Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/zPQPIjL7efaAA3LlZceX4Xo6zSs.roa
File: zPQPIjL7efaAA3LlZceX4Xo6zSs.roa (raw, json)
Hash identifier: eFyWPZ7Sdt3oh7s3aYeqsmuPwh8uRwdMeRDkhnk5eP4=
Subject key identifier: CC:F4:0F:22:32:FB:79:F6:80:03:72:E5:65:C7:97:E1:7A:3A:CD:2B
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01900C25606BE9AE0FF4E0E1308F0998EF7E
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/zPQPIjL7efaAA3LlZceX4Xo6zSs.roa
Signing time: Wed 12 Jun 2024 11:11:34 +0000
ROA not before: Wed 12 Jun 2024 11:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 12 Jun 2024 12:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:0c:25:60:6b:e9:ae:0f:f4:e0:e1:30:8f:09:98:ef:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 12 11:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ccf40f2232fb79f6800372e565c797e17a3acd2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:02:fa:a4:0a:1e:9e:08:28:8f:39:15:2f:ba:
fc:28:33:fa:b9:c4:f0:65:25:db:c0:79:be:ec:f3:
1a:66:bf:99:0a:ee:c5:aa:ea:7f:5d:fe:00:d8:63:
a4:80:0d:d3:15:a5:56:ba:05:f0:4c:41:1c:24:fc:
e7:ea:f3:44:bb:07:e0:c1:3b:4c:2f:7d:54:db:98:
fc:a7:9a:80:a3:d3:b0:00:33:5d:b5:28:2b:e2:97:
55:b4:6e:4e:26:6c:01:86:ed:66:80:8e:40:42:65:
f8:8d:dc:ca:0c:15:2a:d1:68:df:ed:c2:d3:fa:7f:
b4:b4:4d:f7:07:d7:fa:a4:96:34:38:28:32:d8:d7:
57:a2:e3:09:8b:98:4d:3f:fa:65:28:50:49:26:86:
6b:3c:64:97:28:ce:45:9a:36:6f:c5:ac:31:3b:2a:
4e:02:af:22:5d:9c:78:92:0e:7b:fb:17:ba:f5:55:
19:3c:0f:d3:17:aa:18:9a:ad:7f:fe:50:d1:8a:a6:
55:f2:cf:0f:ae:a9:86:b8:89:70:02:69:8c:6b:87:
19:54:ad:32:f1:f2:12:0a:55:7d:b0:d8:83:c5:29:
cc:59:fd:d7:8c:49:a0:fe:59:41:93:3a:42:e1:16:
ef:64:33:41:d6:cd:a8:5f:9c:c5:f5:e7:f2:93:ea:
da:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:F4:0F:22:32:FB:79:F6:80:03:72:E5:65:C7:97:E1:7A:3A:CD:2B
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/zPQPIjL7efaAA3LlZceX4Xo6zSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
88:68:da:11:17:3c:4f:24:ea:41:1a:08:c9:d3:9c:01:ab:51:
85:15:95:be:27:41:2b:0a:44:c7:22:84:e3:01:e3:2c:0e:99:
7d:f2:df:4c:3f:40:a2:eb:8d:9b:b2:1a:4f:e3:99:d5:94:a3:
4d:f2:19:41:ca:95:1a:f1:75:83:01:ea:26:99:f5:3c:a0:f2:
a8:ca:82:ed:89:61:24:f3:dd:62:45:d8:00:b8:6e:d5:16:31:
90:26:7b:9f:a0:fa:9f:f9:a8:5b:12:eb:09:cb:35:e0:1f:6e:
af:c5:10:26:e8:17:9e:eb:fc:c0:2f:fb:8a:93:b6:8e:bb:bf:
c9:35:c3:e9:65:7a:b5:02:13:f8:8d:e8:98:cd:18:07:55:49:
90:2e:c6:ab:d7:32:53:dd:dc:c7:99:cd:a4:61:67:da:0e:a6:
a7:17:d9:f0:9c:2c:c8:73:40:83:6a:7c:ff:ab:61:d0:f5:81:
a4:70:42:22:2f:d1:36:69:93:27:36:6e:a3:8d:a4:f7:ca:37:
29:7a:92:0c:c3:82:8c:3b:52:50:92:57:b4:12:c1:06:0e:99:
c9:0b:75:02:13:72:69:30:89:4e:58:9d:dd:41:7b:8a:4b:33:
4f:54:30:25:0f:04:cc:49:c4:53:6e:6d:60:61:64:87:f0:b3:
a0:77:4a:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 12 18:13:02 2024 by rpki-client on console-ams.rpki-client.org