Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Z_UeX77Pjxih5zRNjnHJSsbq_oY.roa
File: Z_UeX77Pjxih5zRNjnHJSsbq_oY.roa (raw, json)
Hash identifier: x/gp0s32f03tSA0lNGeVu0rBLCvIIj5jxOXxsidT1ho=
Subject key identifier: 67:F5:1E:5F:BE:CF:8F:18:A1:E7:34:4D:8E:71:C9:4A:C6:EA:FE:86
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019066B0744589A6D14170276B5CE53FF7C8
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Z_UeX77Pjxih5zRNjnHJSsbq_oY.roa
Signing time: Sun 30 Jun 2024 01:09:18 +0000
ROA not before: Sun 30 Jun 2024 01:09:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 30 Jun 2024 02:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:66:b0:74:45:89:a6:d1:41:70:27:6b:5c:e5:3f:f7:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 30 01:09:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=67f51e5fbecf8f18a1e7344d8e71c94ac6eafe86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:71:ad:bf:37:a1:a3:13:78:e1:3c:13:2b:21:
e9:69:a3:19:67:a7:5e:3c:3a:04:41:08:92:43:1f:
63:c3:f1:20:27:1c:43:70:6e:c9:8a:a4:cb:8e:64:
79:92:f3:6c:fd:43:2e:ac:96:b6:37:ca:5f:0b:8b:
f1:53:99:d6:09:83:96:e0:ca:03:09:6a:f2:00:27:
21:1a:22:4c:55:50:ac:28:46:ad:88:d9:18:3a:49:
cd:07:82:5a:bf:f7:08:aa:74:87:57:7a:94:83:54:
d9:5a:e7:b1:d2:f1:db:50:3f:38:ce:30:11:84:95:
c5:31:49:9a:a7:d7:17:c2:fd:3d:28:f1:f8:aa:2b:
28:a4:38:62:0e:13:f1:b3:37:ce:28:7b:95:7d:fc:
76:6a:44:d1:86:1a:a2:24:56:cd:1c:49:1e:45:fe:
34:30:af:ac:44:9f:e3:0e:2e:d4:ec:1b:7d:4c:de:
09:8c:df:0f:d2:f5:18:04:2d:b8:ac:42:5f:7d:23:
38:eb:b6:8f:fe:07:eb:aa:c5:5a:1d:8c:05:a9:e8:
0c:65:a6:c7:66:e7:9c:6f:24:e4:9c:25:ce:9e:2f:
4a:08:de:66:d1:3a:f6:d1:c2:bf:07:d1:77:ac:43:
8e:ea:43:2b:1c:f2:d9:c4:4f:78:fe:0d:91:f6:61:
59:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:F5:1E:5F:BE:CF:8F:18:A1:E7:34:4D:8E:71:C9:4A:C6:EA:FE:86
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Z_UeX77Pjxih5zRNjnHJSsbq_oY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
54:17:f4:64:ba:53:66:7e:9d:d0:c8:3b:94:42:89:b1:f5:ad:
43:08:46:13:61:1d:ca:be:10:e4:23:f7:67:6a:3f:7d:cf:cc:
ab:b9:65:df:fa:9c:17:4f:33:9a:fc:4e:fb:df:78:80:17:9c:
34:f6:71:fd:1f:eb:3e:40:a9:50:cd:85:e8:2b:e3:59:68:85:
7c:69:09:b5:b2:9b:26:1b:6f:61:1c:9e:1e:17:28:7f:e7:e9:
55:8e:40:7d:23:42:74:ca:26:b0:58:7d:78:17:a5:cc:77:da:
97:ba:3a:ec:b3:e6:14:65:e0:dc:76:8e:e4:67:57:12:d0:5f:
76:21:e2:9b:b0:33:1a:de:e4:14:58:9d:b8:68:76:51:ab:c9:
db:5b:cc:89:3b:9f:4d:1e:c7:2d:f9:74:dd:06:f9:61:cd:0f:
1e:98:52:2f:92:fa:34:d4:5f:e1:e5:c3:6c:dd:06:38:0e:d5:
5a:8f:a3:0e:e7:04:e5:42:32:1c:9e:9f:c1:cf:7e:a9:50:4a:
b2:c7:69:d8:30:f0:cf:a4:99:ee:b9:01:a1:95:f2:31:94:e7:
97:85:93:28:a9:d4:41:61:2d:2a:e4:fb:ee:71:4d:11:7a:ec:
eb:15:a7:36:84:43:71:8c:d2:8c:81:05:d7:c7:2a:13:2b:26:
8d:5f:ce:e5
-----BEGIN CERTIFICATE-----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Generated at Sun Jun 30 04:12:20 2024 by rpki-client on console-fra.rpki-client.org