Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/tzsS2vAfgRRRR3W3yRsrtwPR1aI.roa
File: tzsS2vAfgRRRR3W3yRsrtwPR1aI.roa (raw, json)
Hash identifier: fNHT38qvFCAD+XdLhSTDC4RJgnsGZOgNLmPWYVDx+7g=
Subject key identifier: B7:3B:12:DA:F0:1F:81:14:51:47:75:B7:C9:1B:2B:B7:03:D1:D5:A2
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01901973239561E0CDD1CB93C78BE07DC6F9
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/tzsS2vAfgRRRR3W3yRsrtwPR1aI.roa
Signing time: Sat 15 Jun 2024 01:11:34 +0000
ROA not before: Sat 15 Jun 2024 01:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 15 Jun 2024 02:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:19:73:23:95:61:e0:cd:d1:cb:93:c7:8b:e0:7d:c6:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 15 01:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b73b12daf01f8114514775b7c91b2bb703d1d5a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:aa:bf:ef:e7:c8:54:17:3e:e3:2b:48:c4:3b:
e8:36:4a:6f:68:62:53:15:94:74:56:4d:b5:40:af:
27:af:ed:b7:84:76:00:43:3d:75:1a:df:be:e4:e0:
6e:0b:1d:72:72:8a:8f:06:54:3e:1c:43:62:dc:09:
b1:0c:c7:6b:3c:d3:9c:b2:ef:1f:aa:52:ed:56:09:
14:d0:c8:d6:0b:b4:73:62:9c:a6:b9:16:da:ab:6a:
a6:31:6c:f2:16:45:ca:26:7c:a0:08:9f:da:ec:3a:
ca:7b:27:a5:c3:d4:37:a7:08:66:dc:e0:91:de:cd:
e9:b2:75:e5:9c:93:3d:d5:be:65:f7:d1:6d:db:cd:
21:0c:6b:3c:2f:50:79:9f:d2:7a:83:ac:9f:9c:fc:
6f:f7:bc:52:ec:13:90:65:74:78:33:75:2b:3c:56:
8b:8d:7a:f3:8b:17:56:e6:2e:d1:41:31:4b:63:4f:
12:ba:a3:6c:49:9f:b9:98:1d:3a:c7:7c:ec:a7:4e:
f2:43:61:96:47:51:f0:cd:90:df:4f:ed:82:bd:d5:
d0:a4:51:8a:88:82:37:b6:22:b7:fb:b2:ec:89:89:
a8:9e:88:fb:8b:98:5f:0c:cd:41:8f:a5:7e:fb:f1:
76:96:65:23:cd:74:f0:cc:52:6f:a1:a1:dd:6a:a9:
e8:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:3B:12:DA:F0:1F:81:14:51:47:75:B7:C9:1B:2B:B7:03:D1:D5:A2
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/tzsS2vAfgRRRR3W3yRsrtwPR1aI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7d:af:d2:10:ca:6a:07:70:cd:bc:8d:bd:7a:58:36:9e:66:64:
6f:ea:ac:21:34:87:0c:fc:7f:81:1e:a0:e3:60:19:ff:58:87:
88:56:ca:a3:16:f7:b5:07:cc:9b:fe:c2:df:63:61:c9:3d:41:
88:18:72:da:07:6c:bc:7a:8a:cb:71:01:ee:e3:d7:01:c7:69:
33:cf:65:c5:29:52:b5:20:51:31:a2:4e:23:63:82:fe:31:4b:
ab:71:33:37:2e:3b:12:34:74:34:df:d9:f0:d8:2e:4e:26:ff:
4e:f1:6c:53:9e:69:84:e6:a3:e4:9b:80:60:3c:d2:0f:12:c4:
1e:0e:bd:37:38:c6:62:8a:7e:ce:5d:39:5d:a2:e6:90:ad:f5:
a6:8b:7f:1a:45:d4:90:3d:61:08:52:5e:cf:ed:df:90:df:72:
ae:07:5c:fa:5a:5f:11:05:75:45:29:db:3c:fb:75:59:b5:ab:
ce:18:b4:93:ff:75:45:9a:33:ab:7b:bb:c7:6a:73:a0:04:a9:
b3:6c:40:56:b1:05:ae:39:87:05:02:25:2c:24:40:66:1f:41:
43:6b:5c:1c:61:ec:37:df:ac:b8:8f:fb:31:c9:64:52:30:08:
4b:4f:62:ca:66:00:5f:60:3e:15:67:8f:43:ec:70:5e:1a:21:
ec:f7:42:73
-----BEGIN CERTIFICATE-----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Generated at Sat Jun 15 03:07:58 2024 by rpki-client on console-fra.rpki-client.org