Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/uwF9cSEe5A-jEIWGwbd6Y-pwsQk.roa
File: uwF9cSEe5A-jEIWGwbd6Y-pwsQk.roa (raw, json)
Hash identifier: SXJaeaCHd9IjkGqWdUZ0JHgJeiz1iVzHhYApcZeueSY=
Subject key identifier: BB:01:7D:71:21:1E:E4:0F:A3:10:85:86:C1:B7:7A:63:EA:70:B1:09
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FB317F52929DEC032B9910B939C50718F
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/uwF9cSEe5A-jEIWGwbd6Y-pwsQk.roa
Signing time: Sun 26 May 2024 04:10:42 +0000
ROA not before: Sun 26 May 2024 04:10:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 26 May 2024 05:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b3:17:f5:29:29:de:c0:32:b9:91:0b:93:9c:50:71:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 26 04:10:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb017d71211ee40fa3108586c1b77a63ea70b109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:09:ec:84:b0:89:ea:f5:ad:36:0d:a8:c3:c2:
65:06:77:86:a6:6a:63:d1:1d:bc:65:85:9f:35:76:
a1:ce:2f:10:b4:3e:19:26:b1:72:a6:9d:91:17:96:
13:80:03:23:56:59:bd:7a:9d:d0:85:09:4b:30:bd:
1e:df:39:f3:09:ee:81:8c:03:7a:43:05:be:39:57:
94:81:c1:c2:58:1e:fb:4a:9f:34:4c:96:17:8f:67:
0a:55:de:0b:f6:df:5b:b0:b8:82:53:4f:c0:8e:47:
2e:ec:22:b6:25:aa:99:71:03:4a:dc:25:56:ea:ac:
45:1e:9b:5e:93:c3:ec:0e:f2:d7:17:88:45:0b:15:
c7:26:7b:8f:97:75:3e:70:8e:52:04:13:07:56:1a:
cc:9d:2c:1e:56:8b:34:49:11:f4:8b:39:e8:99:e4:
65:55:fd:da:f5:dc:bc:2a:58:74:70:cc:94:06:23:
ee:8f:b0:39:a5:f6:91:73:44:f8:f4:a7:9d:23:a9:
52:f2:43:7a:47:a6:9b:1b:f1:d8:b2:1f:31:8a:c3:
e2:ce:5a:32:c1:0d:82:10:be:02:9d:aa:70:38:71:
9c:c6:37:44:76:23:bb:99:af:4a:35:9d:e1:50:41:
4c:0c:b3:16:19:8a:3f:38:66:e1:09:f0:79:12:e4:
a6:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:01:7D:71:21:1E:E4:0F:A3:10:85:86:C1:B7:7A:63:EA:70:B1:09
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/uwF9cSEe5A-jEIWGwbd6Y-pwsQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3b:8e:37:33:cc:c0:d6:51:2e:d1:00:cc:17:4f:57:89:ec:d9:
e9:e1:15:c5:23:eb:1c:0b:74:a2:11:35:13:21:76:60:a9:24:
6d:82:38:9f:0d:be:dd:4c:1b:05:f5:ab:b4:48:db:9f:9a:01:
09:02:44:04:ce:b4:62:29:a0:0f:01:b6:a0:aa:bc:41:24:60:
26:29:5a:31:f8:fc:97:5e:83:84:42:15:b1:c9:7f:83:61:a0:
19:10:d8:03:c0:16:f8:c2:bc:47:d3:ea:1a:b3:fd:5e:a7:99:
5f:4c:29:2e:2a:e6:a7:18:6e:dd:fa:35:58:df:6f:77:38:39:
bb:d4:b0:43:e5:cb:79:d1:09:b7:d4:3f:cf:44:a6:43:c5:6a:
4d:23:cc:01:0f:2f:7c:db:f5:c3:f0:b7:6c:c7:ba:fd:87:02:
35:9e:77:eb:d0:df:88:77:3e:9c:57:25:f9:0a:f2:d0:2b:a6:
51:d2:2c:da:f5:6a:1e:fc:53:27:a3:38:7f:27:cd:d0:ab:90:
e0:bb:f2:bf:fc:53:bf:be:3a:d7:54:69:a9:89:ea:c2:f2:8b:
a9:2f:bd:fa:6a:1b:5f:5d:38:5f:20:2b:9e:72:81:47:c5:60:
28:0b:4e:93:81:9c:a1:d1:75:81:6c:4e:0c:5a:6c:a1:0c:38:
41:16:0f:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:15 2024 by rpki-client on console-ams.rpki-client.org