Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/0BPhfOb8MPYMFmg5i_yQwSSe6vk.roa
File: 0BPhfOb8MPYMFmg5i_yQwSSe6vk.roa (raw, json)
Hash identifier: WRn24CKN19dbJWeLAkTf9iTdU3y3bfvuyk501ZMiWuI=
Subject key identifier: D0:13:E1:7C:E6:FC:30:F6:0C:16:68:39:8B:FC:90:C1:24:9E:EA:F9
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FBDD633FA8E9656C08548BD314BDAED74
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/0BPhfOb8MPYMFmg5i_yQwSSe6vk.roa
Signing time: Tue 28 May 2024 06:14:42 +0000
ROA not before: Tue 28 May 2024 06:14:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 28 May 2024 07:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:bd:d6:33:fa:8e:96:56:c0:85:48:bd:31:4b:da:ed:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 28 06:14:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d013e17ce6fc30f60c1668398bfc90c1249eeaf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7f:f3:29:c9:ae:18:7e:72:4a:29:9c:2f:6b:
eb:7e:d6:87:f0:3a:4e:96:93:ed:1c:94:29:3c:5f:
2f:48:c5:ac:57:d1:c0:02:0d:21:73:d0:f4:13:4f:
21:2e:99:3f:73:15:46:a8:48:49:67:b2:7f:53:35:
9c:d1:82:c3:6c:a7:72:ac:8c:a2:18:eb:7c:c3:f4:
1d:99:eb:9e:1a:ac:2d:63:29:69:8a:0c:9d:5c:0f:
df:0c:b7:32:98:34:25:57:c0:40:19:38:0c:f6:ec:
5b:09:46:93:bb:39:38:19:df:23:70:90:41:ca:12:
e7:70:52:3b:1c:7b:8b:a6:13:8f:7c:99:78:d9:5e:
27:94:43:13:1c:0f:4d:4d:1b:aa:fe:4e:7d:18:68:
fc:cb:3c:d3:be:fe:e1:39:36:78:95:04:c2:f1:51:
10:9a:92:49:31:24:fe:5a:82:5f:b3:a3:d5:f7:54:
44:a4:2f:49:71:e9:5e:48:93:47:fc:83:f3:f0:c2:
5e:8e:60:c6:87:b1:75:9e:59:a7:d5:f8:f8:e2:4c:
0c:ca:18:b7:18:e7:f4:29:07:22:92:a6:82:4d:cf:
06:47:05:e4:16:db:c5:d8:7b:d3:ba:86:4e:1a:5f:
99:5c:1c:12:eb:79:38:e1:83:19:b5:81:a3:08:b6:
0f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:13:E1:7C:E6:FC:30:F6:0C:16:68:39:8B:FC:90:C1:24:9E:EA:F9
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/0BPhfOb8MPYMFmg5i_yQwSSe6vk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
39:58:20:41:0f:ac:f0:e7:21:f1:64:ca:51:04:61:29:58:9f:
b5:f5:0b:3a:6b:73:91:98:53:95:55:68:4f:e2:f0:d4:b7:36:
ea:d2:8e:83:fb:3e:c3:d2:54:ed:ce:a3:f5:88:b1:e9:15:4f:
e5:37:9a:85:28:a7:5a:97:4c:51:e6:d2:3c:eb:0b:90:91:8c:
d4:70:4e:9e:ed:ee:e6:a0:ee:16:78:8d:f2:4d:7e:0b:ce:cb:
b0:3a:e8:ab:cf:80:a7:7a:78:c7:a5:70:2d:20:4c:d4:a6:a8:
22:57:1f:9b:81:33:b8:07:aa:ef:b2:20:66:e2:15:11:f4:a4:
84:49:2a:3f:03:67:e8:7d:a8:98:5d:e3:f3:2e:ec:63:9e:fe:
0f:14:02:8d:44:3c:1a:ce:c0:de:a4:b4:ca:37:22:d0:e5:be:
48:92:6e:df:3c:54:9b:be:23:d9:54:db:e3:95:57:34:ec:d8:
17:dd:04:ec:4b:d0:3d:be:af:50:c5:5b:ea:3b:8a:66:15:b2:
03:27:73:b2:88:c8:53:ed:34:bc:1b:89:51:2a:05:dd:90:f3:
ef:4b:70:af:1b:84:93:fa:c0:34:26:9c:fa:44:1d:e9:f5:56:
4c:15:4b:fb:5b:58:23:5d:3e:ba:02:09:76:b1:b0:98:b9:4a:
47:1f:7a:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:51 2024 by rpki-client on console-fra.rpki-client.org