Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/O9dUfIlDLhTgp-q9Xu5fieHUXp4.roa
File: O9dUfIlDLhTgp-q9Xu5fieHUXp4.roa (raw, json)
Hash identifier: oNQQ3VE/Y/EszUMtv/XWR+vX/+6M1xgYrJCsbxq69Uk=
Subject key identifier: 3B:D7:54:7C:89:43:2E:14:E0:A7:EA:BD:5E:EE:5F:89:E1:D4:5E:9E
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01904D27D597B9ED065907AB1155F66DBF1F
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/O9dUfIlDLhTgp-q9Xu5fieHUXp4.roa
Signing time: Tue 25 Jun 2024 02:09:34 +0000
ROA not before: Tue 25 Jun 2024 02:09:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 25 Jun 2024 03:05:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4d:27:d5:97:b9:ed:06:59:07:ab:11:55:f6:6d:bf:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 25 02:09:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3bd7547c89432e14e0a7eabd5eee5f89e1d45e9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a9:ff:5a:a5:63:00:f1:4d:bd:45:d7:a8:64:
92:ea:fa:d0:69:11:f5:aa:bf:d2:1a:b4:7a:29:94:
e6:72:05:7a:74:97:26:8c:2f:21:f5:ae:d2:b1:07:
fe:64:dc:01:37:71:e4:d6:31:2f:dc:ca:62:7d:61:
57:27:68:2b:7f:23:fa:e7:54:e8:b9:25:b7:69:e3:
6f:8a:aa:90:11:61:b0:7c:40:60:13:b7:6c:96:11:
54:1f:af:f8:df:97:71:58:52:0f:00:6f:84:c5:83:
0e:86:b5:98:52:cd:d4:ed:d6:bf:0c:4f:3f:50:3a:
d0:ee:43:49:dc:47:b7:a3:ab:e5:98:92:ad:b3:64:
ae:9c:c1:1d:e2:af:d6:37:4d:fd:68:2c:3f:b3:e2:
00:aa:00:cb:b5:e4:04:5a:67:23:40:f1:a8:58:cb:
a0:6a:4f:be:3b:07:4f:7f:38:8b:66:d6:29:6b:df:
a3:4a:57:79:df:d4:e6:ef:ca:0f:cd:fc:e3:02:b4:
d7:93:aa:57:2f:aa:4f:10:5a:2d:0b:da:e3:a3:a0:
03:39:60:5b:c4:fa:ab:08:8a:9c:63:ec:3f:5f:17:
46:16:00:9c:7d:ee:3c:4f:50:ad:e6:03:87:5a:c6:
53:a0:fa:8d:a5:d4:7c:37:34:a9:54:e1:47:07:57:
58:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:D7:54:7C:89:43:2E:14:E0:A7:EA:BD:5E:EE:5F:89:E1:D4:5E:9E
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/O9dUfIlDLhTgp-q9Xu5fieHUXp4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
87:44:7a:3d:99:fb:4c:52:86:25:35:a7:04:c2:a7:8c:cf:72:
2b:a4:03:44:ef:11:a5:27:7c:93:f2:a7:71:47:a8:35:33:9e:
de:1a:f7:c5:de:70:11:27:78:f2:fb:17:2d:72:d9:5b:6a:74:
a4:72:f1:4c:d1:1c:fc:00:04:56:c1:3e:ee:99:5f:73:9a:66:
05:22:04:34:b9:45:76:37:18:be:f9:1d:92:e7:03:41:92:95:
12:2b:cc:9a:f6:26:ba:93:68:13:65:6a:17:be:45:a8:74:bb:
93:af:c3:20:4d:37:81:2b:d5:8d:68:c5:85:46:e7:17:3c:f5:
65:64:39:8e:c2:0f:cd:94:ba:86:ce:f8:86:14:04:36:af:a7:
a1:92:09:4f:22:a2:2d:c6:8b:0e:b2:ab:06:7c:a3:84:34:10:
02:36:51:3c:00:4a:c4:bc:37:6f:8b:c4:99:9f:18:c8:fd:95:
c6:c6:80:44:07:13:d4:36:51:46:3a:8f:91:2d:01:f1:30:29:
d4:08:ca:df:fc:58:a6:df:0e:91:85:c8:70:17:ca:9e:e2:98:
94:c6:46:ca:ed:b6:53:f2:02:f9:9d:de:c0:9a:72:20:90:8c:
3e:1e:55:0e:a6:95:76:97:8c:b2:16:a0:82:d8:76:ca:65:14:
00:4e:2d:df
-----BEGIN CERTIFICATE-----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Generated at Tue Jun 25 06:21:35 2024 by rpki-client on console-fra.rpki-client.org