Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/LJMQjTm562ywJIwLpXJaLaA4m8k.roa
File: LJMQjTm562ywJIwLpXJaLaA4m8k.roa (raw, json)
Hash identifier: navqiJp/ORYnJfP3zJnQQqWWgX4vIRMahPxJzxsxXrk=
Subject key identifier: 2C:93:10:8D:39:B9:EB:6C:B0:24:8C:0B:A5:72:5A:2D:A0:38:9B:C9
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190AE93B6F038EF2B550B3B6974E5B2C180
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/LJMQjTm562ywJIwLpXJaLaA4m8k.roa
Signing time: Sun 14 Jul 2024 00:10:34 +0000
ROA not before: Sun 14 Jul 2024 00:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 14 Jul 2024 01:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ae:93:b6:f0:38:ef:2b:55:0b:3b:69:74:e5:b2:c1:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 14 00:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2c93108d39b9eb6cb0248c0ba5725a2da0389bc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b0:ca:e9:dc:d2:0d:65:9d:50:a2:28:61:d8:
c1:8d:d9:8d:7a:5b:c2:02:18:86:3e:93:4d:1b:68:
b4:fc:d5:80:cc:51:63:21:4d:62:02:6f:66:77:2f:
2a:f3:72:19:5c:cc:1e:e5:f3:81:e2:85:1e:81:96:
c2:90:2c:5c:30:ca:6c:2f:59:d7:a8:b8:8a:bc:aa:
bf:1d:a6:97:c5:77:2e:13:2d:6c:90:63:db:1d:fd:
0f:ed:7f:da:ae:c8:bc:37:3d:f4:9e:33:c0:9c:49:
40:d3:b5:59:55:f2:5c:5c:af:ef:6e:5b:e3:d7:8e:
56:43:09:88:a8:eb:5c:03:be:0d:03:ad:07:d7:21:
dc:e9:c7:24:28:c3:5f:5c:d7:3a:a5:b7:11:5f:30:
ac:d6:c1:ea:2b:3c:44:d1:01:76:b2:8d:6e:1e:ee:
7b:10:39:f1:40:b6:7f:d8:78:57:d2:ee:f6:b3:02:
b4:d1:52:a9:0c:9e:30:ae:f0:a1:c9:53:4b:d9:41:
7c:d5:b3:de:01:6d:a6:b6:dd:fc:1d:dd:19:2f:ca:
7e:aa:d7:85:c6:eb:a0:d9:f3:b1:fc:c8:e6:84:a9:
10:68:7d:c8:34:99:b6:25:66:dc:35:55:ad:d6:ed:
dd:1c:b6:78:61:41:12:41:15:59:d0:a6:5a:88:53:
de:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:93:10:8D:39:B9:EB:6C:B0:24:8C:0B:A5:72:5A:2D:A0:38:9B:C9
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/LJMQjTm562ywJIwLpXJaLaA4m8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
98:2f:e6:73:bb:2e:b1:fc:d8:37:7d:4b:c2:c4:5e:2b:d6:15:
9d:6b:54:fb:5b:e9:0c:05:40:c5:c9:02:c6:80:51:67:7a:0e:
c5:31:da:9a:d8:2a:60:16:3d:e8:d6:4c:36:7a:b2:0b:da:45:
32:aa:ca:3d:0d:02:89:f5:41:bc:26:b0:42:0d:d1:2e:99:72:
99:97:10:a0:ea:75:47:28:8a:f2:f4:d2:ec:06:66:c1:49:72:
f5:fc:f5:49:9f:1c:bb:ab:fe:11:39:06:8d:8f:18:d1:b2:6f:
01:66:57:44:f9:1e:8d:78:3b:f4:16:d9:13:d4:ef:6d:ea:15:
21:d9:92:57:e4:a3:8a:bf:38:b8:91:86:74:4b:e0:aa:53:4e:
f4:3d:dd:50:24:7a:85:2d:33:bb:9b:83:83:33:3d:47:91:20:
29:82:7d:d3:da:12:05:28:92:de:8f:fb:2c:54:df:3f:ad:f3:
37:ce:60:03:21:e0:49:5a:4d:c6:7c:06:a4:70:5c:db:77:5f:
20:b2:30:3f:b0:b6:99:78:a2:19:b4:c4:e3:e0:90:4f:82:42:
07:b9:b1:49:24:b4:52:cc:f9:98:b7:dd:1d:99:ca:4b:50:a9:
5e:c8:4a:05:3d:1c:ca:74:4f:33:04:b3:7f:f6:18:49:ba:b4:
ae:d6:21:11
-----BEGIN CERTIFICATE-----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Generated at Sun Jul 14 03:38:36 2024 by rpki-client on console-fra.rpki-client.org