Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/tTmbhayC5bdKrR9HjPc0-pPWZ4Q.roa
File: tTmbhayC5bdKrR9HjPc0-pPWZ4Q.roa (raw, json)
Hash identifier: xOY+GH9aYDKaLcQ4y6ZwtePzTqDfOUurizl/uSO7KtM=
Subject key identifier: B5:39:9B:85:AC:82:E5:B7:4A:AD:1F:47:8C:F7:34:FA:93:D6:67:84
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FB23D25371F75900D7ABD697F5E2E31F3
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/tTmbhayC5bdKrR9HjPc0-pPWZ4Q.roa
Signing time: Sun 26 May 2024 00:11:42 +0000
ROA not before: Sun 26 May 2024 00:11:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 26 May 2024 01:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b2:3d:25:37:1f:75:90:0d:7a:bd:69:7f:5e:2e:31:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 26 00:11:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b5399b85ac82e5b74aad1f478cf734fa93d66784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:de:66:0c:a5:4e:bc:c4:ba:68:0f:fb:ed:6a:
81:e2:72:38:6f:07:e0:b3:55:e8:70:57:25:8e:eb:
8a:7b:00:ce:8a:29:6f:6b:f6:4c:6f:a6:8c:8e:d5:
86:08:0f:55:cf:0b:75:7c:1f:4f:49:75:77:95:dc:
3d:78:6f:35:d1:32:3e:9e:e9:86:50:a3:7b:70:0d:
3a:0d:8e:fc:2f:df:42:8c:3e:f7:5e:86:a0:8b:72:
b1:ff:da:09:f5:93:a1:6e:ee:c0:51:ae:0c:e9:e2:
a9:57:82:82:78:b8:58:49:51:f8:aa:b0:d7:b3:3a:
ea:30:bb:64:6c:e8:0c:44:b6:6d:88:f6:27:f5:71:
2d:a2:83:27:84:14:92:0a:a4:d3:b3:6b:c8:00:cb:
6a:4a:ec:d3:2e:70:bb:2c:ab:1f:80:02:76:98:34:
a2:8c:fa:00:dc:7b:96:a1:ee:5d:5e:59:27:f3:9c:
64:8c:e2:7b:69:c7:f6:d1:10:a2:c3:4b:3b:17:63:
8a:56:21:9e:10:68:9a:08:d9:af:79:da:42:b2:d9:
03:da:6f:14:65:f6:3e:67:83:14:ab:d1:ba:4b:1e:
3b:04:26:02:c4:c7:15:05:19:2b:14:21:51:7d:a2:
6a:a1:96:30:1b:d2:f1:13:1f:e0:dc:6b:93:30:36:
61:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:39:9B:85:AC:82:E5:B7:4A:AD:1F:47:8C:F7:34:FA:93:D6:67:84
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/tTmbhayC5bdKrR9HjPc0-pPWZ4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
30:3a:18:fc:16:3d:f4:5e:9f:9d:37:57:5f:15:ab:a8:7e:a1:
85:ff:d1:d7:13:7b:9f:88:ec:f3:e0:aa:9b:cf:07:c0:56:09:
e3:d1:44:c4:51:e0:26:fe:4a:6b:a4:f6:85:3d:cd:88:86:15:
39:ef:0a:06:00:e5:14:28:61:3a:09:b8:09:1d:49:84:14:f7:
16:92:e5:18:07:3d:f4:2d:b9:30:ba:21:ae:79:3c:e2:8b:8b:
14:a0:18:d3:c8:fa:ca:43:51:c5:65:e3:60:fe:fa:7d:ac:6d:
30:86:02:ec:76:9a:ed:98:43:17:e5:14:0b:20:4e:49:df:f3:
d7:94:8f:50:6b:87:cc:69:5d:c5:15:0d:d4:f2:a6:df:64:e9:
bf:77:84:ff:f2:a4:0c:c8:57:44:e6:79:f0:12:d8:0c:95:b7:
ea:a3:e2:1b:08:99:7c:9f:f0:7a:02:f7:f3:6e:49:ce:f3:3f:
a3:9b:a5:73:d6:02:fd:00:7c:49:fb:97:86:40:a0:fd:39:d6:
94:dc:1e:71:ad:eb:99:30:52:60:85:d8:00:cd:0b:6d:6b:0b:
54:91:50:c4:d5:5e:cb:42:45:f3:fd:a9:41:c0:88:ee:36:6d:
e2:d6:0d:81:bf:ff:89:6d:a2:ea:5a:9e:d4:e3:38:db:d1:1e:
2f:43:e0:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:15 2024 by rpki-client on console-ams.rpki-client.org