Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/YmWJDTLdIeaOUgPKmVq5xKhUFPc.roa
File: YmWJDTLdIeaOUgPKmVq5xKhUFPc.roa (raw, json)
Hash identifier: 4EomEmTop65XGYWtz6Wd1DnSfedBOxKx5p5RmIN7MyE=
Subject key identifier: 62:65:89:0D:32:DD:21:E6:8E:52:03:CA:99:5A:B9:C4:A8:54:14:F7
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FC556F959BEB528BF68A59CE28C2CD78E
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/YmWJDTLdIeaOUgPKmVq5xKhUFPc.roa
Signing time: Wed 29 May 2024 17:12:42 +0000
ROA not before: Wed 29 May 2024 17:12:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 29 May 2024 18:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c5:56:f9:59:be:b5:28:bf:68:a5:9c:e2:8c:2c:d7:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 29 17:12:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6265890d32dd21e68e5203ca995ab9c4a85414f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:25:21:a3:8e:87:ee:50:c8:fa:79:be:cc:3a:
be:76:17:b5:47:4d:73:4f:12:7b:22:ec:e9:6d:5d:
3e:df:23:b8:79:d7:c7:1e:9f:94:57:85:43:3e:3f:
90:d4:7b:ac:ce:5d:e9:8d:84:da:d5:f2:30:1f:2b:
ba:d6:fb:84:ae:b2:ca:36:98:a0:f4:fa:60:2f:88:
3d:c3:b1:45:01:3c:7f:54:83:86:65:c7:8e:22:11:
ea:7c:24:56:bd:64:cc:ad:13:6c:53:4a:ca:e4:79:
d9:d5:0b:74:26:5a:ed:94:3e:30:93:02:be:a3:40:
19:60:69:97:8d:8b:4a:3f:4c:26:35:a4:f0:03:e5:
5f:17:09:77:66:88:be:98:5e:06:2b:18:ea:aa:ad:
a4:22:e4:47:45:d1:5f:25:69:93:cb:57:d8:2d:ba:
60:92:d6:9f:ba:b5:8d:7f:6c:d1:38:dd:70:5f:b8:
27:53:a4:a3:f7:c3:5b:7f:d5:3c:d1:bc:a2:6d:70:
95:74:5d:d4:7b:05:87:f6:2e:c0:6b:c9:25:a7:19:
50:ad:1f:c4:36:b5:2e:5a:26:66:22:13:bd:81:95:
43:23:ca:be:c9:ca:db:b9:b0:74:73:8d:e0:f0:9e:
c7:2b:fe:3e:91:d9:a4:2e:d6:1a:4b:45:8e:2e:df:
ab:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:65:89:0D:32:DD:21:E6:8E:52:03:CA:99:5A:B9:C4:A8:54:14:F7
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/YmWJDTLdIeaOUgPKmVq5xKhUFPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
10:62:1e:1c:da:63:fd:28:4d:4f:50:5f:ff:39:53:74:a7:df:
07:bc:6c:59:cd:03:15:1f:71:a1:09:6a:7e:20:b6:9f:cf:01:
7a:64:c6:d2:f1:66:04:64:37:e0:2d:13:90:35:4e:e6:b8:a9:
be:54:0e:d1:74:35:10:4e:35:38:11:5a:0a:37:07:60:01:df:
92:4b:de:2d:fc:73:6f:9a:3c:5a:e5:9c:4f:06:eb:79:20:a9:
fa:80:62:e3:59:4f:61:04:1f:f4:34:c4:af:f2:cc:d2:7e:f2:
19:76:c8:43:84:1e:fc:24:b8:00:89:10:72:44:5e:fd:3f:e5:
cd:fe:f7:eb:7d:d5:49:03:e2:3d:f6:64:1f:65:af:d0:a6:a4:
a0:ce:6f:a8:31:11:ed:7d:be:bd:19:8d:76:8f:e8:ba:ae:a3:
74:3e:6b:56:44:4e:23:04:92:88:41:aa:0c:28:35:7e:36:20:
ab:6c:03:8c:7a:9f:1e:3b:b9:65:3e:c0:df:1c:7b:ad:85:14:
6d:1a:e8:3d:0d:ef:30:77:5d:3d:06:64:33:6e:9b:da:16:9c:
8f:f2:1f:3f:87:e8:38:3d:cc:14:3f:d8:5e:f7:01:1c:c8:20:
8f:5c:3f:bc:8d:c9:2d:55:a1:36:5c:81:b4:d8:36:5e:03:4e:
b3:7c:2b:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:52 2024 by rpki-client on console-fra.rpki-client.org