Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/6iIPdWbuUtYiKUAHFU1YbhFDAdQ.roa
File: 6iIPdWbuUtYiKUAHFU1YbhFDAdQ.roa (raw, json)
Hash identifier: 4A9h02qmZBCQ0wBtqz7LuWNQLh5AAIEUWX2zYdFY+yA=
Subject key identifier: EA:22:0F:75:66:EE:52:D6:22:29:40:07:15:4D:58:6E:11:43:01:D4
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190950BC2B865ABE279C0FD084EE60F1D4E
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/6iIPdWbuUtYiKUAHFU1YbhFDAdQ.roa
Signing time: Tue 09 Jul 2024 01:11:34 +0000
ROA not before: Tue 09 Jul 2024 01:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 09 Jul 2024 02:05:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:95:0b:c2:b8:65:ab:e2:79:c0:fd:08:4e:e6:0f:1d:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 9 01:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea220f7566ee52d622294007154d586e114301d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:29:d7:f3:dd:73:68:8c:c3:f6:5a:bb:71:ed:
41:6c:fb:d5:08:b4:7d:38:93:74:9f:78:72:e8:9b:
9c:81:e7:18:ba:09:39:8b:64:50:5e:99:c9:c2:5b:
1f:cc:24:28:fd:b0:cd:97:ba:a9:28:49:74:38:d1:
17:d9:31:8f:5b:ad:c5:cf:b1:c5:9a:79:89:8e:18:
35:5b:19:d2:ec:47:ab:75:75:3f:d2:12:95:29:40:
f5:7f:ec:d5:18:fd:f2:71:7d:b8:83:41:b6:bc:13:
12:e6:10:4b:5d:b9:ec:f3:f9:9d:c0:ce:69:ed:cd:
d4:e1:ec:39:a8:27:15:5a:23:72:3c:3c:52:5c:3b:
5b:ea:96:d3:e0:df:dc:67:72:06:23:0a:58:19:3a:
ff:d2:71:17:cf:d2:e3:23:fa:fb:cb:5c:13:54:31:
33:36:b7:e9:9f:7a:1a:31:ac:06:8b:04:ae:40:89:
1b:70:5f:b8:3d:27:50:35:72:38:20:c9:d1:15:0c:
08:a2:ca:ad:9b:6f:35:86:32:62:9b:f2:f2:ce:14:
62:c5:3b:29:59:d4:65:96:d7:b8:3f:9d:fd:16:64:
99:f0:81:1f:f0:61:b3:70:c4:6c:a3:a5:0c:a2:61:
a5:b6:35:88:54:29:ff:32:da:e1:3c:88:1f:2f:39:
9b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:22:0F:75:66:EE:52:D6:22:29:40:07:15:4D:58:6E:11:43:01:D4
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/6iIPdWbuUtYiKUAHFU1YbhFDAdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
61:d7:10:ba:3b:ab:d0:b4:17:d9:fa:28:ca:ee:db:52:ff:90:
7f:b8:2b:bc:b9:02:eb:69:af:e5:3f:3b:c4:d3:83:4e:3c:b3:
5c:92:ce:99:6e:aa:b9:d4:e9:09:6a:f6:70:72:b3:76:5c:d1:
09:33:1b:2a:14:e3:8c:44:25:9c:1e:6c:d4:04:ee:32:28:0b:
2d:10:31:36:1b:67:4b:47:06:ee:48:69:73:02:b9:fc:28:74:
2e:c9:2c:eb:11:22:c4:5f:e0:b0:f0:d7:32:32:57:63:88:88:
12:96:ae:a7:3e:b7:19:c8:ba:fa:63:60:f3:d1:a9:0f:4d:20:
e0:2f:f1:45:05:b9:bc:d7:7a:4f:8c:a8:da:71:f1:e4:47:19:
b5:e1:94:b6:e6:3b:27:2e:96:9f:dd:95:e9:16:5a:66:20:e0:
9c:84:45:00:5a:b0:bb:35:37:92:be:27:a6:49:97:c4:df:9c:
83:0d:8e:14:61:e0:1d:a2:32:5f:57:e0:f1:c4:d0:83:a4:e9:
0f:c7:6b:02:0e:95:ad:78:71:a6:26:4a:a5:fa:e8:61:38:c0:
ab:45:e9:85:98:c4:92:3b:01:cd:df:db:03:39:8e:ce:a8:e8:
fb:7e:eb:aa:f5:50:f5:3c:29:69:3b:92:82:e1:65:69:b4:f1:
5f:b5:ab:55
-----BEGIN CERTIFICATE-----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Generated at Tue Jul 9 04:29:10 2024 by rpki-client on console-ams.rpki-client.org