:e9:ff:80:7f:23:4e:3d:33:e9:64:9f:f1:04:
a8:ed:b7:c3:f0:18:95:9f:88:c2:3b:16:2e:02:21:
5b:2a:47:c0:36:37:d7:e4:67:ca:7d:16:be:31:2c:
51:7a:10:59:a9:50:4b:41:20:0f:a6:58:8a:63:d4:
99:62:88:77:60:20:0a:35:7f:b7:69:d0:94:47:22:
41:0a:64:d9:23:63:a2:d8:29:0d:9c:27:d2:78:7e:
f6:3d:43:28:37:77:28:91:a9:7d:da:3f:5b:e9:b2:
24:3a:5e:ba:3f:05:97:22:0e:47:01:d8:19:8c:12:
1a:2b:7f:16:e7:a5:35:24:41:01:22:2b:3e:23:98:
24:50:4c:ce:8c:14:84:4a:f8:b1:12:0d:97:2f:8a:
00:1b:ae:ca:11:12:20:13:2d:03:c9:86:da:14:a5:
b6:78:98:dd:21:41:9e:a0:28:a8:19:5f:98:ba:73:
49:c3:b1:3c:fc:c8:26:db:95:97:19:8b:8b:6d:4e:
30:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:F5:57:BB:64:6F:1F:35:E4:10:AC:D0:8A:91:B7:CD:7B:40:26:C3
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/q_VXu2RvHzXkEKzQipG3zXtAJsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
97:14:de:0d:a5:8e:97:e1:81:83:fa:be:22:21:35:e4:8c:ed:
3e:e6:82:53:c4:81:03:21:d6:48:6a:4b:e4:f6:00:4d:bc:4f:
2f:9d:4b:af:3c:d8:7f:ea:f1:d9:80:ec:48:e4:3b:22:dc:45:
16:21:16:dd:0b:c6:5e:77:ca:75:a8:6c:7b:eb:44:14:5e:ca:
8e:d4:2c:cb:b1:ca:de:46:0d:f0:ec:4b:44:0c:c4:e1:2f:47:
f9:c6:c4:c2:e7:60:94:99:49:4c:b0:de:ad:cc:2d:49:91:ce:
13:01:fd:53:a3:a4:1e:e0:1c:9a:be:b1:39:07:e4:e9:e5:d8:
77:30:d3:26:af:24:77:dd:11:f8:32:12:88:8b:42:1e:07:1f:
0b:45:d3:ff:79:87:9a:01:20:a8:75:e9:a8:e6:0c:38:ce:6e:
8a:cd:f8:0c:67:7d:01:78:85:7f:15:6a:62:0d:4f:37:77:ea:
46:be:34:55:51:8c:9e:40:96:8d:fd:48:c6:f8:75:f0:50:ff:
24:a6:52:69:59:30:ee:3d:92:3c:24:89:bd:4c:5c:18:d9:f0:
c8:29:ae:5c:2c:cb:63:cb:26:50:aa:b3:c6:96:3c:1f:f2:02:
5a:60:cd:3c:fe:26:79:59:b9:77:d0:02:be:e9:80:dc:62:42:
83:d7:1b:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:15 2024 by rpki-client on console-ams.rpki-client.org