Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/srE6cBejyePI5I8JQUY0PX6CYtE.roa
File: srE6cBejyePI5I8JQUY0PX6CYtE.roa (raw, json)
Hash identifier: ErAuQElaePHcrY5KHpCJZayUWb6djzRm5oclryGcfDE=
Subject key identifier: B2:B1:3A:70:17:A3:C9:E3:C8:E4:8F:09:41:46:34:3D:7E:82:62:D1
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190283B0330EEFD2DE09EA01D34A40EAC54
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/srE6cBejyePI5I8JQUY0PX6CYtE.roa
Signing time: Mon 17 Jun 2024 22:04:34 +0000
ROA not before: Mon 17 Jun 2024 22:04:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:190:283a:b90c/128 maxlen: 128
Validation: Failed, certificate revoked on Mon 17 Jun 2024 22:12:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:28:3b:03:30:ee:fd:2d:e0:9e:a0:1d:34:a4:0e:ac:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 17 22:04:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b2b13a7017a3c9e3c8e48f094146343d7e8262d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fc:5c:c6:4f:f7:df:9b:39:66:79:2a:53:12:
98:f6:9e:ed:9a:19:cd:b6:f3:42:7b:28:85:e7:3c:
25:2e:be:cf:4b:d1:a6:0d:35:a9:7c:fd:c3:50:b6:
ff:49:4d:39:ee:4a:d9:5e:f8:54:a6:b1:d2:a8:a8:
31:aa:cb:f4:0a:3d:aa:bf:d1:90:81:98:e4:91:1d:
d7:f1:f7:7c:17:2f:4d:15:36:51:50:c8:d0:5b:34:
23:a3:ff:a4:2d:cc:31:80:91:fc:40:34:6a:9f:29:
35:80:1e:7d:90:8a:e9:8e:14:4c:40:f6:87:3f:df:
d2:fd:b2:be:bf:b1:3c:0e:b6:de:87:16:ed:6e:8d:
c7:05:18:16:35:be:f0:49:07:f0:57:ff:12:89:94:
81:ba:a0:f2:ce:aa:90:d5:ed:4d:e0:22:31:08:48:
7e:f7:b9:f0:9a:ab:45:7b:7f:f6:b1:58:d7:28:5c:
e3:e8:60:9b:6c:1e:23:9d:c5:d5:f9:5a:84:93:ff:
db:b4:b7:2d:f1:0a:a2:ff:3d:50:2c:50:92:c8:28:
20:29:57:4b:bd:af:35:6e:c2:ef:68:f5:1a:5e:1b:
2b:c8:cd:21:b3:23:89:ba:81:d9:26:09:57:75:4b:
a1:57:37:7f:4f:06:3d:a1:c9:d1:65:d2:1d:35:eb:
09:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:B1:3A:70:17:A3:C9:E3:C8:E4:8F:09:41:46:34:3D:7E:82:62:D1
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/srE6cBejyePI5I8JQUY0PX6CYtE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3f:7b:78:73:f9:b9:34:f6:6c:72:78:0b:84:7e:21:bb:cd:72:
37:41:65:4f:62:70:e7:e7:cc:68:78:c2:e4:52:5f:be:3d:61:
e6:ee:6c:b1:b1:bd:e7:27:e9:32:9a:5b:db:45:5f:c4:28:c5:
19:09:6f:74:e4:7c:36:fe:2b:df:05:81:4b:cf:9b:a9:ea:c5:
2e:f4:23:99:91:ba:ae:cb:16:ba:03:1a:fd:c2:2a:39:f2:80:
7a:56:13:eb:e2:a3:33:20:23:fa:21:6d:02:0b:ed:7c:50:2e:
17:a8:cf:db:8b:b2:d1:9a:bf:22:6f:b5:0c:16:5d:ac:69:d5:
ba:68:4e:82:fa:f3:0b:c1:be:26:ba:3b:64:08:1a:9c:bb:1d:
c2:7c:49:d7:1f:11:09:4d:7f:e7:6c:38:82:6b:49:fe:ed:ca:
39:de:95:3a:5d:04:6a:8c:5b:11:ea:2d:be:cd:c5:62:4b:85:
36:d7:13:8d:99:39:cc:d6:94:d5:d9:e0:fd:b6:ff:81:fa:1c:
60:50:d8:f9:c8:69:c2:38:91:38:50:07:5b:74:1d:41:ac:a9:
1b:0f:94:1f:9e:80:8f:d4:76:f1:4f:20:34:4e:4c:34:41:0e:
c3:15:57:d0:24:60:0f:2d:b3:76:6a:1f:76:11:e5:83:d3:06:
c6:ea:ee:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 18 01:14:11 2024 by rpki-client on console-fra.rpki-client.org