Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/xwtJjHZ2SP8uJChLPyPEpxXkUN8.roa
File: xwtJjHZ2SP8uJChLPyPEpxXkUN8.roa (raw, json)
Hash identifier: ekVdRlF/NtDntJM9R7CAzlmL7pcw30DJutmf8cJZniQ=
Subject key identifier: C7:0B:49:8C:76:76:48:FF:2E:24:28:4B:3F:23:C4:A7:15:E4:50:DF
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FF6AF31808CE33EE94D103B147DCD06A5
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/xwtJjHZ2SP8uJChLPyPEpxXkUN8.roa
Signing time: Sat 08 Jun 2024 07:10:27 +0000
ROA not before: Sat 08 Jun 2024 07:10:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 08 Jun 2024 08:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f6:af:31:80:8c:e3:3e:e9:4d:10:3b:14:7d:cd:06:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 8 07:10:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c70b498c767648ff2e24284b3f23c4a715e450df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0b:51:f9:bb:20:81:75:b0:f1:0a:d3:4f:0c:
37:dc:53:8b:32:a7:30:08:fc:e6:cd:1d:35:dd:07:
70:28:4a:ab:7d:3e:f2:1b:79:67:9b:10:3a:cd:b0:
76:f9:e0:dd:25:e1:3b:fb:5d:5e:4f:3b:42:d6:f6:
d9:6b:e7:f4:48:c0:a4:19:23:10:e6:6d:9d:3b:f2:
9d:e7:1c:8a:35:10:6a:9b:d3:d7:43:69:66:df:99:
58:8f:ed:4c:94:dc:51:23:1a:f0:9a:21:b2:fa:e4:
96:61:b5:5e:0c:47:d0:2c:70:0c:0b:21:5b:7d:4e:
c3:fa:56:7f:36:dd:df:0c:f4:a8:92:31:1a:7c:44:
27:c0:a8:49:4e:08:cf:c9:ff:78:5e:14:11:a7:cb:
a1:70:d2:b8:4f:6e:57:2c:2c:0b:89:34:14:0e:0c:
24:a8:dd:3a:57:1d:ea:7b:85:46:a4:86:fb:e7:41:
73:16:b1:e4:1b:37:25:34:88:75:42:3f:bb:e6:58:
ab:97:de:66:85:3f:c4:05:2e:bb:5a:46:c5:05:4b:
aa:dc:e2:10:f3:93:31:7d:6f:b9:01:65:7b:a8:e0:
3f:8f:f0:0c:26:14:41:e2:97:23:08:fa:28:4e:83:
03:f3:d7:56:0a:f5:8f:b3:33:5f:c4:b3:e2:e9:16:
ec:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:0B:49:8C:76:76:48:FF:2E:24:28:4B:3F:23:C4:A7:15:E4:50:DF
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/xwtJjHZ2SP8uJChLPyPEpxXkUN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5f:dd:13:56:05:67:a6:e4:d7:cc:bb:20:7a:20:4f:4f:e5:31:
77:0e:af:19:27:da:61:fd:0e:81:34:96:07:61:f6:da:88:41:
65:17:e4:53:de:3c:35:95:ae:c8:67:7b:d1:f7:c5:e7:05:a8:
78:88:b8:5e:e7:34:04:79:2f:25:29:88:ce:8b:c3:bd:bf:0f:
6d:79:db:b0:79:81:59:ab:24:21:7e:41:75:0f:91:f4:0d:63:
24:63:a9:25:7d:5a:62:a2:b4:7e:24:96:70:0f:c2:1c:f2:25:
62:9e:8e:ff:8a:61:e1:f1:48:2f:71:89:1e:53:42:c6:f3:41:
b0:05:ea:25:57:a5:b7:7c:f3:63:f7:40:3c:d4:aa:38:84:53:
f4:2c:52:c9:36:da:f1:ff:42:97:a4:19:37:10:fc:a8:7a:a2:
8f:d5:69:75:7b:b7:f0:d3:6a:37:3a:6a:a1:9c:80:b9:db:d6:
35:34:69:10:d9:a8:ed:78:c3:54:b2:b9:70:40:88:f8:bd:b1:
57:65:b8:b7:28:19:29:68:ab:fd:5f:c7:97:96:a7:77:1c:00:
c4:0e:c0:76:fc:df:f6:8b:84:69:ec:bc:cb:d4:60:ad:89:ca:
e6:f5:18:c9:5a:0f:27:37:37:54:a2:44:19:4a:84:1b:56:91:
17:14:d3:72
-----BEGIN CERTIFICATE-----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Generated at Sat Jun 8 08:38:37 2024 by rpki-client on console-fra.rpki-client.org