Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/PWoneMdPJeqBh8LbVrKGK7Zpgf4.roa
File: PWoneMdPJeqBh8LbVrKGK7Zpgf4.roa (raw, json)
Hash identifier: lwzHAlo2JO78ZNi1T+/8Bex1yEqbl3bUtHq9kCy2xZo=
Subject key identifier: 3D:6A:27:78:C7:4F:25:EA:81:87:C2:DB:56:B2:86:2B:B6:69:81:FE
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190788286E87F7EF04E8BBA3A835307611A
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/PWoneMdPJeqBh8LbVrKGK7Zpgf4.roa
Signing time: Wed 03 Jul 2024 12:12:18 +0000
ROA not before: Wed 03 Jul 2024 12:12:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 03 Jul 2024 13:06:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:78:82:86:e8:7f:7e:f0:4e:8b:ba:3a:83:53:07:61:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 3 12:12:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3d6a2778c74f25ea8187c2db56b2862bb66981fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ba:73:ad:07:09:a8:c4:c5:33:e2:6d:22:6d:
cc:30:a1:77:be:b6:be:c8:ce:bb:8f:c9:64:c7:e8:
de:49:43:80:de:bd:f1:af:97:06:64:18:59:40:3b:
f0:8c:d7:6c:26:1e:a8:6d:db:59:cb:14:3f:9c:9b:
3e:05:ec:75:48:9f:82:20:e8:03:5d:d2:d0:34:6f:
ea:3c:59:89:d1:2d:ce:48:ec:fd:0f:27:d7:16:66:
3d:78:e2:fa:f4:f3:2c:a6:96:04:4e:2c:f4:83:09:
bb:47:34:4b:b6:f7:bf:91:ab:3c:3c:59:3d:42:7f:
e2:73:92:d3:67:88:44:71:ce:14:57:6c:be:64:1d:
85:f8:f6:d9:92:0a:6a:cc:8d:04:f8:54:9c:0d:eb:
f1:89:e9:ad:0f:ab:60:81:c6:df:89:e0:7a:fe:6e:
b4:e3:7a:9d:41:40:f7:7b:30:73:21:3e:46:6c:b5:
42:79:9b:23:63:e9:bf:85:e7:fe:96:bb:54:c3:82:
6f:a5:3c:9d:05:2f:78:91:38:ee:e8:97:20:ea:6e:
6b:f2:a4:49:ca:41:0c:9e:97:cb:e3:20:6e:9c:eb:
dc:be:0a:83:f1:bc:25:d0:7d:04:e4:80:e8:50:03:
1c:d6:c1:22:47:8a:c6:6a:36:60:a9:7b:9e:08:96:
08:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:6A:27:78:C7:4F:25:EA:81:87:C2:DB:56:B2:86:2B:B6:69:81:FE
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/PWoneMdPJeqBh8LbVrKGK7Zpgf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
21:bb:7f:b4:b0:8a:0e:53:d3:b9:99:2c:f6:57:50:d0:69:07:
d1:9c:90:32:b2:5b:93:b9:f4:c9:dc:88:f6:bf:b9:cd:de:87:
f2:bf:8f:da:89:43:09:82:ac:27:fe:71:26:db:9e:6d:32:32:
2f:5b:9a:c3:89:c5:f1:73:eb:7f:45:d1:04:89:1c:ac:a1:06:
f8:d8:8b:b5:21:ba:25:8d:12:01:4d:0c:ea:cf:17:13:0d:77:
49:cd:dc:ee:90:cc:ff:16:34:e2:de:89:56:c6:83:7c:4b:6a:
46:23:bd:8f:f7:22:89:b8:47:99:92:98:df:a1:ab:5e:47:4d:
54:5d:72:b0:64:e6:c6:07:9d:4f:24:a2:e7:de:35:40:15:b5:
b4:f0:37:4a:60:22:d3:dc:08:50:8a:aa:2c:73:d6:61:7e:81:
83:aa:04:6b:03:88:29:bb:60:33:14:71:e0:08:fa:a2:26:dc:
1b:31:ab:5a:82:53:39:1d:36:87:e4:e7:00:7d:b3:f3:c7:e6:
e5:7a:e7:51:3c:94:19:87:0d:a3:1b:c9:b9:ae:58:8d:71:d6:
54:70:49:46:e6:01:4a:9a:df:ec:ef:09:76:65:d4:e2:55:14:
e7:79:04:1c:06:c8:72:db:eb:c7:c5:cd:37:09:45:27:02:8b:
c1:37:ea:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:43:55 2025 by rpki-client