Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/j8Y2OT1GxM7AfGhjL-ZGQYaUFz8.roa
File: j8Y2OT1GxM7AfGhjL-ZGQYaUFz8.roa (raw, json)
Hash identifier: rit0ASYUgjwe8S4K2JXO1x1ClnNKTmOsYjP0t+oFgto=
Subject key identifier: 8F:C6:36:39:3D:46:C4:CE:C0:7C:68:63:2F:E6:46:41:86:94:17:3F
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01905AAA749190A2A2C2F5A71697F131F7C0
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/j8Y2OT1GxM7AfGhjL-ZGQYaUFz8.roa
Signing time: Thu 27 Jun 2024 17:07:18 +0000
ROA not before: Thu 27 Jun 2024 17:07:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 27 Jun 2024 18:04:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:5a:aa:74:91:90:a2:a2:c2:f5:a7:16:97:f1:31:f7:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 27 17:07:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8fc636393d46c4cec07c68632fe646418694173f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:e5:9b:25:f6:08:9c:3f:5e:e2:51:36:67:7a:
f0:d2:0a:0e:36:1e:9f:d8:05:d4:92:ca:ac:fd:91:
aa:15:45:cc:45:39:28:ab:c1:f7:79:24:79:64:6b:
cc:b6:14:46:d8:dc:21:f4:79:c7:02:65:19:bc:5a:
67:66:d8:f3:91:92:ba:07:d9:18:83:ff:de:81:85:
cc:e5:a9:e1:0e:94:b7:1d:da:8d:69:fc:92:b3:e7:
92:ba:bf:b5:2e:62:49:14:9d:bf:09:51:1f:07:dd:
b5:76:c7:0e:32:cf:60:d0:0c:3c:2f:83:34:92:d4:
ef:44:42:54:92:28:27:f2:ae:cc:43:78:0f:4d:98:
aa:cd:20:b4:1b:5f:71:e3:2a:18:36:48:b3:4d:0f:
db:d5:01:de:66:2e:5b:d9:73:84:34:c3:d0:d5:d1:
e2:20:6d:1c:a6:10:b1:20:d7:a1:ff:f6:45:1c:6a:
eb:07:e1:c5:38:8b:72:93:6f:52:38:45:a0:a6:99:
1e:6a:45:aa:95:7b:80:4a:f5:a8:7f:dd:64:d7:e7:
cc:da:1a:72:84:5d:97:71:1e:d8:24:f1:25:29:76:
09:d5:c0:5d:7d:31:0f:4c:84:12:a5:f4:43:f1:39:
00:34:fc:f2:28:a2:9a:46:bc:04:02:33:fe:95:86:
7a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:C6:36:39:3D:46:C4:CE:C0:7C:68:63:2F:E6:46:41:86:94:17:3F
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/j8Y2OT1GxM7AfGhjL-ZGQYaUFz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
48:ae:51:08:67:45:e0:a3:81:ce:24:17:31:a8:5b:3d:13:21:
31:09:8f:c6:82:8b:e7:21:3d:f1:72:18:b6:f7:4e:21:02:32:
6e:8a:7e:71:fc:2c:f8:b9:6b:fe:3a:72:cf:73:d9:2f:ff:64:
3a:16:8b:63:7b:18:36:85:9d:8c:94:04:3c:ec:a9:5f:97:81:
84:c9:0d:49:c8:d4:8a:6c:8a:d3:00:8e:9f:8a:98:24:49:18:
ad:fb:03:54:42:0d:c4:08:69:3e:a8:09:cd:dc:06:4d:b6:98:
82:b5:41:f5:de:b3:3d:a6:ad:47:99:68:c8:b3:e9:1b:63:e8:
2e:b7:59:0c:3e:3f:82:b9:a6:e5:02:80:f7:f9:12:8e:f0:df:
d3:13:13:97:27:e3:d7:2e:bc:cb:a1:fc:39:71:7d:b9:f9:23:
66:ed:ef:f2:c0:df:26:43:3d:08:ff:e6:c4:8c:12:ad:d5:c2:
08:62:c1:84:80:c9:88:ba:95:d5:0c:52:31:0e:6f:bd:0a:e8:
b1:01:48:40:33:23:76:6f:50:2a:a6:e5:ea:5b:5c:81:59:d4:
db:dd:5e:77:b1:9d:de:98:98:77:85:f7:49:ca:35:85:f4:0e:
4d:f5:b3:ac:00:ff:ba:38:cb:9c:de:24:38:f0:95:a8:fd:1b:
b3:e0:32:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 28 00:01:52 2024 by rpki-client on console-fra.rpki-client.org