Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/IWfA-aTF4v2FqXGJ9STN5NN2F-g.roa
File: IWfA-aTF4v2FqXGJ9STN5NN2F-g.roa (raw, json)
Hash identifier: jrCSWECUgJIMPlZlNb9hmCDLGy6yZcGIHRyXdwixtxM=
Subject key identifier: 21:67:C0:F9:A4:C5:E2:FD:85:A9:71:89:F5:24:CD:E4:D3:76:17:E8
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01909A9FFC12FB2B9B8B19BBC062A8DA79AC
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/IWfA-aTF4v2FqXGJ9STN5NN2F-g.roa
Signing time: Wed 10 Jul 2024 03:11:34 +0000
ROA not before: Wed 10 Jul 2024 03:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 10 Jul 2024 04:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:9a:9f:fc:12:fb:2b:9b:8b:19:bb:c0:62:a8:da:79:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 10 03:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2167c0f9a4c5e2fd85a97189f524cde4d37617e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:37:59:e6:d2:95:68:fe:72:af:c2:81:63:53:
b2:28:1c:b5:8c:28:b2:81:5c:78:c3:56:87:7f:d4:
9d:ae:9f:62:ae:57:3f:4e:34:db:e0:30:3d:e7:8f:
5f:a2:97:3c:a0:3f:69:a5:87:ad:47:c7:e9:c5:76:
7f:5d:21:6f:c0:c8:f9:fb:f2:e4:6e:67:4a:8f:eb:
e0:12:fe:73:52:e1:71:c1:90:ce:bb:fb:73:68:7b:
b6:b7:f0:1d:a9:9e:5b:3a:b7:32:b5:f1:28:82:5f:
a8:6d:e7:83:99:fc:da:87:51:23:84:69:54:c0:40:
3b:c6:ef:fb:2e:17:ef:76:bb:8e:af:98:88:67:66:
4f:62:d0:0e:52:74:4d:11:98:72:82:e0:31:fb:60:
b6:7f:d9:5d:82:42:8d:49:ce:ba:0d:d3:92:e3:49:
fd:b1:ca:cc:f3:39:ee:43:f6:0e:af:4a:c2:32:cc:
ab:ff:6b:25:ce:2d:83:4f:10:5d:44:86:89:5a:4e:
b8:a3:da:e7:f7:b9:81:b6:2d:5c:67:f5:76:71:34:
66:73:e5:e0:04:08:47:e1:3b:9c:eb:c4:fc:b3:52:
45:d1:45:d2:47:5c:9d:f5:7d:79:f2:ff:ed:92:c9:
00:da:81:54:20:b3:f0:07:2a:fb:c3:0a:36:6b:81:
21:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:67:C0:F9:A4:C5:E2:FD:85:A9:71:89:F5:24:CD:E4:D3:76:17:E8
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/IWfA-aTF4v2FqXGJ9STN5NN2F-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
56:27:34:dc:9b:19:c4:3c:79:af:c3:0e:55:94:d4:f8:04:54:
ab:94:f0:9e:05:87:56:e7:21:4b:e5:01:41:55:5a:22:54:84:
98:0e:f5:10:38:91:ab:b4:df:33:c6:03:54:c1:5a:44:55:aa:
a4:7c:90:1e:66:c3:9a:22:73:41:9f:b0:38:95:f5:5f:fa:71:
42:8f:09:0b:35:04:60:ea:b4:c6:6f:81:9b:a3:8d:8e:60:cb:
60:b1:e6:9c:4f:7d:05:3e:ff:1b:c9:4f:a2:14:2b:30:57:da:
bd:54:60:2a:56:20:79:fb:70:b6:3f:5e:0f:54:4a:56:fe:1d:
63:0f:cb:1f:27:4f:00:1e:92:05:20:1e:73:fc:90:1d:2e:58:
ab:64:aa:85:d1:12:b5:ca:8e:94:d8:e0:58:7f:90:f1:d5:ab:
21:18:ff:de:90:15:c0:59:39:77:c9:33:bf:eb:9b:6e:b2:68:
fd:ba:fc:5c:9a:fd:57:a0:11:f5:0d:d5:d6:dc:7e:97:3f:91:
89:22:cb:84:e4:87:5c:01:80:72:a1:9a:3d:e2:95:df:5a:4e:
17:8f:d1:a9:0e:ae:d2:d7:3d:a5:77:65:88:f2:d8:0a:0e:1a:
50:1d:c7:65:85:f8:15:7c:5f:3f:af:cf:10:23:05:c3:35:89:
18:56:25:ac
-----BEGIN CERTIFICATE-----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Generated at Wed Jul 10 05:20:47 2024 by rpki-client on console-ams.rpki-client.org