Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/5ri-Alk57pFH1imp2wzylldwmyo.roa
File: 5ri-Alk57pFH1imp2wzylldwmyo.roa (raw, json)
Hash identifier: iTy/A2b1SE+FIEYylqiHRjud+QduKpzW4Yz4rO4ZA7g=
Subject key identifier: E6:B8:BE:02:59:39:EE:91:47:D6:29:A9:DB:0C:F2:96:57:70:9B:2A
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FAC050AD745C014912019416CD2CC7567
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/5ri-Alk57pFH1imp2wzylldwmyo.roa
Signing time: Fri 24 May 2024 19:12:42 +0000
ROA not before: Fri 24 May 2024 19:12:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 24 May 2024 20:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ac:05:0a:d7:45:c0:14:91:20:19:41:6c:d2:cc:75:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 24 19:12:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6b8be025939ee9147d629a9db0cf29657709b2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8c:e2:4d:21:78:ce:83:82:c5:c6:21:e8:40:
a8:03:e4:ae:eb:25:e3:4b:f5:05:32:24:8f:c3:8a:
ff:79:20:17:f8:5f:5b:7d:87:6d:94:84:17:01:1b:
08:d9:0c:e8:ba:4c:fd:ee:55:27:ac:76:7a:69:67:
6a:d0:5c:a5:aa:5a:ec:8a:13:90:6f:75:a4:c7:3d:
2e:9f:53:96:9a:c6:8f:24:a2:8e:e8:0e:43:e0:00:
a3:0f:80:c2:e7:fd:a3:ab:ce:c5:22:57:e3:3d:f5:
d4:a8:5d:0e:94:ce:78:ca:61:64:d7:56:be:5b:09:
eb:cc:ae:55:7b:ca:9a:56:07:0b:e1:b6:13:0d:e1:
a2:45:a8:7e:bd:49:f8:82:81:1b:ff:b9:84:18:a6:
33:77:6a:7f:64:d0:e9:5f:cf:82:db:e2:77:9c:92:
99:e4:dd:20:78:6b:63:0b:33:80:47:c4:89:ed:94:
ea:5f:48:f3:88:46:69:2e:43:fb:f7:00:b9:de:5a:
09:82:cb:12:5d:a4:39:1e:ca:66:fd:1f:b9:df:3e:
36:a9:ad:ad:5e:2c:e8:62:7d:c5:eb:13:16:13:00:
a6:e7:3d:e2:cf:5c:06:0c:f3:18:03:2d:c2:eb:73:
66:53:d2:88:ea:b9:b5:20:a1:e5:fe:1f:49:2d:97:
ad:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:B8:BE:02:59:39:EE:91:47:D6:29:A9:DB:0C:F2:96:57:70:9B:2A
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/5ri-Alk57pFH1imp2wzylldwmyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
77:d7:8a:4d:13:0b:a1:82:5e:7c:49:74:95:03:14:c9:52:18:
b5:9d:9b:5d:f2:87:c6:ec:20:76:76:57:c9:8e:1f:4b:ce:14:
11:df:35:5a:51:ea:cc:20:f6:ef:0e:68:0d:2d:0a:32:de:43:
86:9b:f2:38:6e:0e:91:fd:64:0d:1d:ba:6f:cb:da:35:94:25:
9e:14:78:8b:b8:09:95:3d:ce:e8:2b:58:88:92:a7:df:75:63:
07:55:d1:23:27:a1:bf:e1:84:c6:2f:cd:b0:02:b4:83:aa:cd:
af:b1:2d:db:31:10:b1:e2:57:37:4f:9a:62:1a:70:e1:b0:74:
72:11:ae:e8:74:16:a2:bd:c4:e0:e7:ff:04:07:a6:9b:f4:8e:
d9:03:f0:e0:f3:c9:62:24:12:83:46:5b:1c:b5:8b:db:f5:6c:
43:ff:76:4f:94:e7:53:eb:a3:27:ba:20:35:4b:f9:24:4b:74:
28:02:95:dc:f4:9d:b5:4d:0a:f4:ee:af:fc:c5:7c:32:8f:b7:
60:3d:d2:eb:7c:41:1d:a7:03:ac:1c:eb:e0:13:b2:23:b3:ea:
88:26:4f:d5:0a:a0:43:d0:70:18:85:12:71:ff:ef:a5:95:30:
97:2c:cc:c9:12:49:e9:34:f2:56:79:34:35:d5:5c:a4:7b:33:
43:ba:30:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:51 2024 by rpki-client on console-fra.rpki-client.org