Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/W0UscRFP-oePra7zuIBJx-Hh-wk.roa
File: W0UscRFP-oePra7zuIBJx-Hh-wk.roa (raw, json)
Hash identifier: JlgQ7teVXPBLBmeI/Ba9tKiGcoXXKLzVrxWQ7CTuaw4=
Subject key identifier: 5B:45:2C:71:11:4F:FA:87:8F:AD:AE:F3:B8:80:49:C7:E1:E1:FB:09
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01907C5F4C36D4A8D556F42BB65A7EC800FB
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/W0UscRFP-oePra7zuIBJx-Hh-wk.roa
Signing time: Thu 04 Jul 2024 06:12:18 +0000
ROA not before: Thu 04 Jul 2024 06:12:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 04 Jul 2024 07:06:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7c:5f:4c:36:d4:a8:d5:56:f4:2b:b6:5a:7e:c8:00:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 4 06:12:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b452c71114ffa878fadaef3b88049c7e1e1fb09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f9:b6:ac:2d:3a:d8:af:c1:1c:25:6f:08:66:
13:63:f6:86:ac:6b:49:f6:96:c1:1d:db:bf:bc:75:
79:77:95:c2:b6:9e:06:d4:c5:10:ca:89:bb:9b:09:
ca:6b:89:73:97:22:c7:e8:0f:e7:dd:66:8f:e6:16:
d3:05:01:23:a9:6f:77:6c:52:9e:61:6b:a2:9d:ae:
19:ee:2a:49:a5:2f:ce:6f:ce:22:cd:0b:45:48:be:
04:51:ec:7a:12:88:b1:dd:3d:dd:8d:e8:0f:4c:de:
81:62:32:ca:1e:46:48:26:da:52:fd:60:ae:d6:1a:
e1:ba:b1:ea:c8:0a:3a:b2:f0:4e:4f:d3:80:4c:f5:
79:e6:7e:55:3d:7e:0b:09:0e:04:f6:35:32:f3:31:
90:75:6b:0a:b7:54:3b:12:a0:5d:48:d9:be:84:59:
42:7d:a1:cc:66:b7:c8:47:73:fd:1e:b3:79:b6:9d:
12:7a:47:67:48:2a:91:bf:64:68:af:10:e7:b9:fb:
a9:28:78:65:f1:20:b8:b0:bf:11:0c:d6:c9:9f:f3:
8c:94:11:35:d4:69:4a:fc:70:78:c9:c3:60:66:7e:
30:bb:17:d2:73:6f:f2:61:74:a5:2c:b6:7e:dd:4e:
ca:6d:30:e0:f2:54:90:88:0e:65:eb:2d:9f:a2:9f:
98:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:45:2C:71:11:4F:FA:87:8F:AD:AE:F3:B8:80:49:C7:E1:E1:FB:09
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/W0UscRFP-oePra7zuIBJx-Hh-wk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
20:ab:63:f4:a8:6b:73:bd:ac:e9:0e:79:81:a1:0d:99:c9:6c:
5f:46:b5:77:a1:9f:5f:5f:d4:63:92:53:7f:32:a3:a9:2f:6c:
1f:39:00:96:11:70:65:0f:77:51:bf:29:3e:f8:36:e2:82:8c:
a2:cc:73:9a:d0:3c:dc:b9:53:4f:d5:8f:6c:a5:26:55:0c:7c:
c8:2e:87:ca:f0:d6:eb:98:d9:4e:82:ef:9f:dc:23:82:c5:25:
3b:ee:b4:82:4b:f4:bd:4b:ee:50:ce:a4:84:1d:55:b9:6a:42:
46:76:3c:c4:17:4b:6f:15:93:7d:db:cd:91:db:78:97:1c:09:
ff:82:fa:3e:33:4a:c9:17:36:95:b5:e5:ba:5a:0a:2d:80:c0:
e7:38:c4:04:40:81:e7:77:76:a6:2b:f3:3e:a3:1b:cc:6b:9c:
06:da:37:20:e3:b9:4c:1e:64:08:c1:55:0e:fb:e0:77:c7:77:
ee:fb:25:99:ea:99:95:31:eb:d6:e5:4d:b8:02:bf:57:bf:35:
22:f2:ea:22:84:12:92:57:48:cd:04:ec:e8:54:88:07:af:d0:
ef:3b:1a:cc:be:d6:6e:e8:a5:e2:53:a1:40:ec:4b:c1:23:db:
a5:30:5a:69:70:52:fc:1c:c6:32:55:10:6a:31:8e:75:c3:79:
d4:e9:0f:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 4 08:29:20 2024 by rpki-client on console-fra.rpki-client.org