Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/19McZ6KLChnz_UN_m2VsrQ6iZYs.roa
File: 19McZ6KLChnz_UN_m2VsrQ6iZYs.roa (raw, json)
Hash identifier: 7vkHwziJpe2EZ1B8x0u9iXlB+H+l69DDqc3m1eW4ZYo=
Subject key identifier: D7:D3:1C:67:A2:8B:0A:19:F3:FD:43:7F:9B:65:6C:AD:0E:A2:65:8B
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190B01526A89567DB4A5D6BA96618125812
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/19McZ6KLChnz_UN_m2VsrQ6iZYs.roa
Signing time: Sun 14 Jul 2024 07:11:34 +0000
ROA not before: Sun 14 Jul 2024 07:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 14 Jul 2024 08:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b0:15:26:a8:95:67:db:4a:5d:6b:a9:66:18:12:58:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 14 07:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d7d31c67a28b0a19f3fd437f9b656cad0ea2658b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:07:05:82:b9:0b:51:f8:f5:72:a0:53:e2:03:
db:4e:51:e2:17:38:31:4c:03:04:bc:05:3b:8a:f9:
e1:c1:cd:01:de:b9:8e:b7:d6:90:a0:5e:30:c8:61:
33:34:0b:4e:8d:de:5a:82:63:7f:4b:de:63:79:38:
87:07:a8:c2:54:21:d7:92:9b:ef:1a:2c:84:cb:0b:
46:13:4a:be:0b:d3:c0:2e:76:ad:93:49:5e:62:38:
68:52:77:96:8f:07:b9:d0:69:c4:2a:2a:96:15:04:
a9:7c:6b:ab:b0:ce:66:ce:36:95:7a:31:46:41:67:
a4:9d:6d:65:19:e1:58:3a:bb:f6:f9:d0:7e:3f:95:
f7:ce:ac:60:cc:c9:62:d4:15:e5:b8:81:bf:89:e9:
b5:52:6a:00:51:63:88:21:82:f6:3e:89:14:5a:67:
80:27:44:af:3b:08:1c:90:d9:ec:62:57:73:96:36:
a1:d4:e4:3a:05:29:2f:80:f9:f9:83:73:30:31:cf:
d5:23:41:91:1f:70:af:21:46:65:c8:61:45:8e:76:
26:27:b7:7b:ba:33:dd:d5:4b:f3:bc:05:76:2e:40:
0a:58:57:56:20:dc:c6:69:5a:4c:f4:47:03:cf:1e:
88:5d:58:71:9d:e5:44:35:6f:ce:e4:44:42:14:bf:
7f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D3:1C:67:A2:8B:0A:19:F3:FD:43:7F:9B:65:6C:AD:0E:A2:65:8B
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/19McZ6KLChnz_UN_m2VsrQ6iZYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
86:77:8c:7e:54:d7:85:11:b2:67:33:22:9c:4b:24:b8:33:1d:
75:a9:cc:46:9a:d6:71:83:e0:f7:51:0f:42:4b:05:bc:d0:c0:
94:60:b9:27:85:10:56:34:1f:5e:bb:d2:1e:75:54:df:7f:3b:
80:03:b0:99:f2:6b:75:d2:9a:90:dd:00:1a:69:c0:34:4f:73:
2f:25:8a:d4:73:d7:2f:9f:f5:c2:fd:9b:a6:f5:92:b6:13:f8:
15:af:c3:c3:07:eb:25:e5:e9:c6:3d:d9:6a:32:44:7f:26:53:
da:27:d0:11:43:23:67:2d:36:ef:46:27:71:40:5f:21:5c:be:
db:2e:f4:df:2d:0c:90:e0:3d:c9:af:91:8f:0a:db:d1:c1:a7:
c8:76:4b:26:8d:53:7b:68:db:60:21:7b:f2:5e:fe:74:cc:a3:
f8:34:00:64:4c:d2:7d:85:81:fe:c6:ed:b6:b2:82:3d:64:44:
5b:00:a6:84:07:1d:38:7b:f6:48:74:c7:5e:06:ca:82:ec:5b:
8a:c7:fa:f0:9b:d5:28:22:30:37:9f:34:54:48:57:3b:75:91:
85:17:a2:09:cc:d7:cc:b6:e7:51:93:ce:5e:b0:5c:93:e5:1e:
87:01:20:a3:00:02:89:f9:d3:30:1d:39:5c:68:27:6a:7e:21:
60:9c:db:9c
-----BEGIN CERTIFICATE-----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Generated at Sun Jul 14 09:21:48 2024 by rpki-client on console-fra.rpki-client.org