Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/IDCrr9AkkWSBZjQP8YmJNnJ5qZ8.roa
File: IDCrr9AkkWSBZjQP8YmJNnJ5qZ8.roa (raw, json)
Hash identifier: 9tqsnb0cH7MvhYokuBRN8dAGyIViPKVfloq7nCfTH2w=
Subject key identifier: 20:30:AB:AF:D0:24:91:64:81:66:34:0F:F1:89:89:36:72:79:A9:9F
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019084BAE319693EAF8E77F166D4A0EE0190
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/IDCrr9AkkWSBZjQP8YmJNnJ5qZ8.roa
Signing time: Fri 05 Jul 2024 21:09:18 +0000
ROA not before: Fri 05 Jul 2024 21:09:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 05 Jul 2024 22:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:84:ba:e3:19:69:3e:af:8e:77:f1:66:d4:a0:ee:01:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 5 21:09:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2030abafd02491648166340ff18989367279a99f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:4a:34:07:02:96:50:a9:58:53:0e:12:2d:59:
37:13:3a:7c:5a:ae:23:96:02:09:96:30:f3:9d:86:
1e:e5:fc:8d:75:d1:c0:e9:0e:59:51:3e:21:63:50:
0e:63:29:8e:c5:1a:c7:99:6e:df:ab:e0:73:fa:30:
97:7a:2c:67:89:c1:bb:a2:f2:0e:87:f5:c5:76:43:
e4:97:0c:c6:31:13:5b:2b:0c:87:5f:fb:b0:e5:2c:
3f:68:18:d0:f0:84:67:02:52:7c:d7:3d:5a:86:48:
7c:7f:f8:80:df:c0:fc:bb:d5:90:94:32:7b:64:0c:
f6:4c:2a:9a:d4:98:b2:3a:81:5e:35:6e:5f:c7:f0:
27:b0:71:f0:64:3c:b5:0e:42:e4:d8:78:67:5e:79:
f1:88:5b:44:bc:e0:4b:28:1b:04:37:02:89:0e:6c:
e4:7a:ef:68:31:22:b8:2a:7b:de:d1:d7:f9:58:83:
37:c9:e3:ce:75:f7:5f:c7:19:46:3a:cc:98:d0:54:
45:11:8a:c1:4e:29:84:a6:1b:bf:99:05:9d:d2:95:
a2:f7:f8:3e:46:7f:bb:b2:fc:12:fc:72:6d:b6:87:
40:a3:2d:b2:53:d6:0c:4b:d4:1f:17:c9:7e:b1:16:
e8:dd:33:09:e2:b5:31:5c:fc:60:2b:33:56:28:a5:
1d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:30:AB:AF:D0:24:91:64:81:66:34:0F:F1:89:89:36:72:79:A9:9F
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/IDCrr9AkkWSBZjQP8YmJNnJ5qZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
2c:42:b2:63:47:8f:29:9b:35:a0:1c:49:04:71:26:d4:95:bf:
af:30:93:33:fd:ab:93:86:4d:20:48:3d:51:06:18:49:7e:46:
29:45:ca:e7:90:08:a4:e8:cb:d4:9a:9b:b7:9f:9c:bf:b7:3d:
de:bd:e1:7f:31:12:50:de:2f:ef:ee:89:cb:74:5e:13:01:5b:
e5:d1:93:50:c7:4e:7c:be:db:f5:03:e3:6f:82:72:40:36:5e:
be:5c:3d:d3:6b:7e:a4:5f:85:45:c0:8e:82:2d:f1:3c:1e:f5:
51:97:9f:0f:09:30:d1:ba:d1:22:3d:cc:bd:e4:6d:a8:90:4a:
71:43:30:1d:b4:3c:af:6e:c5:f8:ea:f6:bb:99:68:bf:ca:ad:
ef:27:75:84:d7:2a:24:8d:6d:3c:cc:d6:35:06:73:14:5b:61:
a9:8d:11:a4:b5:86:7d:93:ea:62:93:2e:c1:73:f9:b1:1e:52:
99:5a:48:af:a3:22:f4:95:42:27:7e:88:e1:e2:67:87:a9:19:
d6:a0:f8:62:9b:66:17:9d:9c:0d:1d:d0:c4:1e:c7:53:22:3f:
3b:17:9b:92:dc:7b:02:15:68:60:20:90:73:27:69:7a:19:52:
d1:b8:37:36:34:03:e1:82:5a:fe:c0:43:f9:2e:f8:1a:1c:6f:
d9:6c:9e:72
-----BEGIN CERTIFICATE-----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Generated at Fri Jul 5 23:14:46 2024 by rpki-client on console-ams.rpki-client.org