Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Gk_kid8nhhlSEXkBwfxNHYNIG68.roa
File: Gk_kid8nhhlSEXkBwfxNHYNIG68.roa (raw, json)
Hash identifier: ETwU57AHOfcPq/Zc2Y75A8Mk+bRBstihYJf+u3KlnN8=
Subject key identifier: 1A:4F:E4:89:DF:27:86:19:52:11:79:01:C1:FC:4D:1D:83:48:1B:AF
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190B27165E2D414984EA7C4C2B01FB41AD4
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Gk_kid8nhhlSEXkBwfxNHYNIG68.roa
Signing time: Sun 14 Jul 2024 18:11:34 +0000
ROA not before: Sun 14 Jul 2024 18:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 14 Jul 2024 19:05:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b2:71:65:e2:d4:14:98:4e:a7:c4:c2:b0:1f:b4:1a:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 14 18:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1a4fe489df27861952117901c1fc4d1d83481baf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:55:b4:d9:c0:d6:52:a6:af:fc:a2:e3:9f:47:
31:a8:c3:a9:3d:b3:6a:3e:8d:60:7f:fc:63:6f:37:
f7:72:33:4e:2d:21:ae:ef:d3:44:b0:74:0f:d1:70:
8c:d1:38:f3:d1:6d:48:b5:cb:c3:ec:92:57:cd:57:
e6:10:a5:6c:fe:16:e6:00:2a:6e:3f:ba:19:46:b4:
71:7e:d8:96:46:fa:f0:55:ea:db:d3:1c:ce:40:55:
36:7c:66:b4:a3:64:9e:d1:4f:f3:fe:e9:30:f8:44:
01:38:f9:3e:c7:05:a2:f7:4a:f5:bf:4a:5a:18:55:
68:36:b6:d7:5a:bb:f7:5e:8f:ed:75:3c:4c:0c:2b:
ba:35:04:16:21:c8:17:a9:54:56:31:a1:87:78:96:
cf:6a:8d:55:e4:3f:ea:7e:e3:68:79:fe:01:14:2b:
da:e9:f9:84:3a:04:4d:dc:d1:7d:54:c7:5d:da:13:
8b:28:84:da:63:4e:b6:8e:b5:b1:5a:37:79:1a:68:
35:61:54:4a:d1:c8:ee:78:c9:e1:24:e9:12:e7:0a:
06:20:a6:0d:50:57:9c:59:1b:ee:c4:ce:49:44:85:
80:15:8e:82:2e:43:c7:ea:17:51:01:7f:48:a2:92:
7e:e5:31:a5:db:16:3d:23:f1:fa:7f:1b:54:44:9a:
aa:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:4F:E4:89:DF:27:86:19:52:11:79:01:C1:FC:4D:1D:83:48:1B:AF
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Gk_kid8nhhlSEXkBwfxNHYNIG68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7c:43:c8:0f:15:6e:7e:bb:49:05:a1:b9:a6:9c:f7:12:10:3b:
eb:fd:7e:7b:b2:42:60:db:f4:65:65:9f:2f:46:31:17:18:a4:
c6:2a:a8:39:5c:e2:8b:74:56:97:ff:90:aa:ee:93:29:bb:74:
83:b9:bf:98:e1:45:6d:44:7d:99:94:9e:0b:bd:aa:56:db:74:
b2:c0:90:cb:b5:4d:11:3e:8d:d5:db:5f:5a:29:60:a8:16:36:
b4:70:6a:5e:ba:70:40:67:54:c6:d7:ba:40:28:03:69:ba:00:
e2:ae:b9:12:72:b2:5e:b1:ed:e3:a5:d8:e4:06:cf:ae:25:59:
46:45:03:c8:12:27:69:44:72:a7:f9:88:16:7a:5a:54:6f:f2:
de:48:5c:ca:6a:65:e4:9a:8e:5d:0d:da:8a:64:00:73:0c:6c:
e0:87:ee:aa:7f:c8:0f:54:8c:3e:fa:70:de:bf:b5:f6:37:5f:
b7:97:1f:1d:1c:9f:86:08:47:0b:02:4d:2d:54:14:54:f6:db:
c7:96:8f:f1:c1:f3:58:a5:9d:ec:eb:aa:c5:5c:a9:dc:27:40:
25:2e:ce:d8:2d:f2:94:e0:35:57:cd:a1:05:ab:42:43:06:0b:
19:9e:19:00:8a:b5:c2:ca:d1:ec:47:cb:cd:74:58:b7:8f:e2:
07:54:7c:8b
-----BEGIN CERTIFICATE-----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Generated at Sun Jul 14 19:59:03 2024 by rpki-client on console-fra.rpki-client.org