Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/TIXZNXzYvpbnWQrdNXWyz3NGVVg.roa
File: TIXZNXzYvpbnWQrdNXWyz3NGVVg.roa (raw, json)
Hash identifier: //5ZCBE8XdSdC8G5Bn2DrPVdFY5quSt4uP2YX0WV9FE=
Subject key identifier: 4C:85:D9:35:7C:D8:BE:96:E7:59:0A:DD:35:75:B2:CF:73:46:55:58
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01901182AAE4503D8E21BFA65318071894E5
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/TIXZNXzYvpbnWQrdNXWyz3NGVVg.roa
Signing time: Thu 13 Jun 2024 12:11:34 +0000
ROA not before: Thu 13 Jun 2024 12:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 13 Jun 2024 13:05:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:11:82:aa:e4:50:3d:8e:21:bf:a6:53:18:07:18:94:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 13 12:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4c85d9357cd8be96e7590add3575b2cf73465558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7d:4d:74:1d:a9:a9:85:db:5b:bb:e6:ee:6e:
4b:d8:53:49:dd:b2:86:50:97:3a:c3:65:4a:d2:c7:
97:b0:b7:99:1d:2a:75:f6:cd:80:f1:ac:ac:51:79:
be:42:f1:2f:72:a6:5a:24:f4:30:e8:1e:0c:b2:63:
da:af:d5:f5:92:25:09:d7:02:1d:e4:ef:9b:b3:d3:
bf:6a:8d:a9:43:af:cc:b6:7c:e7:53:e6:db:f4:01:
5d:c7:29:4e:04:6e:a8:9c:f2:c2:e5:5e:ee:e8:c1:
e4:b6:88:14:56:66:07:5a:77:a3:b4:e0:9c:ea:a0:
3e:18:2b:25:4c:c3:fa:15:3f:a8:1d:c2:5e:09:b4:
e1:e1:27:63:ee:ec:7a:1e:b9:51:52:cf:91:9f:43:
84:70:4c:5e:62:67:64:1e:ba:db:44:4d:cc:63:e7:
6c:b7:a2:66:3c:52:e0:4a:a5:e2:ba:ae:b5:bf:f9:
0c:28:d7:b1:d3:d2:0e:27:0e:da:24:ac:a8:f1:a7:
38:0d:07:d5:bf:c0:eb:42:a1:6d:22:85:ec:53:39:
71:36:de:a8:c4:c0:40:87:1c:00:9f:c5:f6:4f:69:
c1:05:ea:45:8d:76:36:b6:9d:0b:1f:68:98:9f:58:
af:d1:dc:e1:92:21:4c:3e:a5:75:04:b4:fb:b1:5e:
2a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:85:D9:35:7C:D8:BE:96:E7:59:0A:DD:35:75:B2:CF:73:46:55:58
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/TIXZNXzYvpbnWQrdNXWyz3NGVVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
69:03:ef:d4:d7:1e:d8:3e:e0:4b:91:fd:20:89:49:9b:ca:34:
40:76:47:98:b3:9c:74:37:f1:85:46:00:f8:9e:b1:77:e1:57:
52:3f:d6:3f:5b:5e:4e:9a:89:62:d2:0c:5a:65:99:70:86:f9:
f9:1d:a2:2f:0c:00:d0:d7:62:07:6b:fb:41:6c:a1:05:45:dd:
de:8e:d4:3f:42:2f:9c:40:18:38:24:20:3d:12:08:fe:0d:ea:
7d:74:8d:5d:21:ea:2c:c8:4c:47:ad:4c:fd:94:89:31:bb:8b:
15:1c:f5:70:29:67:3d:3f:0b:32:9e:f5:f5:c7:53:0d:3a:58:
67:b4:4c:0c:3f:73:8c:c8:cd:37:7a:8b:c7:5d:98:dc:e0:c0:
d0:ab:f5:f0:4c:f4:29:62:c3:ba:cd:91:42:86:b8:60:df:f0:
44:26:c9:56:5f:58:19:2e:fe:f8:c5:22:f7:bc:a8:ce:7c:79:
f7:49:63:d3:76:36:ab:76:3e:4b:30:d4:72:99:44:3b:32:29:
1e:da:93:64:dd:31:bd:95:f9:7b:b8:39:71:8f:c3:08:b7:e1:
c3:43:95:d4:8d:e4:1c:0e:6b:7c:0d:5e:c7:82:98:e9:51:83:
18:cb:42:9a:e7:8d:9f:d2:c6:ab:62:ae:63:50:83:2c:69:9b:
a0:23:07:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:31:29 2025 by rpki-client