Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/j-5bjZbWucHlUU65jzBU57y-GHQ.roa
File: j-5bjZbWucHlUU65jzBU57y-GHQ.roa (raw, json)
Hash identifier: 7+jeeThC2Fgkgu9v4ArOq2YeFWkvCZLmYjem/rE8Wmg=
Subject key identifier: 8F:EE:5B:8D:96:D6:B9:C1:E5:51:4E:B9:8F:30:54:E7:BC:BE:18:74
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01902BE742F67020A8F3BD4464FF7DD039F0
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/j-5bjZbWucHlUU65jzBU57y-GHQ.roa
Signing time: Tue 18 Jun 2024 15:11:34 +0000
ROA not before: Tue 18 Jun 2024 15:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 18 Jun 2024 16:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:2b:e7:42:f6:70:20:a8:f3:bd:44:64:ff:7d:d0:39:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 18 15:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8fee5b8d96d6b9c1e5514eb98f3054e7bcbe1874
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:4f:99:ec:ad:1c:1c:84:be:c1:4c:73:09:5a:
0d:fa:db:15:39:6f:fa:28:63:55:33:4f:37:44:6f:
55:ec:bd:69:2d:25:6a:7f:64:7c:39:c9:9c:f5:67:
b6:af:11:bd:4e:f7:56:2b:27:d8:e9:92:58:7d:46:
c8:cb:45:92:50:2e:be:00:1a:2c:db:f6:c4:a2:f3:
c9:3a:a8:9d:b6:37:39:b9:75:e7:e7:9f:61:cf:85:
5a:2c:92:e3:cd:50:01:5f:d2:11:3e:81:d2:9d:f3:
ac:49:46:7b:33:1a:bf:b5:73:ea:90:70:7a:c6:0f:
d3:a3:9e:73:fb:cd:82:80:f6:25:42:5d:09:16:de:
96:09:29:4b:20:45:d1:a0:4c:c6:bb:5a:39:5c:93:
3a:6d:dc:eb:ed:aa:a2:4e:fd:da:09:22:28:cf:ed:
32:f7:6c:1a:1b:f4:26:e8:97:b4:e4:88:d3:4a:f7:
21:28:71:28:6e:df:79:36:e8:94:48:2e:e5:85:f1:
38:80:26:92:c9:52:0f:67:49:68:08:be:38:bd:7d:
07:04:89:b8:6a:e1:de:db:8a:db:99:4a:86:63:fe:
7a:43:df:e7:3f:26:d9:c4:20:97:c9:3e:72:31:32:
ea:7d:6d:e4:82:d1:ce:c2:15:fd:78:32:14:d5:ac:
41:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:EE:5B:8D:96:D6:B9:C1:E5:51:4E:B9:8F:30:54:E7:BC:BE:18:74
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/j-5bjZbWucHlUU65jzBU57y-GHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
85:f4:22:7b:c7:63:73:00:3c:d4:64:34:72:cd:0a:0e:ed:81:
70:17:76:90:1c:e6:d7:6e:cf:16:34:55:9b:c8:d6:36:6b:63:
be:d8:ed:28:40:2f:f1:54:86:0c:e9:22:97:46:20:f7:41:0d:
0b:77:76:13:3a:bd:1e:db:6e:55:3f:e0:b2:1d:e5:91:6e:cb:
f9:d1:b0:a1:d3:ed:e1:6d:7b:cd:1e:5e:58:66:cd:5c:ac:8d:
90:c7:7b:de:a7:54:20:30:e7:59:e6:9a:e5:d0:f9:fb:85:f5:
3e:2a:4c:07:9a:65:cb:59:bd:79:d7:a0:00:84:09:63:b5:3a:
35:33:99:ac:cf:4b:d7:87:63:5f:a0:13:d1:0b:6c:e1:fd:ca:
13:c8:bc:74:90:d2:f4:0f:73:35:79:44:d7:03:32:9e:0a:8d:
05:22:bc:f9:74:c2:2f:6c:84:37:5b:dd:e2:b6:51:c0:44:94:
36:15:c1:3e:c9:90:74:e2:84:67:13:b8:88:c7:70:d0:f7:4e:
ee:10:31:71:61:dd:8a:d3:49:2b:f6:2b:6a:1d:83:9a:f3:fc:
42:d0:2b:c0:20:4f:c7:cc:7a:65:d1:df:a7:1f:28:7c:1c:8a:
9c:47:d6:83:af:5b:5e:28:b8:5b:e1:ad:74:e1:17:28:16:bc:
4f:39:81:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 18 20:03:11 2024 by rpki-client on console-fra.rpki-client.org