Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/xjIOYgtRudi-CDr-3vRubP0fAsg.roa
File: xjIOYgtRudi-CDr-3vRubP0fAsg.roa (raw, json)
Hash identifier: Pd03MDjAMMxZxOMIdVrIeAF54NJVzlV7on2ses1E6MU=
Subject key identifier: C6:32:0E:62:0B:51:B9:D8:BE:08:3A:FE:DE:F4:6E:6C:FD:1F:02:C8
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FD9F02ED2EB2B7B58A3D165615D1501C4
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/xjIOYgtRudi-CDr-3vRubP0fAsg.roa
Signing time: Sun 02 Jun 2024 17:12:27 +0000
ROA not before: Sun 02 Jun 2024 17:12:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 02 Jun 2024 18:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d9:f0:2e:d2:eb:2b:7b:58:a3:d1:65:61:5d:15:01:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 2 17:12:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c6320e620b51b9d8be083afedef46e6cfd1f02c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:fc:dc:e4:e2:c9:78:42:51:c5:5c:54:4d:a1:
5f:88:1c:a8:80:11:dd:9d:b4:b7:e3:b6:08:31:bc:
b4:94:92:cb:59:04:10:a9:42:73:62:13:12:b5:6d:
20:2c:09:b8:03:99:60:1e:a1:ff:6e:33:18:87:53:
80:e7:19:91:e1:a2:f0:64:39:19:46:5c:9a:ad:73:
14:1d:fc:f2:12:ca:5c:c4:4d:90:95:17:cd:bc:82:
e3:25:6f:72:c1:86:c6:ff:47:a3:cb:f0:9f:bb:06:
71:d3:e3:a0:10:83:76:e5:33:76:d5:1b:e4:12:6c:
85:5c:4a:ba:1c:03:91:01:b0:7e:31:6d:3d:24:af:
f3:3b:65:71:a0:e2:b7:ca:8c:24:5a:c4:4f:69:3d:
96:fd:cb:93:4d:4e:de:85:9e:15:1b:d1:b7:25:63:
3a:60:36:02:db:21:a7:d9:e8:6e:04:77:2f:f3:1e:
b9:de:87:51:67:f8:4e:e7:89:f9:7e:2b:96:7e:7e:
1d:0b:29:ad:d4:3b:5e:a0:65:d0:2f:c2:cb:9a:59:
87:69:9e:ed:38:36:f9:f2:ab:53:14:09:ef:12:3b:
e3:03:e1:13:7b:c4:ed:01:8e:3c:41:10:22:16:f1:
52:97:b8:99:e5:42:63:02:ea:62:b9:66:e9:c2:29:
cf:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:32:0E:62:0B:51:B9:D8:BE:08:3A:FE:DE:F4:6E:6C:FD:1F:02:C8
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/xjIOYgtRudi-CDr-3vRubP0fAsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
15:1c:44:11:ec:bf:0f:81:90:bd:89:b0:3a:b7:10:9c:7a:e4:
e2:aa:f6:43:69:90:72:c0:c7:48:e8:98:09:f4:bb:7b:e8:bf:
c8:00:a0:93:c4:64:3f:78:cc:74:06:d7:3f:7b:01:72:df:43:
a0:de:f1:17:08:31:c0:cc:97:be:6f:4b:76:6a:8d:e1:cb:ec:
78:52:74:bb:14:37:94:92:dc:9e:28:fd:2c:8b:26:94:de:be:
70:57:5c:37:3a:44:c2:a7:47:ea:df:0a:2a:d6:57:74:90:60:
d6:ef:70:90:38:94:4e:71:b2:bf:d0:00:2f:49:17:1c:0d:01:
00:b4:9e:ec:69:d5:5f:8a:1b:fe:40:b7:5b:aa:62:7c:86:d7:
99:ea:a8:9c:74:e7:8a:8b:68:b5:8c:5b:03:6f:f1:8c:75:d1:
25:a3:28:42:84:73:58:33:1f:cd:94:64:1c:aa:dc:d1:1f:9b:
92:5c:b3:a2:f1:68:b5:92:b6:8e:6d:e2:af:be:01:ed:f4:bd:
16:09:d9:8e:63:62:bd:87:32:0a:ab:d9:51:b7:c7:bf:92:e6:
bc:4f:eb:74:b9:83:f0:f1:51:9b:93:1b:5e:17:01:51:f3:46:
e3:07:4a:93:e8:b2:fa:e2:cf:0a:b0:f3:25:c8:6c:a4:a9:17:
2f:13:9a:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:15 2024 by rpki-client on console-ams.rpki-client.org