Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/_N2yp4Sly9BjIRxHWlwqCfPPqN4.roa
File: _N2yp4Sly9BjIRxHWlwqCfPPqN4.roa (raw, json)
Hash identifier: 4aFtaJIjDn3RZ+30VhwiuKCuIGIaox+TuhGYJxCAnKI=
Subject key identifier: FC:DD:B2:A7:84:A5:CB:D0:63:21:1C:47:5A:5C:2A:09:F3:CF:A8:DE
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190328F0EAA6ACA7D84F87E7422F439D4B4
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/_N2yp4Sly9BjIRxHWlwqCfPPqN4.roa
Signing time: Wed 19 Jun 2024 22:12:34 +0000
ROA not before: Wed 19 Jun 2024 22:12:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 19 Jun 2024 23:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:32:8f:0e:aa:6a:ca:7d:84:f8:7e:74:22:f4:39:d4:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 19 22:12:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fcddb2a784a5cbd063211c475a5c2a09f3cfa8de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:52:52:2e:47:c9:a4:b8:94:fa:2c:11:83:0c:
f7:0c:45:91:46:5a:c5:fd:6e:4a:e0:38:57:02:e7:
e1:03:27:d5:bb:e9:55:1b:1c:5e:f5:f5:63:19:b9:
cb:5f:7a:ba:f3:67:02:b8:e7:26:75:aa:1f:53:e5:
a5:fc:5f:76:36:d3:4f:08:ee:1f:9d:cf:d6:11:9b:
e9:5e:ca:a8:c7:1d:f3:fd:7d:67:59:ca:23:1a:27:
13:6d:53:b6:be:0b:e7:9b:2e:26:14:bf:71:74:3f:
6a:b9:eb:d8:97:da:a0:6a:f1:e4:f4:6b:be:50:de:
1e:7d:b1:91:30:f3:bc:bb:94:53:60:bb:60:35:06:
8f:4d:3e:b1:f6:45:2c:08:df:e9:b0:51:a3:65:1a:
db:d3:8b:e1:98:25:e0:32:79:66:ad:79:21:b5:73:
b9:a4:e4:fa:63:fb:db:72:fa:51:4b:c9:80:90:99:
ac:32:eb:68:51:1d:ff:ae:ad:ad:fd:80:05:72:63:
88:31:2e:7f:08:55:73:8e:fe:e3:40:47:5a:57:df:
e2:e2:60:ab:16:2d:cc:1f:49:81:c0:ee:90:e3:1d:
76:0e:65:d7:c3:2f:3f:4d:f2:20:7c:f0:71:33:0d:
31:56:6b:74:2c:15:14:fd:9c:5d:cd:a8:0c:af:0e:
2d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:DD:B2:A7:84:A5:CB:D0:63:21:1C:47:5A:5C:2A:09:F3:CF:A8:DE
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/_N2yp4Sly9BjIRxHWlwqCfPPqN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
82:33:52:e6:79:8b:4e:04:f9:33:29:eb:91:2f:d1:36:0f:37:
64:96:d7:22:ec:83:cd:d2:30:25:ea:6f:d8:74:d1:ef:92:e0:
55:86:cd:1a:c3:b9:fd:18:75:5e:32:ac:f3:7b:2a:e5:29:d5:
93:9c:4f:09:51:d3:ef:32:4a:fa:7f:b8:2c:ab:4c:fc:c4:4f:
ee:d0:93:30:2f:ea:0d:27:7f:e4:7a:e6:9c:91:d8:fd:f5:9f:
2a:47:9b:43:e5:69:f9:ca:00:7b:5e:c9:ab:0b:b6:b7:c0:cd:
ba:d0:db:24:13:de:8d:b6:ca:f7:87:17:be:23:50:94:23:92:
e3:43:33:c3:7f:10:44:b6:5e:c8:7b:29:94:a2:8b:3f:1b:1a:
20:c7:94:ab:ab:e0:d9:a9:39:fe:e1:34:11:58:fe:90:58:d3:
79:4d:32:eb:4b:77:ce:5b:95:45:0d:96:58:08:4e:e4:08:ee:
20:7e:e5:86:22:f9:b0:63:e0:fe:01:4a:7d:f1:2c:a3:63:b8:
d8:f7:74:24:37:57:4b:13:c5:07:a1:e9:c2:75:de:06:7a:58:
21:ba:3d:ab:b4:a4:5b:c4:15:73:e8:eb:c1:75:16:b2:a6:15:
5b:6a:1b:38:ff:f5:f3:33:4d:60:fc:c4:a9:94:50:b8:57:63:
01:6e:24:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 01:21:52 2024 by rpki-client on console-fra.rpki-client.org