Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/QjThRECU9O38RR35eKLhVc5Q8Ss.roa
File: QjThRECU9O38RR35eKLhVc5Q8Ss.roa (raw, json)
Hash identifier: T0K7KaHXp3GuqsQTvXMi/CURe0oQfYn5oZAW8neRuvg=
Subject key identifier: 42:34:E1:44:40:94:F4:ED:FC:45:1D:F9:78:A2:E1:55:CE:50:F1:2B
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190863D3CBC6CB89FC50FB07E7F31F9EB00
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/QjThRECU9O38RR35eKLhVc5Q8Ss.roa
Signing time: Sat 06 Jul 2024 04:11:18 +0000
ROA not before: Sat 06 Jul 2024 04:11:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 06 Jul 2024 05:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:86:3d:3c:bc:6c:b8:9f:c5:0f:b0:7e:7f:31:f9:eb:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 6 04:11:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4234e1444094f4edfc451df978a2e155ce50f12b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:6b:90:c5:cc:d9:05:33:9d:41:0b:73:6d:a7:
2a:79:7d:64:7d:3e:58:0f:e0:9b:a9:bf:06:7f:e8:
0e:d3:f2:9f:2d:63:7c:da:b0:09:8e:58:1d:5c:e2:
0b:b3:45:06:65:79:c4:07:38:56:fe:9a:30:06:a9:
d5:9f:33:00:64:f1:e6:19:23:95:ad:31:08:61:4d:
b6:bf:83:df:af:ea:56:5a:46:ac:3f:25:f0:cd:e0:
69:3f:53:42:f8:85:65:51:9c:69:d3:3a:f5:83:24:
d7:c3:84:cc:49:2b:85:72:59:f1:eb:5f:7e:2e:92:
91:1a:f8:1d:5b:35:83:ec:ea:9a:13:31:e6:58:4f:
1c:cc:ba:14:19:af:97:0e:b4:25:3b:65:a2:ae:20:
c7:f1:d9:a8:21:d7:a1:a3:fd:48:fe:03:cb:4f:89:
60:0d:40:5c:93:8c:fd:d8:7c:10:9f:41:41:c7:8b:
79:21:c8:6b:24:e0:0c:b6:5d:e1:6c:56:c7:8f:0a:
20:19:dc:0c:2a:c0:3f:f4:98:8e:33:36:87:2e:51:
1e:fa:1a:b4:07:c6:9c:1a:84:f5:5a:32:aa:c6:03:
11:0f:d0:09:ec:51:c1:b4:17:20:a2:77:a0:dc:8a:
f5:5a:52:5f:1e:12:eb:58:e4:b8:71:a1:16:33:98:
0d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:34:E1:44:40:94:F4:ED:FC:45:1D:F9:78:A2:E1:55:CE:50:F1:2B
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/QjThRECU9O38RR35eKLhVc5Q8Ss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5e:e2:f4:7a:e3:bc:91:01:38:e0:36:44:3c:1b:d7:a9:11:e6:
14:19:6b:ae:c5:b4:ec:5a:85:45:a1:9a:0a:e5:8d:02:cc:c2:
c5:e1:4b:b4:ad:bd:fa:cb:7e:ec:61:21:29:8b:32:53:22:c9:
b6:2c:bb:c5:85:f8:01:63:7d:70:89:3d:93:e4:34:a8:f3:92:
84:28:c8:04:9a:d6:c1:1c:49:1f:c8:5c:99:29:6d:1f:93:e2:
0d:54:25:4a:34:58:f8:e3:e8:55:01:a2:f1:b9:c5:bd:e7:d3:
e7:05:7e:fb:d3:3d:f1:fd:24:85:59:57:54:56:05:3f:52:45:
ad:c9:f1:34:7d:bc:f9:2d:22:c8:44:e6:c0:9c:9e:90:33:e2:
d9:eb:cd:60:99:34:89:17:ac:86:6e:ed:d1:b9:02:b1:49:fd:
fa:15:62:57:2e:d1:05:52:14:16:14:fc:87:ef:3a:0a:c4:68:
a5:2c:3e:84:0a:4d:bb:3e:a1:46:ea:ba:a1:62:93:3b:de:30:
ee:65:98:76:60:f0:87:1a:11:0a:8f:7a:27:13:3a:aa:c5:b5:
ba:69:05:43:23:99:d3:8e:ba:1d:28:cf:90:4d:6e:67:1f:8e:
63:74:38:ef:13:96:71:71:f6:2c:33:60:ea:27:66:8e:1b:6d:
51:a6:b2:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 6 07:03:51 2024 by rpki-client on console-ams.rpki-client.org