Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/daqc0YzC8_xtjPqMrNXzG2AY9XQ.roa
File: daqc0YzC8_xtjPqMrNXzG2AY9XQ.roa (raw, json)
Hash identifier: yvXXgVzBmJOEjJOUc45dmXraYWZq5k5SqI0w4AlU93I=
Subject key identifier: 75:AA:9C:D1:8C:C2:F3:FC:6D:8C:FA:8C:AC:D5:F3:1B:60:18:F5:74
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FDCB962265ED0AA611DB4118940C8F808
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/daqc0YzC8_xtjPqMrNXzG2AY9XQ.roa
Signing time: Mon 03 Jun 2024 06:11:27 +0000
ROA not before: Mon 03 Jun 2024 06:11:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 03 Jun 2024 07:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:dc:b9:62:26:5e:d0:aa:61:1d:b4:11:89:40:c8:f8:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 3 06:11:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75aa9cd18cc2f3fc6d8cfa8cacd5f31b6018f574
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0a:95:f0:e2:0e:5d:47:1f:d1:33:e5:3f:49:
54:aa:41:ff:a6:71:03:12:ea:94:73:58:bf:43:d2:
07:17:80:d6:5e:e4:ea:87:15:b8:2c:24:d4:b3:28:
47:49:69:82:27:0e:b8:ac:66:6a:38:bb:e7:97:4e:
65:d5:55:87:52:8d:ad:63:d7:4a:a9:6a:de:2f:a6:
14:5f:57:5f:6d:37:ea:02:cf:38:c8:6f:db:22:f5:
c7:4c:d9:17:80:58:3a:4d:ee:b1:6d:46:79:31:2b:
af:94:f9:62:6f:5f:28:8e:36:a1:3d:13:aa:6b:7b:
dd:0d:1e:58:15:86:5a:fb:65:70:7b:fd:4d:58:77:
28:0d:ff:2b:dc:45:eb:39:65:89:a3:8e:6f:2e:2b:
0d:cc:9c:0a:b9:10:1f:15:a2:8b:8f:fe:18:21:2b:
1d:b5:3d:92:9f:af:fd:d0:ba:4f:f1:97:ff:e6:56:
1c:b0:9f:c2:c9:cb:78:d5:91:c2:b8:20:40:0f:2b:
d4:17:bc:cd:0d:c5:29:db:c6:36:18:df:d5:b2:e8:
26:ae:83:1e:9e:66:6d:2d:0c:82:cc:39:aa:39:12:
4d:65:76:5d:da:f9:51:3c:d1:49:c4:a8:b8:07:5b:
3b:57:47:45:d7:bc:ee:56:eb:89:c7:58:a7:29:ca:
b0:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:AA:9C:D1:8C:C2:F3:FC:6D:8C:FA:8C:AC:D5:F3:1B:60:18:F5:74
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/daqc0YzC8_xtjPqMrNXzG2AY9XQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
2f:a0:c8:ee:35:7d:3d:0f:b4:59:1f:1c:e3:9b:0a:4e:a9:18:
c0:83:37:50:0c:53:60:30:4a:3f:d8:54:9c:c0:5d:22:50:ea:
18:fb:16:a8:13:c1:72:2f:e7:3e:ef:55:4f:c5:b8:d6:ff:cd:
e3:8f:df:4d:39:9c:14:b0:ea:be:6d:56:83:2d:be:1d:50:62:
f3:67:66:ed:ae:c9:28:43:c9:da:a7:f1:52:4d:58:58:02:cf:
9c:f3:90:30:4a:fd:c8:f4:81:e7:4c:41:cc:3c:f8:f7:fd:c9:
da:b7:9c:74:dc:26:8a:0f:d2:15:3d:69:09:76:cc:34:40:b2:
63:52:f5:17:c9:b8:29:d5:e7:8d:55:e8:5b:f5:32:20:5b:8d:
93:ab:0c:02:f9:55:10:b4:1d:5e:d8:d8:96:71:58:97:a0:b2:
24:b2:9b:19:52:a0:08:9f:6f:c5:62:34:bb:d4:b4:1b:cf:9a:
2f:4f:16:5c:c6:32:aa:5e:9b:b8:c0:ce:1b:b4:a7:7f:90:ed:
bd:f7:6b:e5:fe:83:bc:f9:c8:00:33:bb:e1:96:7d:f9:fe:a5:
4a:09:51:b8:0b:bf:96:06:74:02:e4:dc:8f:5f:55:2a:27:02:
8c:83:ea:eb:ab:cf:2d:84:34:c4:31:ac:28:8e:99:41:00:fd:
e3:7d:ec:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:15 2024 by rpki-client on console-ams.rpki-client.org