Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/bUUwwWzGzQHBeGV9EiKtZd5N3Mk.roa
File: bUUwwWzGzQHBeGV9EiKtZd5N3Mk.roa (raw, json)
Hash identifier: Az20ggw8CvZWzc68Fwnn9Uw5BziwF+43aQKF0swNz4U=
Subject key identifier: 6D:45:30:C1:6C:C6:CD:01:C1:78:65:7D:12:22:AD:65:DE:4D:DC:C9
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019009C836B63957872B6EAD87145686CD43
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/bUUwwWzGzQHBeGV9EiKtZd5N3Mk.roa
Signing time: Wed 12 Jun 2024 00:10:34 +0000
ROA not before: Wed 12 Jun 2024 00:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 12 Jun 2024 01:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:09:c8:36:b6:39:57:87:2b:6e:ad:87:14:56:86:cd:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 12 00:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6d4530c16cc6cd01c178657d1222ad65de4ddcc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:91:8e:f3:79:b1:c5:92:d1:4e:5f:e7:89:09:
83:d7:95:fb:55:9d:a9:e2:8f:58:26:13:ac:c4:38:
dc:53:b8:9e:5f:d1:eb:ea:c4:65:92:b9:3a:bf:52:
1f:bd:d2:33:e3:01:ca:4a:76:2d:40:ea:8b:e5:20:
06:19:7f:50:ea:83:70:05:b7:c3:50:09:20:14:fb:
5e:eb:98:05:12:e2:82:67:b0:ea:07:7e:95:1f:26:
ec:95:75:37:0c:c0:82:6d:5b:5a:7d:0f:cc:54:5b:
b5:b8:0c:fd:e5:4d:b4:3a:b2:c5:ee:07:47:7c:98:
59:07:87:83:d5:0a:34:26:d8:f2:4f:f8:8c:d5:bc:
0f:23:21:d2:39:85:bc:ce:98:a5:41:3a:bd:95:9c:
85:e4:b4:6b:3e:9f:12:70:c9:e3:a6:74:cc:59:7d:
e5:9e:7c:e3:e1:db:c4:13:76:b7:19:b9:c3:d8:d4:
98:85:45:dd:6b:91:d1:74:99:72:81:a3:bd:41:97:
28:c2:18:c7:7c:da:04:79:2e:63:73:41:7c:bf:ff:
b1:31:b6:9c:47:54:80:5d:e2:5a:5c:72:5c:59:3a:
58:b2:81:f9:f1:5d:d8:4b:4c:65:16:ec:d0:e8:d1:
f6:87:00:48:8b:8b:1c:7f:49:07:48:0a:c3:ef:08:
36:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:45:30:C1:6C:C6:CD:01:C1:78:65:7D:12:22:AD:65:DE:4D:DC:C9
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/bUUwwWzGzQHBeGV9EiKtZd5N3Mk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3e:2c:bf:a7:fa:cb:a8:37:7b:99:b8:d9:8d:f2:d0:b3:f2:8b:
f6:a7:79:f0:23:90:d0:be:ce:1f:1e:bf:6a:5f:99:0c:82:7b:
89:09:9c:67:00:4d:12:7d:63:0c:8e:a3:c5:3a:3e:26:fb:4f:
3e:79:38:5d:2a:9d:5e:97:4a:14:99:d9:00:b6:ce:c7:99:cb:
df:4b:6f:f6:c8:a5:33:fc:28:56:51:77:28:dc:c4:01:ae:24:
96:db:4b:63:52:57:42:92:4a:60:8e:67:ee:b9:00:85:89:9c:
b8:17:e5:9c:bc:d4:75:10:ed:25:a4:f4:49:95:32:0f:f2:53:
2c:69:a6:bc:01:99:6e:35:58:cb:95:0e:58:ea:ca:08:8e:99:
4e:f7:8f:7f:a2:1a:c6:42:e4:7d:e2:07:f2:2c:6a:79:16:69:
d1:d7:ab:e6:87:97:8e:bc:6e:a1:39:d5:fb:7d:47:44:8a:89:
62:46:60:6e:e5:bc:42:6e:39:a0:77:32:d1:ee:5f:62:c6:fb:
13:61:eb:a3:86:a7:77:b6:76:3a:f0:0f:92:47:0c:55:3c:8f:
d6:d1:31:1e:cc:1e:fb:71:df:0e:61:b5:f0:ba:01:e9:f0:9b:
cf:03:df:cf:21:6f:84:8d:cd:98:fc:f6:97:16:75:01:25:58:
7a:e7:a6:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:43:23 2025 by rpki-client