Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/0d4Ihu3pVcnjr3P8mGrmJX190_s.roa
File: 0d4Ihu3pVcnjr3P8mGrmJX190_s.roa (raw, json)
Hash identifier: dbgxrwVBnm3Z6hoQnf78eWy1BeKiTJDSlBBFw9Pn9Ak=
Subject key identifier: D1:DE:08:86:ED:E9:55:C9:E3:AF:73:FC:98:6A:E6:25:7D:7D:D3:FB
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01904201379C51497A0590895B0EE3413D90
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/0d4Ihu3pVcnjr3P8mGrmJX190_s.roa
Signing time: Sat 22 Jun 2024 22:11:34 +0000
ROA not before: Sat 22 Jun 2024 22:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 22 Jun 2024 23:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:42:01:37:9c:51:49:7a:05:90:89:5b:0e:e3:41:3d:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 22 22:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d1de0886ede955c9e3af73fc986ae6257d7dd3fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:5a:12:b6:5d:ed:46:cc:c6:f4:a3:50:82:03:
11:ee:ed:11:0f:40:83:f1:fe:97:0a:ee:d1:b5:88:
f2:e4:ef:54:ca:01:36:ae:0f:84:d8:db:6b:1a:4b:
03:0f:bb:bd:a9:8d:80:58:2f:75:de:56:52:9d:3a:
65:4c:48:c5:e8:34:57:65:71:5f:91:a8:2d:d3:6c:
cf:c5:4e:31:d0:b1:bf:8b:90:43:76:3b:c9:f6:d9:
7d:51:7c:0c:d8:44:6c:cc:db:ac:3d:09:93:90:c3:
77:b7:5a:c9:45:ee:e2:6c:e7:cf:9b:a0:d9:99:a3:
b6:84:4c:62:6d:a0:ca:29:cd:9a:52:05:88:13:b6:
80:b4:3d:0e:14:22:0c:2f:43:9a:da:03:37:80:e2:
54:a2:5f:07:d9:23:71:19:c7:44:d6:39:cb:dc:e2:
99:36:cf:17:30:b4:67:e1:e0:90:fc:41:43:86:fa:
f1:ae:a8:4d:63:28:82:d6:ad:7d:f0:c5:11:5f:b4:
4a:b0:c2:15:d6:30:bc:7f:16:26:ae:45:67:ea:eb:
32:cd:23:46:ba:b3:25:46:32:d0:e3:d3:6a:e8:9b:
cc:b0:bf:11:f1:d5:65:0f:9c:68:ad:eb:c2:22:13:
ea:5c:5d:b5:eb:67:f7:a4:a6:58:8c:57:1d:6b:1d:
2d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:DE:08:86:ED:E9:55:C9:E3:AF:73:FC:98:6A:E6:25:7D:7D:D3:FB
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/0d4Ihu3pVcnjr3P8mGrmJX190_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7e:27:ee:10:eb:f3:b4:fb:bd:ee:5c:dd:c5:b6:ee:35:64:5b:
e2:58:8d:cd:0f:ab:98:fd:ab:57:76:72:82:57:78:e2:e2:94:
74:bd:0d:ae:93:23:95:4d:24:d9:8b:28:fe:f0:a0:0b:24:f2:
1a:bf:5d:06:ab:ce:75:db:94:d1:30:3e:4d:44:82:46:f5:0b:
0c:23:2c:04:6c:ee:24:13:87:49:e1:17:3d:63:e0:5a:1d:d0:
6e:c7:7f:16:da:85:cc:6d:7e:70:11:46:ac:06:2b:73:a1:8f:
77:a8:f9:81:77:2d:e8:f1:63:d9:dc:a3:f7:29:64:56:a8:03:
11:43:f3:4f:9b:01:48:8d:e6:e4:be:00:46:c0:07:dc:73:c5:
a1:00:9d:20:bb:c9:20:f5:91:03:f7:a6:18:89:1b:c3:9a:ab:
04:06:a8:bc:55:77:20:d6:cb:d1:90:f9:b5:77:ab:86:24:24:
80:68:21:9a:e4:60:ef:2d:fa:4a:00:9d:1e:a5:b5:56:6b:b1:
87:3b:35:0e:90:60:c3:64:84:38:ef:74:78:83:50:f2:74:ef:
3d:9e:5e:6f:29:04:1e:84:13:c4:86:41:a9:81:8d:7c:06:52:
41:c3:88:4a:15:d2:c5:be:7f:5b:da:ff:d9:0e:06:89:f9:82:
a7:b4:45:ac
-----BEGIN CERTIFICATE-----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Generated at Sun Jun 23 00:05:49 2024 by rpki-client on console-ams.rpki-client.org