Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/jRPcjvJxV1az3mMXhS9dhHgyOn8.roa
File: jRPcjvJxV1az3mMXhS9dhHgyOn8.roa (raw, json)
Hash identifier: 9jz0xo6nebhQ4fzGd4kgwnWeoFcVE7hBJ3nBQGL2WDk=
Subject key identifier: 8D:13:DC:8E:F2:71:57:56:B3:DE:63:17:85:2F:5D:84:78:32:3A:7F
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FF3095B37372379373EA20D70B10C996F
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/jRPcjvJxV1az3mMXhS9dhHgyOn8.roa
Signing time: Fri 07 Jun 2024 14:10:27 +0000
ROA not before: Fri 07 Jun 2024 14:10:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 07 Jun 2024 15:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f3:09:5b:37:37:23:79:37:3e:a2:0d:70:b1:0c:99:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 7 14:10:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d13dc8ef2715756b3de6317852f5d8478323a7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:81:30:12:72:89:9c:50:af:5e:1a:f4:6d:de:
82:74:7e:1d:ae:21:4c:e2:22:7e:de:7e:17:24:33:
86:60:09:d5:2f:35:96:1e:c3:e0:8b:75:66:c5:58:
bb:14:43:47:93:41:25:ad:e5:b7:af:86:cf:70:75:
50:5c:52:40:b4:3b:0a:c9:9d:c3:f3:cf:54:4d:5f:
8b:2b:6c:1e:b4:85:d6:0f:e3:7c:cb:6a:65:f3:c1:
37:fe:ff:bd:55:5a:44:3a:f1:6c:8c:9b:0b:d5:a0:
31:f8:9e:72:92:a2:b9:39:d7:d7:fe:d9:f3:c1:18:
5b:d9:7f:26:86:9a:d5:e8:52:fb:77:17:86:a6:ee:
b1:60:8c:d0:a4:15:5c:b0:4e:54:09:5b:1c:26:bf:
83:4e:fd:f9:04:45:16:dd:80:5c:62:9c:41:48:19:
b9:04:8c:5f:c7:aa:7d:25:74:0e:35:bb:fd:5b:64:
c9:09:31:a5:9b:91:b0:e2:b7:5d:5f:4e:f0:98:20:
03:4a:75:96:e6:d2:a4:f7:e9:15:f7:eb:4f:e8:3b:
e6:77:c7:60:4f:57:50:a5:6a:ad:06:5e:80:39:2f:
4b:01:75:74:a4:58:a4:4f:5d:35:21:29:61:b0:12:
9a:61:ee:c8:c2:f7:b4:f1:21:c5:60:5f:b7:47:93:
7b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:13:DC:8E:F2:71:57:56:B3:DE:63:17:85:2F:5D:84:78:32:3A:7F
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/jRPcjvJxV1az3mMXhS9dhHgyOn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
06:ab:b7:4f:09:c2:db:70:dc:80:7a:1e:31:b9:79:98:39:1b:
b9:0d:4e:c2:ed:db:ad:75:f4:fd:66:16:6c:c9:62:c4:b8:63:
d8:79:41:79:c0:4c:f5:e7:a4:e9:0e:1d:87:9b:00:42:68:23:
0b:44:16:36:55:f9:09:6c:f9:f1:01:b1:bb:06:7c:e1:da:b2:
f9:6b:1c:72:8d:06:9a:27:af:6d:98:4e:09:ad:69:78:d4:2a:
70:87:43:47:b4:fb:35:94:d8:91:a5:6b:35:be:fc:9a:fe:78:
7a:f4:a4:4d:d4:8f:5a:ca:fb:d0:ed:e8:60:9f:40:dc:83:eb:
b8:c9:46:d8:ed:fe:7a:16:a2:26:5b:d2:17:b7:e0:6b:92:9a:
0c:ff:ba:8b:29:3a:b8:f3:72:6e:88:5b:5f:0c:aa:98:f9:81:
bf:55:47:ac:b6:14:d8:f4:da:32:66:19:38:1b:f4:1a:95:21:
72:c8:be:9b:0e:b4:f9:cf:cf:fc:bb:1e:0a:6f:5c:81:09:c6:
09:be:e1:53:4f:84:84:1b:44:8d:31:f9:35:db:07:ae:d0:1e:
82:17:a6:36:d7:22:44:df:c9:0f:06:0b:41:42:75:77:b4:18:
bf:f5:19:0f:c3:b9:96:94:a3:0c:1e:90:c0:98:98:d4:37:99:
fa:88:22:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 19:09:27 2024 by rpki-client on console-fra.rpki-client.org