Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/E5qUi8QhVsJOBuHye51ce5Wliqg.roa
File: E5qUi8QhVsJOBuHye51ce5Wliqg.roa (raw, json)
Hash identifier: 2OHqgQPZ9ufBETEIJ6ZRqY1wNwZTOfkSjP4R4yteYiA=
Subject key identifier: 13:9A:94:8B:C4:21:56:C2:4E:06:E1:F2:7B:9D:5C:7B:95:A5:8A:A8
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190BACED1ADB324F5E30D2D157B986D2F01
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/E5qUi8QhVsJOBuHye51ce5Wliqg.roa
Signing time: Tue 16 Jul 2024 09:10:34 +0000
ROA not before: Tue 16 Jul 2024 09:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 30 Dec 2024 16:35:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ba:ce:d1:ad:b3:24:f5:e3:0d:2d:15:7b:98:6d:2f:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 16 09:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=139a948bc42156c24e06e1f27b9d5c7b95a58aa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:98:19:e5:94:60:a4:35:7d:cb:3b:83:78:9c:
5f:dd:a1:54:62:31:b1:7b:69:3d:74:0d:40:d5:b7:
8a:9c:70:4c:26:f1:47:b7:e8:74:d8:32:79:3a:91:
16:c3:60:8f:0c:2d:a2:c8:f8:12:7d:2f:7a:75:55:
13:5a:74:68:b2:7d:aa:44:85:37:10:e7:e3:f1:fa:
dd:bc:73:aa:f8:7b:8c:82:00:cd:dc:4a:8e:be:3f:
93:04:ff:9d:d8:47:3f:90:58:a6:01:cb:b2:f8:d0:
5a:b7:5b:1c:27:1f:b6:89:84:cc:7f:39:0e:57:6c:
22:2e:d1:59:b7:80:72:06:8c:3b:37:99:ce:72:b9:
d3:9e:07:8f:32:fa:47:2c:7a:64:a0:35:14:4f:fe:
2a:7f:3c:83:3a:5b:4e:c4:e7:bf:72:03:01:48:2b:
3a:95:7a:6b:19:7d:f1:7a:f8:19:87:33:ad:9a:c6:
a1:89:b2:1f:ad:2e:8b:36:ce:45:df:af:94:0a:79:
8d:d6:c9:53:c8:d2:16:1d:ac:15:48:0d:dd:3e:14:
e8:67:1f:f3:ff:01:94:fb:53:f6:bd:78:02:b1:ac:
50:94:ee:01:84:89:81:ea:f2:b4:2d:e5:31:ce:42:
63:51:64:e6:4f:e2:b9:37:71:7a:82:72:9c:c4:4f:
9f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:9A:94:8B:C4:21:56:C2:4E:06:E1:F2:7B:9D:5C:7B:95:A5:8A:A8
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/E5qUi8QhVsJOBuHye51ce5Wliqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
27:e2:6b:30:87:f3:18:b2:7b:07:50:53:b4:fb:59:60:22:d8:
f2:a2:ca:d0:46:7b:d2:2a:31:25:f1:f3:24:1e:5c:9f:4e:28:
17:1d:92:4e:84:79:5f:62:61:1f:25:b5:3e:b4:b5:8f:83:01:
47:91:5f:96:9d:2a:4e:39:96:4a:89:0d:88:a5:80:6a:58:b3:
48:86:4e:e8:ff:0d:22:5d:c0:24:0d:68:ee:75:4c:c7:c9:17:
2c:30:f1:e2:46:c0:69:c5:55:f9:31:d3:7c:63:c1:86:83:2c:
85:af:12:6f:54:da:d2:9d:91:7c:70:81:8f:0c:f2:46:09:0b:
ea:5a:7f:e2:74:7a:20:d1:1a:43:18:68:92:f4:9d:6c:8b:17:
1d:66:ee:05:ad:c9:43:d8:5e:e9:3e:a0:a2:85:22:19:39:fe:
ca:bd:06:2c:4f:6e:6c:38:4a:f8:34:e8:b0:62:16:ef:ba:3b:
d9:9b:fb:72:6e:b8:a6:4b:ce:4e:c3:d4:54:03:c7:77:33:4b:
62:6b:3e:5d:a4:84:49:b0:de:16:1e:a9:b4:75:7e:01:34:e8:
2e:a0:ee:cf:78:8b:54:36:d4:c8:00:19:5d:99:86:06:4b:10:
3a:b7:83:ec:88:6e:5b:96:c0:29:37:d1:2e:af:72:3f:81:4e:
e5:8d:d8:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:23:51 2025 by rpki-client