Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/tpit5-W0GkQySMd3QaIVAbVa0mI.roa
File: tpit5-W0GkQySMd3QaIVAbVa0mI.roa (raw, json)
Hash identifier: vKwue82wt/63rVY0YYKmr+wY+nE/JcAxbhOl1jpHG8I=
Subject key identifier: B6:98:AD:E7:E5:B4:1A:44:32:48:C7:77:41:A2:15:01:B5:5A:D2:62
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190204F1EA9D95CFD782944D27BFA875A27
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/tpit5-W0GkQySMd3QaIVAbVa0mI.roa
Signing time: Sun 16 Jun 2024 09:09:34 +0000
ROA not before: Sun 16 Jun 2024 09:09:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 16 Jun 2024 10:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:20:4f:1e:a9:d9:5c:fd:78:29:44:d2:7b:fa:87:5a:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 16 09:09:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b698ade7e5b41a443248c77741a21501b55ad262
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7b:e6:74:58:9b:d8:69:8b:aa:e4:b9:49:5a:
4b:bc:7b:3a:9b:9d:b2:65:73:47:0b:d8:63:21:1c:
9d:47:20:2f:13:95:a1:d2:26:b0:7b:34:09:bc:8a:
c3:a0:fd:3c:c1:04:a9:26:54:63:aa:28:b5:3e:5d:
94:39:af:76:f0:6e:7b:22:4a:db:7d:0a:1c:b1:11:
e8:1d:bf:ca:dd:68:fe:fa:97:d9:fd:9d:1c:2a:e9:
ce:a4:b8:42:4a:18:5c:e0:76:6a:12:94:d7:aa:82:
b0:37:7b:94:b3:7d:99:2b:53:cb:66:71:a5:35:3d:
a3:b1:37:9d:ba:76:83:c5:b8:02:b8:7b:67:ca:fd:
b0:4a:eb:9a:15:7d:4c:a4:17:99:9e:84:35:a1:fa:
91:c2:d5:23:a7:39:a1:14:da:14:a8:bc:32:af:13:
fd:5c:53:41:53:3c:fd:6a:de:d8:3b:6f:73:22:d1:
e4:04:d8:5a:67:21:72:69:bc:f0:82:a2:60:ef:0b:
f7:6c:cb:a3:3e:49:01:8c:62:c2:bf:d3:f8:c5:8f:
1b:ab:12:79:3b:23:7d:c0:9e:06:ee:02:03:9c:b1:
86:da:b5:30:2b:52:63:9d:22:e4:da:1e:56:b4:16:
58:ad:c7:cc:d8:8c:d1:c2:69:39:6f:40:74:c4:b7:
19:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:98:AD:E7:E5:B4:1A:44:32:48:C7:77:41:A2:15:01:B5:5A:D2:62
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/tpit5-W0GkQySMd3QaIVAbVa0mI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
14:1d:88:c5:be:17:85:2e:55:df:c7:40:48:0e:49:59:ac:d8:
eb:b4:ee:3b:56:74:8e:eb:27:ce:11:79:a0:60:8d:32:49:02:
13:3a:9b:6e:38:ac:67:17:f6:b7:fa:e3:dc:51:be:bc:18:29:
76:30:fb:da:97:e0:80:61:38:16:b4:32:c5:bc:fc:15:fd:97:
99:14:f4:ad:d5:bd:07:a3:51:98:1e:c0:0e:a0:fc:36:dd:f9:
fc:08:25:2f:de:1a:be:ae:d8:b4:fe:9e:4d:04:05:c1:1b:aa:
9c:21:7c:50:23:af:cc:5b:27:8d:7e:46:3c:22:16:0f:63:9c:
6b:4e:36:39:ff:c4:05:fd:e1:6e:36:98:e7:6a:cf:a8:fd:64:
fd:6f:13:ea:74:dd:a6:12:06:5f:f2:d3:da:9f:b0:6b:9b:d6:
ac:bf:3a:b3:ce:58:58:55:be:38:4a:56:b9:8c:cf:df:11:1c:
31:d6:99:6b:43:ff:de:03:60:e3:bf:34:93:fc:10:84:4f:67:
8c:99:55:29:db:11:24:6b:8e:c9:5b:59:66:42:6f:eb:ce:0c:
ac:c2:cf:cb:25:0b:4e:a6:88:83:12:d5:87:76:1c:a2:ca:74:
ad:dd:2d:7f:a0:f0:42:c4:40:25:49:b0:4b:31:90:ad:b1:06:
83:6a:61:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 13:32:07 2024 by rpki-client on console-ams.rpki-client.org