Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/N_bkBSNkuALrcGAjQO11NqQRYkQ.roa
File: N_bkBSNkuALrcGAjQO11NqQRYkQ.roa (raw, json)
Hash identifier: SqC9lmB6XHMEGl/L8EEfxTgefQAk0qLw+kLjA7ET7jI=
Subject key identifier: 37:F6:E4:05:23:64:B8:02:EB:70:60:23:40:ED:75:36:A4:11:62:44
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190B201B3DE0E6292EB24351359C63A8BC4
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/N_bkBSNkuALrcGAjQO11NqQRYkQ.roa
Signing time: Sun 14 Jul 2024 16:09:34 +0000
ROA not before: Sun 14 Jul 2024 16:09:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 14 Jul 2024 17:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b2:01:b3:de:0e:62:92:eb:24:35:13:59:c6:3a:8b:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 14 16:09:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37f6e4052364b802eb70602340ed7536a4116244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ff:f0:4d:f4:c0:bb:b9:84:ad:8a:1e:3e:26:
3f:7a:56:5d:5e:46:3c:1c:2a:e9:b9:c9:aa:af:87:
6a:60:ba:4a:79:73:bf:ee:3e:04:d2:05:1a:74:d4:
0f:79:4c:78:a0:f2:2d:16:7d:0b:0e:37:b9:dc:46:
49:0c:90:f3:2c:6b:fd:dc:d4:fa:37:e0:a3:73:66:
22:f8:c7:77:dc:2c:ed:7d:75:74:86:78:50:fe:ab:
20:eb:93:5d:1b:26:ff:6d:80:f5:59:7c:4f:fc:ac:
64:0a:04:f2:2f:4b:ce:d6:a2:41:e6:c8:94:5b:e0:
cc:a9:8e:8f:2e:85:56:2c:cf:21:c1:eb:18:c8:e3:
52:1d:74:2d:79:a6:0a:41:b6:10:67:4d:33:bf:72:
ba:07:01:e2:fa:c3:9b:d2:92:7e:72:e8:58:13:df:
b9:aa:91:de:3e:a0:af:a5:a0:f3:bc:d0:f0:20:8c:
35:07:9a:c9:a2:97:ed:06:79:70:aa:9e:37:fd:aa:
11:39:d2:f0:2d:c7:d3:0a:35:9a:34:9b:29:bc:e0:
64:62:b5:6a:36:42:21:67:be:60:06:f9:1f:24:7d:
65:00:ee:d6:99:ea:0f:45:3c:e4:69:3a:d1:63:0a:
40:34:61:bc:79:99:ef:dc:20:4b:0d:8e:4a:b4:ec:
60:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:F6:E4:05:23:64:B8:02:EB:70:60:23:40:ED:75:36:A4:11:62:44
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/N_bkBSNkuALrcGAjQO11NqQRYkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
39:3a:d4:48:53:61:ae:ff:a3:4c:7b:19:ea:b9:b6:e2:d3:b4:
86:01:32:45:bc:25:de:59:cc:ec:82:60:73:60:a1:59:75:7c:
ad:2b:05:99:b7:cf:b0:7b:0b:f7:00:d7:4d:d4:88:22:33:83:
9e:69:01:4e:fd:43:89:14:66:3e:6b:2d:dd:de:1c:22:1c:a9:
bd:e9:92:5c:c7:a5:15:ab:bc:20:6e:96:75:3e:d1:52:ba:1e:
11:f8:45:eb:6c:59:06:77:d6:ec:0f:98:e8:77:06:04:62:71:
17:f3:49:f7:67:09:c8:e4:50:3b:74:05:1a:82:95:54:78:4c:
a5:95:d5:7d:d7:85:4b:f5:46:a5:88:be:df:5e:91:ff:b7:ad:
dc:0e:a2:79:28:52:cd:62:7e:83:b6:42:11:6f:be:ce:94:01:
96:15:a0:b6:1f:d6:e7:91:ab:ef:f1:19:b1:f7:5a:7c:b4:4c:
38:af:f8:64:d4:3f:7c:53:26:78:3e:e7:83:1b:cc:a9:28:37:
f8:18:3e:fe:dc:fa:df:5d:49:96:a4:3b:95:63:ca:62:bb:ba:
d9:ad:2b:9b:f1:cb:88:2f:bd:00:55:3b:74:a0:93:18:54:96:
a4:dc:ce:33:96:f3:47:6d:9d:2a:d5:d4:eb:68:e8:a1:c3:18:
a0:45:36:66
-----BEGIN CERTIFICATE-----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Generated at Sun Jul 14 17:55:53 2024 by rpki-client on console-fra.rpki-client.org