Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/zaS8sx02m6hxW7ODElOqE0QJY4c.roa
File: zaS8sx02m6hxW7ODElOqE0QJY4c.roa (raw, json)
Hash identifier: dIxST2IASJi+hqWWbB22qyoZqqGiIkASGsaehz0dbLM=
Subject key identifier: CD:A4:BC:B3:1D:36:9B:A8:71:5B:B3:83:12:53:AA:13:44:09:63:87
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FAECD523B6677350315F073E9056F2951
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/zaS8sx02m6hxW7ODElOqE0QJY4c.roa
Signing time: Sat 25 May 2024 08:10:42 +0000
ROA not before: Sat 25 May 2024 08:10:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 25 May 2024 09:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ae:cd:52:3b:66:77:35:03:15:f0:73:e9:05:6f:29:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 25 08:10:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cda4bcb31d369ba8715bb3831253aa1344096387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:48:15:fc:1a:32:db:80:0c:33:16:43:93:4b:
b3:cb:4c:30:5c:50:88:71:2d:5a:d0:18:fe:da:42:
96:27:bf:8f:f8:12:cf:4d:cc:cf:f0:76:f8:6d:43:
c3:cf:69:04:a2:ab:ba:d2:1a:f1:18:bd:84:f2:96:
39:7a:0d:a5:cd:92:41:28:05:6a:1e:c7:f3:ba:9e:
3b:f6:1a:e2:dd:96:5a:0e:95:33:13:cb:89:86:3f:
05:d2:ec:97:83:16:42:d1:4a:d3:08:97:b8:b1:7f:
7f:d0:1c:ba:fc:86:42:51:fe:af:64:3a:2e:14:b7:
d6:4a:ec:d5:af:9d:58:69:31:47:ab:db:13:60:91:
a2:a7:9e:3f:0a:08:ab:d4:0f:52:72:ee:96:fc:73:
ad:10:f5:20:03:f4:e3:c9:c2:d2:03:9d:4c:12:a2:
69:a6:2c:74:f4:8e:7d:74:c7:0c:3f:76:d3:af:c8:
76:63:ad:b8:65:a8:91:46:cc:ae:ba:34:a0:b2:a6:
39:76:e8:b6:24:b6:d3:e0:e4:ff:01:fa:9c:47:60:
8b:2d:e8:4f:91:79:4e:00:e8:7e:d9:3f:8e:bb:da:
a4:e9:e4:44:68:e5:ba:01:87:99:e8:67:90:0f:9c:
77:b8:e1:2b:97:78:17:9a:f1:3a:95:5c:02:f6:bf:
4f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:A4:BC:B3:1D:36:9B:A8:71:5B:B3:83:12:53:AA:13:44:09:63:87
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/zaS8sx02m6hxW7ODElOqE0QJY4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
1c:b3:06:b1:11:fb:08:6a:39:05:4d:33:84:a8:f8:54:f3:c4:
ad:17:3e:6c:d3:04:db:7c:92:63:80:9f:94:31:f9:f6:4e:88:
80:f5:22:95:77:bf:e5:cb:e0:6a:37:98:50:e2:72:32:c8:8c:
d4:02:55:b8:c1:f6:fa:1b:bd:25:c6:3a:36:1e:8e:84:e7:53:
a3:87:81:0c:1d:28:c5:0a:83:83:ee:ad:7a:a9:26:e5:1b:8b:
5e:09:0d:8a:b7:9c:99:1a:e8:bb:18:be:d3:fe:6e:d4:bd:f4:
d1:3d:61:76:bd:b4:08:73:58:df:61:0c:5f:73:cc:57:c8:55:
3e:5f:e4:ca:78:62:38:e0:f7:6a:f7:71:64:8c:0b:79:c1:f8:
fd:7c:14:01:88:c7:19:21:2e:b4:1a:39:7c:59:b9:7d:f9:97:
3b:27:6b:78:74:29:64:a0:39:6c:e9:fa:50:6b:2d:ee:48:18:
3e:97:82:3a:0e:3e:90:bb:40:6a:c2:f4:c0:03:70:1f:6f:74:
89:53:16:78:83:54:bf:55:a9:16:73:01:0b:9a:a7:f2:79:e1:
1d:ae:fe:70:ef:12:75:3e:6b:4b:8d:d0:9b:32:a5:78:12:8a:
1f:78:87:f6:d3:01:b8:b6:68:d0:78:d2:ed:d8:fa:95:6c:f6:
5a:88:40:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:52 2024 by rpki-client on console-fra.rpki-client.org