Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/hQf_5j9Lv825oM8bCn4kksIrO2M.roa
File: hQf_5j9Lv825oM8bCn4kksIrO2M.roa (raw, json)
Hash identifier: MlSMLQKlEGi4x2NNlPVGxCJQPthZ1OTxAI/7TpdaZp0=
Subject key identifier: 85:07:FF:E6:3F:4B:BF:CD:B9:A0:CF:1B:0A:7E:24:92:C2:2B:3B:63
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01909F8D94FA32EE6E8E94CE343042D3FC32
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/hQf_5j9Lv825oM8bCn4kksIrO2M.roa
Signing time: Thu 11 Jul 2024 02:09:34 +0000
ROA not before: Thu 11 Jul 2024 02:09:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 11 Jul 2024 03:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:9f:8d:94:fa:32:ee:6e:8e:94:ce:34:30:42:d3:fc:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 11 02:09:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8507ffe63f4bbfcdb9a0cf1b0a7e2492c22b3b63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8b:61:4e:d1:c2:09:83:e2:e1:45:97:c5:d9:
4f:44:f5:f1:b5:53:e0:fa:a4:9d:67:01:13:90:42:
14:b8:62:3f:c7:8d:9a:4b:34:c1:03:da:7e:88:82:
e5:3f:35:f8:4b:cf:b1:53:e6:18:c4:73:b3:33:1a:
25:61:47:78:a0:a3:88:8c:ba:b9:25:23:05:47:4a:
b8:c6:01:c3:04:53:53:c8:d8:c9:91:09:03:db:7d:
ef:6a:c8:56:b7:c9:76:7c:1d:5a:04:00:90:af:3a:
f9:13:bb:d3:85:0b:8f:90:14:2f:60:6c:0b:8d:6e:
4b:59:3a:bb:c7:75:0e:20:ac:40:d7:b8:e4:a0:2f:
f5:90:cf:bd:3f:72:5b:ac:c0:24:3d:26:5b:ba:9b:
3c:de:d6:23:a0:e4:96:25:fc:6e:2e:5e:10:16:40:
c7:a9:20:3e:b7:ad:b0:78:22:cb:6a:3e:16:b3:6c:
98:f6:29:1e:63:3d:35:ff:1a:90:24:6a:50:74:d4:
26:45:ee:a8:90:3c:03:9f:2e:98:3b:d6:4b:09:09:
3f:6b:8c:3d:2a:15:32:d7:6b:ff:b6:27:dd:0b:da:
c9:3c:dd:9f:41:8a:df:49:5b:88:b5:dd:1b:49:3e:
d6:73:1b:db:21:23:88:9d:11:c5:97:ac:7c:69:bc:
a0:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:07:FF:E6:3F:4B:BF:CD:B9:A0:CF:1B:0A:7E:24:92:C2:2B:3B:63
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/hQf_5j9Lv825oM8bCn4kksIrO2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
01:0b:56:f9:29:37:eb:7c:2d:54:28:1e:d3:e9:b8:b6:57:aa:
9c:2e:66:2a:c4:1f:e9:da:da:04:fc:9e:9a:93:08:61:d4:79:
ce:9d:c9:5d:68:93:92:75:87:c7:44:55:cc:d6:96:ae:b0:61:
74:36:83:7d:d3:cc:44:8e:0d:d0:86:49:d2:1f:d9:49:d4:26:
ca:3f:0e:ee:e5:12:da:68:ce:46:c4:c6:74:10:f2:8a:2b:29:
cb:40:30:51:13:58:06:2d:a2:ea:d3:88:c7:56:0a:39:a5:15:
8e:ef:0a:b1:33:be:f9:54:ba:96:04:15:87:e1:38:80:e4:cd:
15:26:22:d8:e7:d0:24:f6:5f:da:68:65:21:4b:d6:4f:a8:45:
50:d6:aa:bb:b5:39:dd:2c:ec:56:51:ca:04:a3:b9:9d:6e:bf:
2a:79:11:cf:b0:53:20:66:e0:81:fc:11:be:16:69:29:ae:98:
63:49:5b:9b:1d:33:c9:7d:75:90:1f:30:b2:31:6d:b8:26:1f:
f9:4c:f0:fe:15:02:7b:dc:a3:5c:17:09:8b:5c:4a:41:cc:c5:
89:97:0f:1a:e7:c3:4c:fd:ff:6f:11:40:a5:e3:79:fe:a6:20:
ad:ab:0e:93:76:02:4f:29:a2:a0:30:9e:fe:53:3f:f5:ea:07:
37:00:e7:78
-----BEGIN CERTIFICATE-----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Generated at Thu Jul 11 04:17:18 2024 by rpki-client on console-fra.rpki-client.org