Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/W999bQagnbNqZ7s6t69qaf01Xzo.roa
File: W999bQagnbNqZ7s6t69qaf01Xzo.roa (raw, json)
Hash identifier: BIIZWDJ5P689boytsVxURkbmBoWpOpw2qkcH1swi1iQ=
Subject key identifier: 5B:DF:7D:6D:06:A0:9D:B3:6A:67:BB:3A:B7:AF:6A:69:FD:35:5F:3A
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FBCF7BB02CFB3E6025ACD94AD3A2F1834
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/W999bQagnbNqZ7s6t69qaf01Xzo.roa
Signing time: Tue 28 May 2024 02:11:42 +0000
ROA not before: Tue 28 May 2024 02:11:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 28 May 2024 03:05:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:bc:f7:bb:02:cf:b3:e6:02:5a:cd:94:ad:3a:2f:18:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 28 02:11:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5bdf7d6d06a09db36a67bb3ab7af6a69fd355f3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e6:44:81:ec:d6:dd:77:94:06:b5:e3:dd:ee:
9a:42:7b:39:bf:46:a1:a9:24:a8:95:6b:20:31:19:
d2:d1:4d:79:ac:f9:c3:5a:d9:ef:e7:c8:32:20:5e:
55:70:84:90:f0:40:d8:34:e6:d5:97:09:ca:de:6c:
92:0d:cd:6d:e7:fe:ae:12:48:db:fd:4e:ec:7b:6a:
73:5c:d1:70:15:b3:0d:1f:eb:c4:95:40:59:f6:5a:
6e:07:a0:8d:a6:4e:96:11:98:35:a8:81:4b:ef:93:
03:57:b5:aa:87:f3:0a:ed:d0:de:37:bd:d6:78:99:
3d:bf:80:a0:44:3d:4f:2e:89:d2:a8:be:e5:e1:19:
62:97:e9:64:c1:b3:29:cc:b0:44:4a:f8:3c:2b:e0:
39:7f:d4:45:ba:a7:69:ec:6b:81:3e:39:16:29:04:
f4:26:0e:fd:c6:a7:6b:5c:bf:a5:a2:52:46:37:54:
a4:74:34:b4:76:20:85:61:73:86:fb:e3:4c:5c:bf:
3c:19:a5:d5:83:35:55:b0:d3:09:ed:77:3e:e0:67:
d6:b3:5b:eb:1a:49:91:bc:1f:c9:6c:ac:5f:56:c2:
eb:f5:5f:bd:14:28:e4:f5:de:c0:35:c1:fb:13:d7:
1b:c0:80:1d:b7:bc:51:78:66:f6:5b:fd:df:d3:81:
22:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:DF:7D:6D:06:A0:9D:B3:6A:67:BB:3A:B7:AF:6A:69:FD:35:5F:3A
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/W999bQagnbNqZ7s6t69qaf01Xzo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5b:52:d8:cb:23:94:47:58:d3:0a:ef:48:58:b1:30:70:37:b6:
ec:8d:1c:5e:d6:c7:bf:13:c5:4c:2b:d5:8b:95:cd:7a:16:c8:
57:3d:55:7f:91:48:1c:c3:87:57:34:4a:cd:e4:36:3b:0f:82:
8d:15:01:44:57:32:ef:9c:a1:e2:df:37:8b:01:c8:8b:cb:e5:
40:4d:78:fa:0d:61:4d:04:fc:6b:33:36:3c:12:6d:b6:39:30:
2b:69:c3:25:ef:19:e1:94:d6:9f:1b:29:f9:ba:fe:eb:ea:99:
b0:cb:67:42:57:64:ad:14:58:3b:0f:37:61:b1:88:b7:76:ac:
73:c4:c0:9e:23:69:cf:5c:35:0f:70:1d:8b:0d:de:6b:95:0b:
cd:85:32:cc:62:9c:e2:7c:ee:27:34:a3:d2:1a:d1:54:5f:b5:
73:3c:b6:6e:dc:a5:82:32:b4:1a:e2:41:aa:61:c3:f4:35:a3:
b8:8e:70:b0:99:11:71:bd:99:90:73:ce:f6:b8:1f:51:1d:40:
2f:ca:91:2d:cd:33:96:c9:74:22:5f:1a:a3:41:50:be:95:91:
b1:f3:01:5c:26:b6:8c:69:13:57:bc:d4:e4:19:2f:a0:a1:db:
66:0e:6c:10:a8:f4:f1:ff:3c:12:39:81:72:d1:0b:ed:07:33:
4e:07:dd:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:52 2024 by rpki-client on console-fra.rpki-client.org