Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/RJj9-FnQQWrWFDvRgll_fhCKqj4.roa
File: RJj9-FnQQWrWFDvRgll_fhCKqj4.roa (raw, json)
Hash identifier: /d5HhMGPZSrtiUV70fji962f1jTpAB57H6brsPBfz3w=
Subject key identifier: 44:98:FD:F8:59:D0:41:6A:D6:14:3B:D1:82:59:7F:7E:10:8A:AA:3E
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019092B242FC76F4F509F21154B611BFA606
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/RJj9-FnQQWrWFDvRgll_fhCKqj4.roa
Signing time: Mon 08 Jul 2024 14:14:34 +0000
ROA not before: Mon 08 Jul 2024 14:14:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 08 Jul 2024 15:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:92:b2:42:fc:76:f4:f5:09:f2:11:54:b6:11:bf:a6:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 8 14:14:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4498fdf859d0416ad6143bd182597f7e108aaa3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f6:b5:6f:da:80:30:b0:62:09:01:1e:2e:6a:
91:64:d0:8c:da:f0:81:47:26:1f:c4:d3:df:e6:e9:
50:5d:f7:7a:53:ed:68:1d:b7:2b:02:bc:77:ef:af:
fc:f8:6c:0c:a3:7b:2b:94:34:c1:6c:df:38:33:ea:
55:1e:a0:f5:fd:7f:77:7b:f5:dd:34:96:27:42:ef:
0d:1a:92:ad:e6:cb:05:2f:3b:2d:f6:d3:16:30:d1:
8a:33:8a:64:61:b4:16:96:e9:e2:be:13:d3:a6:ff:
3a:76:ac:5c:08:e3:3f:78:e4:7f:fa:f8:be:b7:2f:
34:11:28:6c:f7:78:c9:64:0d:f3:c6:37:77:c9:42:
f4:24:3f:04:c9:82:eb:ba:a3:55:61:71:ee:36:ee:
25:de:09:4a:cc:80:c2:a0:79:08:31:e1:d8:4a:b4:
1e:f0:56:c6:92:ed:36:51:ae:ff:30:d6:c6:d2:83:
10:c1:01:02:30:6c:52:b2:00:a0:41:70:c6:56:79:
7c:f4:f6:f0:da:fa:53:2f:73:00:90:d0:ae:ea:ba:
3f:f7:6f:d8:a6:a8:fa:fc:6d:78:31:05:94:0f:bf:
bb:45:f4:7d:d0:b0:64:ab:65:21:07:c0:2c:a4:14:
c1:ed:2d:85:af:d8:33:40:5e:78:9a:b1:33:0f:5e:
e9:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:98:FD:F8:59:D0:41:6A:D6:14:3B:D1:82:59:7F:7E:10:8A:AA:3E
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/RJj9-FnQQWrWFDvRgll_fhCKqj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
65:e7:e3:09:bd:75:e1:6c:51:f8:36:87:3b:47:95:f8:05:ae:
22:2f:b8:3f:5e:f5:a5:a0:58:ae:4b:80:7b:94:0c:27:2e:28:
1e:56:bd:ee:0b:5d:76:da:16:32:ca:3a:19:c7:66:b3:ba:34:
08:a6:65:46:d7:ab:60:ea:2a:0d:df:86:66:cc:5b:1a:8d:25:
b5:da:c8:2d:bd:59:96:da:75:76:48:49:70:de:80:4b:b3:89:
be:06:59:9d:f1:c7:ce:c3:f8:f1:fe:cc:cf:e9:12:df:65:d4:
55:7a:6c:6c:a6:bf:88:ad:c4:5f:bb:2e:bd:8e:0b:e9:cc:ab:
f1:68:86:2d:d6:3f:d8:d4:c5:ed:ee:3e:46:7c:5d:b8:24:96:
bb:be:ca:83:59:ab:55:d3:2f:a5:bf:41:4a:d0:e1:80:67:85:
0a:0e:8b:16:93:65:79:94:be:d5:a9:fa:0e:2e:b5:82:76:46:
ce:b7:d7:73:8b:db:dc:7d:00:48:b6:de:33:7e:fb:e4:66:71:
45:c3:df:97:4c:81:2a:41:11:19:57:8f:d4:71:af:5b:eb:9c:
9d:a3:21:43:fd:af:06:54:94:05:d3:75:96:79:8a:73:4f:68:
8b:ca:69:59:07:8d:e3:6d:fa:9a:02:40:a1:96:d9:1a:56:85:
dd:05:17:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 8 17:41:00 2024 by rpki-client on console-ams.rpki-client.org