Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/QOJiXZgDQBQqq1AAgzqs9NBVNpM.roa
File: QOJiXZgDQBQqq1AAgzqs9NBVNpM.roa (raw, json)
Hash identifier: 3IBm1cZrCfTihfevyxUmfjI+FrsFtIu82q27fHjuA8k=
Subject key identifier: 40:E2:62:5D:98:03:40:14:2A:AB:50:00:83:3A:AC:F4:D0:55:36:93
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01901A4DF2E153BAAAF53C0D347B6E14EAD5
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/QOJiXZgDQBQqq1AAgzqs9NBVNpM.roa
Signing time: Sat 15 Jun 2024 05:10:34 +0000
ROA not before: Sat 15 Jun 2024 05:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 15 Jun 2024 06:05:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1a:4d:f2:e1:53:ba:aa:f5:3c:0d:34:7b:6e:14:ea:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 15 05:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=40e2625d980340142aab5000833aacf4d0553693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:51:4e:80:93:52:bb:f7:f3:ff:f1:fa:59:6a:
d6:09:7c:fd:98:38:7a:da:9b:57:8f:3c:c4:d1:33:
d3:b6:e1:4b:9c:75:d6:e6:1a:ac:93:e4:b1:eb:6f:
b3:54:18:cb:95:b5:a8:8a:45:68:06:e0:2a:93:0e:
fa:82:0c:96:76:5b:97:b6:a1:8f:15:be:db:94:4d:
a5:26:dd:33:db:2e:88:64:16:85:c8:c6:27:47:db:
3b:dc:94:61:16:bd:e6:fc:f0:ad:95:e9:c1:0c:0a:
88:1a:fe:29:f8:f4:05:82:76:e0:9d:55:9e:78:66:
f5:55:df:8f:28:f6:43:60:08:b0:ed:8f:dc:52:e8:
97:f4:af:c6:2d:9b:53:2d:f1:fa:38:5e:e4:4f:8b:
96:c4:cd:34:0e:1c:6c:bc:74:16:fd:8f:e7:82:d6:
17:c9:3c:fb:e7:42:31:c8:ef:87:4c:57:87:a0:a8:
09:8c:2d:a4:aa:37:1e:ab:9c:db:68:80:bb:d7:e6:
8d:56:58:b7:c6:d7:ee:34:14:47:12:a9:00:99:24:
76:c1:42:7d:98:3b:50:a3:98:40:c7:89:cb:5b:5f:
58:3e:3c:86:fc:e9:83:d9:18:07:e8:6a:87:aa:83:
b9:7a:ac:4a:9f:cd:f0:d7:a9:d5:5a:d0:33:e9:4d:
fd:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:E2:62:5D:98:03:40:14:2A:AB:50:00:83:3A:AC:F4:D0:55:36:93
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/QOJiXZgDQBQqq1AAgzqs9NBVNpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
2b:54:ee:ca:9a:7b:37:b5:98:75:f1:50:8d:cc:6a:9f:23:30:
a4:76:d5:e9:cd:fd:d3:c4:aa:ff:93:c5:d8:fe:e8:f0:31:4a:
9e:8a:f0:14:1b:eb:39:f9:87:86:4a:2d:09:e7:2a:d6:fe:c6:
fc:b8:5a:cf:37:20:f9:bd:ed:9b:ec:50:b4:aa:99:5c:b6:24:
ee:03:2b:c2:0b:62:7e:b7:08:09:80:e0:f9:08:78:47:94:cc:
43:36:42:e2:4f:15:9f:4d:7d:9c:56:b5:48:cf:52:d9:5a:97:
6b:95:ec:f1:39:ba:8f:5d:c8:49:cf:fc:63:1a:60:4d:da:ca:
7a:a2:05:a5:0f:e1:45:3d:77:71:d6:2d:4c:46:50:ee:4d:aa:
b1:8f:cf:1e:5e:92:b2:c4:7a:92:07:d8:16:27:05:b6:45:8c:
53:0f:54:d2:eb:1d:1c:fa:a7:cd:62:d1:be:cb:4a:28:26:cb:
ba:a7:4d:a4:76:cd:81:ad:f3:e1:ee:0f:d2:b9:af:e1:73:05:
2a:fc:81:7e:46:f0:12:96:b9:9e:af:03:14:53:a5:bc:d4:56:
1e:a4:10:e6:38:63:ce:1e:ed:a0:b0:0e:d8:dc:3f:04:26:14:
6e:be:7d:52:27:86:e5:78:6f:47:9b:ca:3d:48:4d:6e:be:c9:
5d:2c:dd:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 06:56:32 2024 by rpki-client on console-fra.rpki-client.org