Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/t-OhtYz36pgDGYWlFwynbvtiORo.roa
File: t-OhtYz36pgDGYWlFwynbvtiORo.roa (raw, json)
Hash identifier: 6KnL0yfunIMcmosiPkN6UZ+PiyIhrVYeuAWxIWRH7Bo=
Subject key identifier: B7:E3:A1:B5:8C:F7:EA:98:03:19:85:A5:17:0C:A7:6E:FB:62:39:1A
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FEBBDADE75DF9E3ADAF0C96ABF6703AFD
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/t-OhtYz36pgDGYWlFwynbvtiORo.roa
Signing time: Thu 06 Jun 2024 04:10:27 +0000
ROA not before: Thu 06 Jun 2024 04:10:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 06 Jun 2024 05:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:eb:bd:ad:e7:5d:f9:e3:ad:af:0c:96:ab:f6:70:3a:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 6 04:10:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b7e3a1b58cf7ea98031985a5170ca76efb62391a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b2:55:66:4a:16:37:b8:dd:4e:91:3f:61:75:
44:99:0e:b2:4f:09:24:51:af:04:b1:2a:b0:86:57:
e3:77:fa:0b:47:27:cd:40:66:4a:90:9d:25:e9:14:
04:df:87:3f:74:cd:c7:da:d0:cc:14:6d:4f:1a:36:
6f:23:e1:76:1f:d4:e7:a5:19:e5:ce:fb:32:6b:3a:
14:71:7b:7d:c4:03:cc:53:79:e6:0a:ec:ee:81:34:
b8:c7:f7:be:7e:ea:0d:4a:58:e9:e3:b3:d6:47:7d:
20:d5:41:bd:d4:74:b5:d0:9f:14:66:67:ca:d6:25:
34:a2:17:0d:bd:26:df:fd:db:8b:ab:9c:53:1f:92:
7a:63:e5:19:92:53:6c:e8:46:c0:34:02:cf:6f:1f:
59:a9:ac:56:33:57:13:1e:1a:7e:21:3e:55:5e:0b:
f8:bb:ea:72:58:70:43:1c:34:4d:ee:1f:b7:ea:a6:
ef:42:d8:93:00:aa:25:10:13:24:ac:82:ca:6f:ce:
6c:c5:16:96:47:46:cb:11:17:bc:16:9f:d6:b0:40:
a3:88:ea:2b:79:5d:b7:5c:79:f0:ac:be:a5:2e:db:
04:a1:1b:55:8f:10:3c:cb:cf:df:ba:4d:34:37:47:
b7:a2:58:9b:7a:c9:6f:bc:8b:14:1e:1e:ac:1b:80:
40:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:E3:A1:B5:8C:F7:EA:98:03:19:85:A5:17:0C:A7:6E:FB:62:39:1A
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/t-OhtYz36pgDGYWlFwynbvtiORo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
07:21:63:e5:43:49:56:63:55:3f:38:b7:72:d3:68:73:67:39:
42:58:aa:6a:93:92:cb:2c:28:1e:18:b7:09:8d:92:3e:74:33:
f8:cb:b6:2f:0e:11:6d:ed:d7:e6:f9:b8:fc:b0:a3:7a:34:2d:
a7:44:03:b9:bc:db:76:80:86:de:38:a0:3b:62:5a:b8:c4:f2:
11:2f:64:2d:d2:36:5a:9a:3f:80:25:22:a8:56:ca:8c:8e:ed:
cb:98:32:30:72:9b:96:5c:96:73:1e:6c:0b:49:1a:e4:2a:fd:
c5:8b:10:ef:c3:28:b1:45:c9:c1:90:4c:84:e6:8e:36:c8:b8:
64:ea:e9:09:c0:c5:a3:c7:91:a0:2a:11:16:9f:9d:47:71:45:
e3:20:46:0b:f0:e0:5a:f6:57:03:64:f7:91:7b:fe:58:1e:3b:
26:a6:e0:9a:46:d9:45:c8:75:4c:98:6d:74:77:ed:fc:05:c4:
05:04:fd:12:1f:44:31:9a:3a:98:8e:0b:8d:f8:eb:f7:e6:54:
99:3b:fc:eb:05:70:58:aa:60:b6:87:2b:63:5c:04:b9:62:5d:
c6:06:bc:5c:a8:3f:e4:73:9a:cb:1c:d2:2e:ac:f8:5d:15:f5:
22:12:9a:97:b5:12:b0:77:86:d0:74:5a:bb:63:11:9b:86:27:
88:6a:b3:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:52 2024 by rpki-client on console-fra.rpki-client.org