Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/xW_6wqjDGF5VZ4PWJ2frvJi-rYc.roa
File: xW_6wqjDGF5VZ4PWJ2frvJi-rYc.roa (raw, json)
Hash identifier: o1wZlzR303yEsNgYW+vaFm0VvvDj/Fc4sHPiz+87i+0=
Subject key identifier: C5:6F:FA:C2:A8:C3:18:5E:55:67:83:D6:27:67:EB:BC:98:BE:AD:87
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01906532AE51AB35EDEBE68604CD8CA64E1C
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/xW_6wqjDGF5VZ4PWJ2frvJi-rYc.roa
Signing time: Sat 29 Jun 2024 18:12:18 +0000
ROA not before: Sat 29 Jun 2024 18:12:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 29 Jun 2024 19:06:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:65:32:ae:51:ab:35:ed:eb:e6:86:04:cd:8c:a6:4e:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 29 18:12:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c56ffac2a8c3185e556783d62767ebbc98bead87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4b:44:40:2c:4e:f0:73:95:95:7a:e6:8f:96:
2c:e1:68:2b:69:72:8b:46:be:c5:41:69:60:9a:55:
aa:74:10:b4:07:1f:a2:62:71:1d:eb:b8:d8:09:90:
3f:12:2e:e7:63:61:a8:be:d0:a6:94:18:d5:88:a1:
06:cb:62:d4:f3:01:6f:6f:49:4c:e7:a1:e7:99:39:
7b:4b:61:aa:95:8b:83:59:43:0b:7a:70:8f:cb:17:
cc:3f:da:23:c4:a1:93:bb:08:36:fb:0b:df:d1:e0:
1c:74:41:0c:88:be:6f:98:0e:e9:82:8c:4a:4d:f8:
d1:7b:3b:cc:d9:68:c4:89:7a:e6:18:30:7e:f1:5c:
6e:fe:d9:a2:e5:54:d4:9e:b7:63:d1:44:8a:60:86:
ad:a7:c6:8a:03:f7:6e:1b:51:c0:c2:8a:3c:8c:e6:
ac:2b:b9:47:12:98:14:af:52:94:8b:cd:94:99:63:
7c:94:bd:2a:4b:15:41:a2:dd:c5:8d:e5:70:17:79:
23:c1:ca:1e:16:e5:bf:68:5f:c8:bb:74:5f:06:73:
94:61:83:02:db:1c:d3:c9:ec:cc:58:ca:23:83:f4:
de:34:f4:ae:ef:31:eb:a5:f1:33:74:27:ee:45:37:
57:29:9e:c6:1c:88:e5:f2:e0:e8:ae:46:6a:3c:32:
e2:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:6F:FA:C2:A8:C3:18:5E:55:67:83:D6:27:67:EB:BC:98:BE:AD:87
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/xW_6wqjDGF5VZ4PWJ2frvJi-rYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
2c:ca:0f:4c:dd:dd:25:55:2f:85:5c:64:50:a9:69:c6:9f:0f:
74:f4:da:ce:0a:33:54:83:df:83:c9:ca:e4:8c:57:ae:aa:92:
ef:ee:1b:7b:8d:d5:e8:b2:75:fb:73:9d:d8:fc:ae:55:17:2b:
29:6a:a1:08:01:b1:3f:dc:6d:1b:00:72:35:62:70:a2:eb:d3:
d1:31:1d:8c:40:42:31:c7:91:8d:bb:0a:0b:0f:cc:ea:db:65:
72:2f:f5:4c:22:dd:5a:5f:5e:20:2d:26:44:a7:cf:de:4c:3c:
d4:9c:6a:31:dd:f2:c7:c2:c8:d9:04:fa:8f:e6:d0:80:03:88:
46:4c:47:ab:20:d6:a4:0a:20:1c:55:4a:5e:1b:5d:21:81:2e:
55:74:3a:b6:e5:f8:aa:42:a4:8f:98:02:80:ed:66:a9:c0:2f:
31:de:7f:21:a9:5d:31:70:c0:8d:f1:42:35:91:ac:1e:26:90:
ab:a2:f8:00:01:f5:f2:25:2e:54:0d:3c:d5:c3:3d:fe:d8:93:
86:fe:1d:73:eb:bd:1e:2b:80:34:a6:1d:96:e0:09:b8:3c:e8:
a6:bc:fc:38:22:07:1e:e3:03:9c:36:8e:47:26:69:d0:00:b8:
d6:3c:ed:1a:c6:8e:0b:fc:77:65:83:56:81:f9:52:21:df:ee:
8b:a3:93:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 29 21:12:12 2024 by rpki-client on console-fra.rpki-client.org