Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Txm83FVqzMm9kV-zDyi0vXKQjjY.roa
File: Txm83FVqzMm9kV-zDyi0vXKQjjY.roa (raw, json)
Hash identifier: 8ZsFizXLc7v4ULvX/gm8/hP9LtSR/O4LBesAuaJbpb4=
Subject key identifier: 4F:19:BC:DC:55:6A:CC:C9:BD:91:5F:B3:0F:28:B4:BD:72:90:8E:36
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FBCC0CBB4053ADF3BC8A9CB3509F5D6EA
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Txm83FVqzMm9kV-zDyi0vXKQjjY.roa
Signing time: Tue 28 May 2024 01:11:42 +0000
ROA not before: Tue 28 May 2024 01:11:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 28 May 2024 02:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:bc:c0:cb:b4:05:3a:df:3b:c8:a9:cb:35:09:f5:d6:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 28 01:11:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4f19bcdc556accc9bd915fb30f28b4bd72908e36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:1e:89:30:67:fe:85:70:5f:67:38:3a:d4:ef:
5e:7a:65:18:2d:e7:f7:a0:76:b0:a9:bc:92:02:99:
c9:1d:af:69:0f:22:e2:f7:b9:09:d4:17:e7:52:21:
55:38:78:ed:7e:48:1f:25:c1:15:75:18:b0:7b:76:
1a:b5:d7:b6:7a:49:a4:b5:21:be:8a:df:34:5f:d1:
95:ce:9b:ff:d6:71:8f:30:a7:2f:f7:39:f7:82:ba:
0b:4b:45:56:62:db:de:72:34:90:84:6a:97:6c:81:
2b:fa:85:da:5c:be:1a:5a:c7:28:de:9e:2f:94:d9:
ce:4c:a3:07:7e:b4:34:63:ed:46:70:45:4d:20:a0:
93:16:ad:3a:72:2e:67:6a:67:c7:24:95:42:96:b9:
fc:f8:4e:83:5c:ae:bd:71:df:38:3c:14:eb:78:40:
ae:06:da:c9:9b:45:c4:6d:a9:b0:03:0e:12:0c:0e:
ff:12:9b:55:ee:a3:96:55:5b:65:f1:9b:54:b9:b5:
1e:8c:87:08:d3:32:2c:0d:d8:c0:54:39:b3:e5:9a:
f1:06:3e:96:52:8e:bf:60:14:6d:92:6a:a0:17:f9:
11:c3:f2:69:cb:ab:4e:bf:ab:d4:92:ce:8c:f5:1b:
df:a6:67:2a:ac:77:06:a5:b1:47:6f:7b:73:7a:73:
6a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:19:BC:DC:55:6A:CC:C9:BD:91:5F:B3:0F:28:B4:BD:72:90:8E:36
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Txm83FVqzMm9kV-zDyi0vXKQjjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
64:aa:76:82:7e:da:f2:cd:df:16:80:7c:3e:6e:15:a4:2d:d1:
67:ab:43:da:4f:b2:61:d0:c5:61:52:1a:9a:b0:d0:43:87:9e:
7b:ab:fb:e0:64:ee:f3:0c:aa:2c:48:8c:8b:2e:2d:16:be:03:
5f:32:6f:4d:48:8b:1f:be:48:91:83:56:49:ff:df:12:94:7a:
4b:ea:26:12:df:71:45:47:f7:e7:9f:11:b2:70:98:e8:ed:5f:
ff:68:c5:d1:eb:41:be:8d:08:9f:fd:27:95:fe:11:60:bc:71:
eb:3e:03:06:e9:63:ba:56:c7:be:eb:12:28:d3:04:0e:bd:1d:
4d:82:91:7a:74:46:c6:c3:8c:56:09:5a:4a:43:42:39:9e:a6:
19:80:64:c6:3d:f6:49:c7:8e:92:1f:96:94:d6:e6:b6:7a:30:
be:5b:27:97:bf:16:d1:de:5e:77:02:48:7c:80:d7:e3:e1:53:
70:06:d1:c6:c9:5c:f9:6f:0f:de:36:7a:a5:60:68:5f:d5:e7:
cd:2b:77:b3:84:63:ff:ff:50:fc:02:78:bd:0a:50:c2:80:1a:
50:43:04:e5:71:b8:c4:ed:3f:c4:8d:fe:fd:1a:21:1a:b8:79:
c5:c0:a2:f9:bc:fd:86:a3:52:a5:9a:14:78:8f:8d:ef:1a:4d:
0a:31:a4:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:52 2024 by rpki-client on console-fra.rpki-client.org