Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/w-zeEikDznHycD3ar5537QFtjDI.roa
File: w-zeEikDznHycD3ar5537QFtjDI.roa (raw, json)
Hash identifier: bQmx2iYE4saDSBYK908XJUlj/qrN0f7aPoFHy/7ebmw=
Subject key identifier: C3:EC:DE:12:29:03:CE:71:F2:70:3D:DA:AF:9E:77:ED:01:6D:8C:32
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FDB6EDFA6FFFFB54406A1849B8E34EC0A
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/w-zeEikDznHycD3ar5537QFtjDI.roa
Signing time: Mon 03 Jun 2024 00:10:27 +0000
ROA not before: Mon 03 Jun 2024 00:10:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 03 Jun 2024 01:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:db:6e:df:a6:ff:ff:b5:44:06:a1:84:9b:8e:34:ec:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 3 00:10:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c3ecde122903ce71f2703ddaaf9e77ed016d8c32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:10:23:bf:a9:1a:5a:80:1b:d7:93:db:5f:b1:
6d:87:94:f9:0e:e9:3f:27:c9:ed:0b:f2:ea:39:88:
e3:59:9b:7e:18:3c:5f:44:cb:71:02:07:1f:ef:05:
b1:4d:d5:d1:34:41:c3:18:3e:64:4e:ff:a8:19:b6:
6a:e2:86:e1:d0:cb:ea:b1:70:25:ca:10:65:4a:d9:
92:2c:dd:ce:eb:e0:e5:e2:57:85:84:15:7a:d0:f6:
07:f0:47:29:e8:f7:ff:c0:f7:4b:5d:e6:56:88:a4:
7a:af:00:ef:d6:ca:1a:d9:fc:6b:de:55:97:fc:41:
a4:01:6b:53:77:bf:e2:8e:79:57:cd:9f:58:0c:79:
d2:87:58:53:6b:01:a1:a7:c9:ef:c7:06:79:d9:28:
e4:34:2d:fb:ba:bb:7c:d9:6f:c8:aa:77:c7:84:ca:
c7:62:e5:9c:8f:30:61:1c:3e:01:fc:3e:b9:c2:58:
31:2c:11:c5:a4:ff:da:d1:df:9a:6a:b6:a9:0f:34:
28:8d:1f:34:64:e6:c3:3d:08:fd:5d:e7:c2:9b:80:
4a:61:10:06:2c:62:1c:08:cc:c3:2b:b0:9e:da:c3:
91:8d:65:46:55:c2:58:8a:9e:96:7a:12:69:b0:14:
1c:11:fa:6f:0e:20:e3:c1:dc:5a:1c:3d:7f:cf:b9:
36:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:EC:DE:12:29:03:CE:71:F2:70:3D:DA:AF:9E:77:ED:01:6D:8C:32
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/w-zeEikDznHycD3ar5537QFtjDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
21:8f:b8:90:cf:6e:72:34:3e:cb:60:a8:b9:25:d8:7c:9c:86:
86:a6:be:47:97:cc:bd:bc:bd:0c:a1:6c:07:30:eb:0e:05:d4:
c8:50:02:af:b9:0b:17:9a:8d:ec:20:ce:82:29:d6:3e:ca:88:
2e:e3:14:64:bf:30:e7:30:ad:21:22:e4:80:6d:df:bf:de:b7:
88:81:dc:9d:3f:64:92:04:ec:4d:38:39:a3:5d:56:2a:3b:66:
fe:c0:67:0c:90:59:77:7a:29:93:5a:70:65:c4:e2:78:ab:32:
18:66:94:4e:78:6e:d6:c9:97:3e:54:69:01:c6:1a:4f:34:26:
db:8e:18:b7:64:37:9c:75:4b:d5:85:bd:7c:56:97:31:9d:e7:
f7:0c:04:db:74:1d:1e:4c:14:d3:a9:1a:04:a7:11:ba:c8:e9:
16:ab:b6:fe:59:9f:a5:c8:e9:dc:44:f2:6c:4f:58:65:ac:3d:
d4:e8:54:39:80:bc:7c:7a:b0:6d:fa:7a:2f:8a:f7:af:58:f3:
69:9d:ca:6c:4c:68:1b:91:29:a5:6b:51:70:cd:6b:c7:a3:7a:
05:b4:6c:ff:5f:38:3e:8c:bf:da:f3:8d:8f:03:38:d0:67:9a:
6c:e9:d9:89:5c:69:bc:09:d5:08:bd:d9:da:fa:4d:f8:03:30:
ce:c1:58:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:52 2024 by rpki-client on console-fra.rpki-client.org