Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/zKbECvngLG_6QaMu69AwjgRCZmU.roa
File: zKbECvngLG_6QaMu69AwjgRCZmU.roa (raw, json)
Hash identifier: TZQwxb3V+wotOlJm/yk3i7psRXCwvD5an9zAlMZf1yo=
Subject key identifier: CC:A6:C4:0A:F9:E0:2C:6F:FA:41:A3:2E:EB:D0:30:8E:04:42:66:65
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190340EA947E95C47DD7EBE4E8DFE94FF9C
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/zKbECvngLG_6QaMu69AwjgRCZmU.roa
Signing time: Thu 20 Jun 2024 05:11:34 +0000
ROA not before: Thu 20 Jun 2024 05:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 20 Jun 2024 06:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:34:0e:a9:47:e9:5c:47:dd:7e:be:4e:8d:fe:94:ff:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 20 05:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cca6c40af9e02c6ffa41a32eebd0308e04426665
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:27:f3:1c:86:08:7b:b0:46:db:88:f8:eb:c8:
07:7c:3a:31:0e:e9:c6:07:36:cf:29:69:35:c1:c5:
36:e7:46:56:6a:c6:00:77:d3:b1:f0:56:66:5b:2f:
59:e6:3b:4d:31:db:b0:6a:dc:88:f2:3b:83:44:e1:
3c:27:be:02:3a:48:de:7d:1b:17:ff:3c:c5:91:ef:
a2:f7:73:05:ec:26:27:98:d6:f3:cc:21:e5:1a:cb:
3c:8f:1b:6a:96:54:7e:a0:cf:1a:d0:fb:73:f1:3c:
dc:fc:0e:9e:ed:3c:e0:b0:18:9a:61:15:67:c1:a9:
46:5c:3a:0c:c5:f6:81:b1:5c:b6:84:42:02:be:d8:
ae:5b:fc:32:10:97:1d:db:9d:14:c1:64:ca:7d:ba:
22:0b:b9:f5:05:80:8a:6b:27:2e:f9:09:eb:91:f9:
35:71:30:02:26:f2:65:07:67:ac:f8:6e:8c:45:f8:
aa:33:18:56:1f:54:ca:dc:3f:72:1e:68:91:9b:4e:
93:63:c1:08:ad:d7:7d:bc:b6:ee:a9:b4:8f:75:d7:
2e:88:21:96:22:0d:33:e7:84:c7:70:5e:2a:d7:89:
e4:c8:bf:9e:cc:a1:0a:bc:c9:5a:91:3e:0d:1b:11:
bc:9c:fd:59:16:5a:e9:e8:c7:fc:9b:fe:86:c6:02:
a4:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:A6:C4:0A:F9:E0:2C:6F:FA:41:A3:2E:EB:D0:30:8E:04:42:66:65
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/zKbECvngLG_6QaMu69AwjgRCZmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
8a:c3:4d:a6:9b:f8:e8:0b:f9:c1:a6:bc:53:4c:54:50:8f:5b:
c0:34:2d:0a:be:ad:c4:08:2a:0f:47:6f:6b:62:93:59:a9:69:
36:93:d2:69:95:fd:12:c7:5f:d7:5e:84:1b:c2:e9:ee:79:83:
b6:2b:94:97:9e:10:53:47:a8:14:d4:99:73:52:b0:f0:23:cb:
ed:b0:ec:c9:ec:67:d7:32:32:cd:f4:ec:5f:56:c6:dc:9b:1d:
17:60:fb:09:e4:7d:71:65:ec:55:24:f5:b2:b6:12:77:12:8c:
a1:ba:7b:20:bd:41:80:88:99:5c:e1:85:95:eb:d4:2e:bf:0e:
23:96:b5:aa:39:d3:7a:39:6d:a9:96:9b:6b:ef:4f:5d:0d:fc:
ef:ef:e2:91:b9:bf:27:34:55:5d:b5:8c:60:0f:b3:67:99:5b:
25:f9:f0:fc:b0:1f:94:62:72:36:61:be:31:bd:f9:7f:20:50:
03:68:16:05:78:9e:56:27:78:2d:35:e5:bc:32:d3:fc:65:1f:
83:ad:dd:0a:e7:0c:af:23:a4:ce:51:42:54:47:30:5f:5a:e2:
32:2a:79:0e:dd:aa:4b:7c:15:6e:25:c5:7a:8e:e5:01:ae:58:
18:02:39:a0:e0:7a:d4:99:87:40:b0:3c:35:61:65:ac:9b:64:
79:21:71:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 08:11:49 2024 by rpki-client on console-fra.rpki-client.org