Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/nJ5dRtYGP-Os-JLdzZKk16j2DCw.roa
File: nJ5dRtYGP-Os-JLdzZKk16j2DCw.roa (raw, json)
Hash identifier: 0mw/Gxyub3NNEgLJdf/GnNe4HIj9hlsFO7UW96FUhvg=
Subject key identifier: 9C:9E:5D:46:D6:06:3F:E3:AC:F8:92:DD:CD:92:A4:D7:A8:F6:0C:2C
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019003C5361A2D7DC9F48879EFF2896E6F20
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/nJ5dRtYGP-Os-JLdzZKk16j2DCw.roa
Signing time: Mon 10 Jun 2024 20:09:34 +0000
ROA not before: Mon 10 Jun 2024 20:09:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Jun 2024 21:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:03:c5:36:1a:2d:7d:c9:f4:88:79:ef:f2:89:6e:6f:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 10 20:09:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9c9e5d46d6063fe3acf892ddcd92a4d7a8f60c2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e7:6a:c2:f3:d6:62:1d:b2:cf:3d:e0:b7:97:
7e:33:72:a2:75:96:3c:fd:9a:35:5e:73:53:58:31:
17:93:7c:bb:64:27:7a:c4:b7:c9:ee:29:39:92:b1:
8f:7f:3e:59:c2:7e:8d:5e:5b:ad:49:9a:a4:6e:df:
bc:e8:30:b1:94:01:a3:01:cf:8e:4f:6f:68:98:be:
43:b6:f0:09:c4:d2:11:47:eb:e2:ec:dd:75:27:ad:
8e:c9:64:f2:67:da:8c:e7:a9:33:40:23:1a:21:ad:
19:a0:70:d1:5c:10:74:18:e0:11:56:a0:c2:2e:a6:
f1:ec:21:04:24:da:85:8a:34:34:0c:23:6d:ad:8b:
14:df:50:13:81:e3:1b:97:a6:6d:e7:1f:0c:0a:ea:
cf:bd:d8:3c:b0:99:90:38:37:bc:ce:3f:fc:2b:2a:
7d:32:85:e3:83:83:14:52:b7:0d:c8:c2:11:b9:d2:
88:db:ec:6a:9a:80:2e:a0:3d:f1:5e:ea:44:c2:56:
db:cd:b7:76:ce:91:2c:70:b2:b0:92:c5:79:32:23:
73:66:cc:b6:2e:39:8e:e9:72:24:3f:87:38:0c:49:
04:c1:0d:89:5a:87:28:9f:e1:a9:72:5a:57:79:1d:
de:28:37:3e:f4:8b:84:c3:2c:fe:93:ac:e0:63:c8:
6f:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:9E:5D:46:D6:06:3F:E3:AC:F8:92:DD:CD:92:A4:D7:A8:F6:0C:2C
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/nJ5dRtYGP-Os-JLdzZKk16j2DCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
94:20:34:02:4b:b8:a4:f5:d0:eb:33:29:f9:d9:f7:c2:fd:32:
f5:00:e0:ee:90:b5:d8:03:a3:2e:41:e6:60:f0:c8:c5:bb:6c:
3d:26:5d:d9:a4:c3:e3:68:b9:85:e2:70:c9:d9:3d:51:00:39:
b6:f5:2c:7f:38:18:56:31:d2:9c:df:ab:02:5d:dc:bb:a8:bb:
4a:bf:b0:a4:5d:64:a2:ab:a2:85:39:a4:96:44:c8:52:a4:1a:
2a:e7:05:5f:a0:bb:34:2f:d2:8c:94:ae:45:fa:24:ce:38:a4:
3c:0d:7c:05:59:80:f2:55:3a:29:ad:1c:27:f7:cc:b6:65:6a:
07:3a:ac:d3:3a:02:7d:b4:f2:0f:a1:65:10:58:9b:b0:00:b8:
9e:26:0a:85:32:30:ac:64:a6:c6:be:85:45:3b:cf:2a:f8:94:
c9:9e:17:37:fb:4e:63:f9:b8:ec:87:f1:67:5d:ce:4d:97:e6:
37:0c:2e:92:17:71:16:2a:2e:e6:b9:93:1f:af:a3:5c:4f:84:
4b:82:ef:0b:ea:9c:6f:05:2c:8d:ee:52:41:2d:8f:78:1e:f5:
0b:d8:d0:dd:2b:5a:7f:16:28:d2:56:89:9b:90:9e:4d:4a:71:
85:f3:58:3e:3b:02:79:73:c5:69:b3:60:06:a6:bd:6d:d3:e9:
74:17:97:0c
-----BEGIN CERTIFICATE-----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Generated at Mon Jun 10 22:19:48 2024 by rpki-client on console-fra.rpki-client.org