Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/V9zIoMczZslqPahw_Z9Llz9l778.roa
File: V9zIoMczZslqPahw_Z9Llz9l778.roa (raw, json)
Hash identifier: g5Bzp9LMVbzbMQuo0uCx+Vsfj4bY+qiW0QMzLiHy8h8=
Subject key identifier: 57:DC:C8:A0:C7:33:66:C9:6A:3D:A8:70:FD:9F:4B:97:3F:65:EF:BF
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FD5DB912C873F44BA3E97BDD9423F83BD
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/V9zIoMczZslqPahw_Z9Llz9l778.roa
Signing time: Sat 01 Jun 2024 22:11:27 +0000
ROA not before: Sat 01 Jun 2024 22:11:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 01 Jun 2024 23:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d5:db:91:2c:87:3f:44:ba:3e:97:bd:d9:42:3f:83:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 1 22:11:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=57dcc8a0c73366c96a3da870fd9f4b973f65efbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:08:98:fc:db:7a:83:0c:80:b9:f1:93:fd:3c:
19:f7:0c:61:55:df:10:79:63:f1:93:65:b3:f2:c7:
83:d2:49:f4:1c:3c:2a:b2:34:15:dc:81:10:61:21:
c9:36:c8:44:bb:bc:5a:b0:0f:4e:36:78:1a:6e:6e:
04:38:3b:49:f1:7f:b0:a9:1a:6e:57:dd:67:41:cc:
dd:4e:14:64:5a:92:40:42:58:ca:49:b0:60:aa:36:
0f:3f:0e:43:c5:37:b6:99:a4:f1:91:19:6c:e5:69:
11:33:35:20:26:11:3c:32:c2:dc:87:6d:d9:11:90:
39:00:e2:ca:0e:11:8a:44:eb:3c:c9:0d:16:9e:5c:
68:31:09:fb:53:40:7b:a9:f3:6c:77:dc:81:24:12:
43:51:b6:06:ea:0e:8b:26:11:7e:e1:ab:15:65:18:
b8:a5:fe:48:da:f5:de:36:25:3c:2b:77:92:72:1e:
1d:7b:24:df:5d:ed:e5:ee:4a:6b:42:dc:94:fb:6b:
6c:36:a1:a4:92:7f:1b:54:61:30:27:1c:76:d1:a9:
6c:35:45:6e:0b:9c:30:a7:9b:fd:05:a2:04:9f:2d:
6d:bb:42:99:65:bf:70:65:50:f8:35:16:c0:6f:ca:
26:04:cf:df:3d:be:8c:83:5c:6c:b0:70:f4:2e:55:
ce:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:DC:C8:A0:C7:33:66:C9:6A:3D:A8:70:FD:9F:4B:97:3F:65:EF:BF
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/V9zIoMczZslqPahw_Z9Llz9l778.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
1a:83:e0:de:4e:82:63:dc:02:1c:f9:45:b1:82:0c:50:58:3c:
eb:19:2f:7d:cb:c4:49:af:a9:01:c8:c4:c5:f8:f1:41:8b:0d:
6a:74:6d:86:dc:05:1a:62:f7:66:37:ae:b4:a2:d2:09:7a:dc:
49:82:6a:d5:50:23:37:bd:b6:7e:20:8c:62:d0:8b:36:fa:a2:
ee:ea:c4:21:4e:07:b2:d0:f6:51:e7:51:69:95:18:d7:87:09:
aa:b4:7b:96:ab:0c:b4:fb:ff:54:59:e2:38:77:4d:e4:34:b5:
b8:44:63:53:86:4a:41:17:87:06:63:63:73:99:7c:97:76:4d:
f6:7e:a0:19:8e:65:3b:07:bd:e3:db:fd:78:48:20:8b:35:78:
aa:b8:27:94:12:8c:7e:ce:e0:3d:25:85:ac:5a:38:16:ef:89:
45:0c:fb:75:ee:1b:f1:3f:18:71:ea:0d:40:78:04:3f:a4:18:
a1:68:39:0e:05:16:57:06:ab:e9:88:0a:a8:b2:11:8a:3d:5d:
e1:74:b1:d6:04:f3:b8:e3:bf:3b:ff:6c:68:25:11:04:22:65:
8b:97:23:05:3e:75:4d:16:68:ac:20:59:75:81:67:42:9f:ec:
f7:9e:76:65:77:42:9d:45:f3:dd:b8:89:c4:b3:aa:82:ab:ee:
31:4f:b7:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:15 2024 by rpki-client on console-ams.rpki-client.org