Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/2Q8_KrWeBGc2Y8zIjp_ZOsgcf_Q.roa
File: 2Q8_KrWeBGc2Y8zIjp_ZOsgcf_Q.roa (raw, json)
Hash identifier: Bi7j1JRMQpF3lFc7D3KxEEGNZtBxER6PQtiqzER1gx0=
Subject key identifier: D9:0F:3F:2A:B5:9E:04:67:36:63:CC:C8:8E:9F:D9:3A:C8:1C:7F:F4
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019084F48FB5A858B8D0143B5D0136D4F38B
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/2Q8_KrWeBGc2Y8zIjp_ZOsgcf_Q.roa
Signing time: Fri 05 Jul 2024 22:12:18 +0000
ROA not before: Fri 05 Jul 2024 22:12:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 05 Jul 2024 23:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:84:f4:8f:b5:a8:58:b8:d0:14:3b:5d:01:36:d4:f3:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 5 22:12:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d90f3f2ab59e04673663ccc88e9fd93ac81c7ff4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c0:8e:6b:32:1c:d7:b6:6e:a0:4f:58:10:b1:
1c:f8:ac:70:84:0c:81:be:64:b2:dd:78:4e:fb:5d:
9a:f7:e1:99:bf:57:51:5f:7e:6e:60:36:e1:a1:b7:
15:36:10:53:f6:46:6d:3c:0a:af:1e:ad:ad:d0:ea:
4b:dc:54:e5:fa:a5:8d:91:a3:8b:ca:d3:4b:9c:0a:
07:73:b1:d4:68:1e:4d:84:a0:94:32:8b:d3:45:ad:
2c:4a:80:28:83:a8:67:4f:d8:76:24:8c:ac:88:b8:
da:a8:83:a9:18:b2:ad:e6:2d:06:c3:55:cd:08:f7:
91:bb:86:1a:ea:27:52:88:52:48:34:6f:a1:a8:84:
ab:5e:a1:ba:35:98:ee:37:76:15:57:4a:a6:15:02:
ca:94:f7:77:13:85:99:f0:9e:6c:d4:dd:0a:78:0d:
5b:42:87:44:d5:f9:53:a2:2a:b4:cb:09:93:07:74:
0b:9a:88:a1:d6:be:c0:b0:0f:3d:94:bd:70:d0:2a:
2f:94:31:bc:93:9a:67:11:f1:1d:50:1e:ec:79:04:
96:51:5e:88:f7:66:bf:30:cf:4f:70:9d:22:81:ee:
98:8b:b1:e9:5c:39:24:29:d2:42:3f:43:8f:f5:9c:
b1:69:5c:8b:ef:5b:e5:0f:58:55:f0:22:b5:5e:d4:
33:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:0F:3F:2A:B5:9E:04:67:36:63:CC:C8:8E:9F:D9:3A:C8:1C:7F:F4
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/2Q8_KrWeBGc2Y8zIjp_ZOsgcf_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
18:b1:3b:1e:1a:cd:56:fe:bb:08:48:b4:f3:74:de:80:fe:25:
cc:fc:64:bd:f8:44:38:0c:d7:22:a5:d5:77:62:b9:bb:12:3d:
59:3d:09:ef:06:79:bc:a6:20:4b:1d:fd:c1:8f:ad:f9:52:1a:
9e:15:db:cb:18:d5:75:6c:25:48:b1:93:bb:5c:c0:51:d5:e5:
50:a2:8c:40:8d:6f:a5:10:47:3f:c7:ee:f0:de:1f:c0:fb:20:
b4:e4:8d:54:9d:8a:14:b9:3a:9c:e9:31:48:18:d3:25:58:82:
93:3e:f5:1d:a7:fe:87:ad:54:e9:1e:85:6f:ed:e8:fc:4d:9d:
83:1a:a9:70:60:63:df:84:50:5b:10:2f:c1:62:95:51:69:e0:
f4:06:65:56:3c:74:e7:33:c8:51:22:5d:6a:2c:af:15:33:9d:
ba:19:41:70:89:31:ad:c5:48:f8:90:bb:52:57:0c:8e:23:a9:
05:92:11:de:96:1e:17:88:55:02:b6:6b:a5:5a:44:41:8f:c3:
21:dd:3d:d6:2a:da:a9:40:f9:4b:76:19:2b:a5:32:31:c6:41:
dc:cf:4d:5f:70:48:8e:30:6b:9d:5a:41:65:9f:a1:be:2f:b8:
d1:da:0b:89:6a:09:2c:92:19:5d:b9:c7:54:9d:91:55:4a:59:
c2:5a:be:07
-----BEGIN CERTIFICATE-----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Generated at Sat Jul 6 00:14:19 2024 by rpki-client on console-fra.rpki-client.org