Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/FEqxZtgyVxu0bVmMXjPMCLFRIdc.roa
File: FEqxZtgyVxu0bVmMXjPMCLFRIdc.roa (raw, json)
Hash identifier: J4uvP350oT4tTxTlv5Hh12z8rjQXNhbaH/LeDOxnHq0=
Subject key identifier: 14:4A:B1:66:D8:32:57:1B:B4:6D:59:8C:5E:33:CC:08:B1:51:21:D7
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FB15F95EFBACB900A7E934DE1B0E9F093
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/FEqxZtgyVxu0bVmMXjPMCLFRIdc.roa
Signing time: Sat 25 May 2024 20:09:42 +0000
ROA not before: Sat 25 May 2024 20:09:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 25 May 2024 21:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b1:5f:95:ef:ba:cb:90:0a:7e:93:4d:e1:b0:e9:f0:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 25 20:09:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=144ab166d832571bb46d598c5e33cc08b15121d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ee:9e:ec:f1:b9:dd:08:cd:a7:53:1b:4b:d0:
71:6c:eb:13:e2:5c:24:e6:99:d8:fd:3f:ec:df:a9:
12:e1:55:a4:a2:54:a9:f8:7b:c9:a1:37:cc:4f:07:
14:12:bc:0a:76:5f:88:f0:e1:ec:4f:cc:15:4e:56:
2c:47:41:7a:71:6b:7a:9c:ad:0c:f7:4c:89:88:b1:
55:da:c7:ef:ce:86:71:30:a3:8d:58:f0:1e:79:7b:
8d:30:4e:7e:98:d9:09:e1:f2:e9:63:e4:a0:4a:4a:
32:0a:f1:67:dc:63:3b:da:13:49:46:e0:b0:59:b4:
1f:9d:22:5b:d0:7f:a1:04:fc:5e:13:30:5e:31:95:
e7:2b:62:0a:5a:a0:30:dc:bb:66:68:f5:29:0e:54:
35:6c:1b:89:47:70:5c:be:f3:07:2a:17:cc:8d:e3:
28:7b:6c:ae:a6:02:51:e3:d8:f6:0a:b2:53:f8:37:
1a:08:60:6a:d5:39:83:ff:7f:af:2d:22:aa:89:64:
65:da:af:da:1b:0c:12:64:3e:66:c4:73:58:c4:d8:
8f:fd:48:58:42:cb:8f:14:57:50:29:06:0a:1b:26:
69:a3:32:a2:de:cf:42:16:0f:b0:6d:c3:fa:5c:6b:
41:59:93:fe:d7:14:3e:f4:fe:07:c2:b4:2f:c3:cb:
a3:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:4A:B1:66:D8:32:57:1B:B4:6D:59:8C:5E:33:CC:08:B1:51:21:D7
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/FEqxZtgyVxu0bVmMXjPMCLFRIdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3e:b6:76:6d:03:ca:28:fa:96:da:b3:13:a5:ff:13:10:2c:07:
a2:9a:1c:94:6b:db:6d:10:66:57:58:3a:87:66:ef:96:8d:7d:
26:3f:8e:24:f9:ef:4c:fb:70:74:34:96:d2:5d:c2:20:c3:fb:
65:76:27:33:a6:a7:4d:1d:a3:97:16:d7:e4:3d:33:b5:4d:6b:
db:e4:9d:89:17:26:a3:fe:ef:37:f8:27:bc:f3:6b:5e:4b:d9:
aa:b6:c4:c2:e9:76:ed:5d:4c:1c:f7:6a:c5:52:bc:b5:ff:16:
04:9f:7e:2a:0c:c4:e1:f9:d6:73:35:93:47:3f:50:c1:39:fb:
2e:6e:aa:15:e9:e1:5d:1e:36:36:28:8e:df:28:e2:2b:99:ce:
3c:ff:78:57:31:73:d8:b7:13:36:e2:3f:d4:e6:80:8e:6f:23:
ec:00:ac:09:1d:ae:4b:7c:34:eb:7f:f1:9c:23:5a:3c:7d:3d:
07:2a:c6:0d:88:48:b9:4b:39:f2:8e:88:39:33:3f:d4:a9:ae:
32:96:a2:ca:1c:88:bd:08:31:70:a9:66:cb:3f:f7:c1:f5:cc:
8d:c5:12:0a:fc:ca:18:e3:d7:41:94:23:33:cb:fb:7a:21:d2:
48:af:a3:19:e2:b5:86:f9:ca:ce:af:6a:20:2e:0d:3e:4c:4a:
e6:cc:33:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:51 2024 by rpki-client on console-fra.rpki-client.org