Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/oBY_7tzg2pKri4nNgg6ngTJcMu8.roa
File: oBY_7tzg2pKri4nNgg6ngTJcMu8.roa (raw, json)
Hash identifier: ODGyTcr2SirZUV4u2EsD3pBFTZIaA47qeKGfrRErlSY=
Subject key identifier: A0:16:3F:EE:DC:E0:DA:92:AB:8B:89:CD:82:0E:A7:81:32:5C:32:EF
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FF9E1ACE97337A5C8E7DDDFB5F54D5402
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/oBY_7tzg2pKri4nNgg6ngTJcMu8.roa
Signing time: Sat 08 Jun 2024 22:04:27 +0000
ROA not before: Sat 08 Jun 2024 22:04:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18f:f9e1:78c6/128 maxlen: 128
Validation: Failed, certificate revoked on Sat 08 Jun 2024 22:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f9:e1:ac:e9:73:37:a5:c8:e7:dd:df:b5:f5:4d:54:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 8 22:04:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a0163feedce0da92ab8b89cd820ea781325c32ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:dd:ca:84:d1:5b:26:c1:f7:1c:1a:62:95:6c:
8d:e0:d4:10:30:37:67:0d:19:6c:42:35:3f:21:a0:
38:77:89:97:01:c0:62:50:5a:74:06:da:50:3b:9e:
72:4d:5f:ac:00:4d:61:6e:86:5a:2c:f5:88:d1:92:
65:e5:2f:0b:b7:11:fa:61:aa:75:28:f2:2d:12:46:
0b:e3:c9:dc:31:78:82:88:61:10:39:d7:46:1f:93:
b2:2c:b6:cb:51:67:04:1f:eb:94:8c:64:a8:fd:05:
8e:91:44:84:d5:c8:2a:f8:0b:59:9d:d5:2b:54:aa:
79:67:32:de:f1:d1:22:88:6e:8b:49:40:c1:23:ba:
21:9a:bf:51:c6:78:a0:75:00:19:5b:ea:77:7e:0a:
96:6a:ca:4d:25:99:ca:4f:8f:1d:79:3a:e9:82:b4:
ce:61:15:b2:64:20:a2:95:9c:13:c3:21:53:32:9c:
17:1b:6f:e5:1f:5a:9d:7c:7b:85:1c:be:05:58:cc:
b3:d0:43:9b:d0:e6:8e:6a:ea:a0:ef:6e:7f:8b:33:
83:43:e9:24:bd:b8:e8:bf:8d:16:b5:97:11:3d:e1:
b0:41:bc:4f:be:cc:21:7c:09:6c:ff:44:5b:08:9e:
69:e2:c6:94:76:b8:22:0a:a2:81:6d:63:cc:75:f7:
2d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:16:3F:EE:DC:E0:DA:92:AB:8B:89:CD:82:0E:A7:81:32:5C:32:EF
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/oBY_7tzg2pKri4nNgg6ngTJcMu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3d:a4:0a:99:33:e6:48:75:2a:83:9d:bf:c1:b0:d3:0d:66:c4:
00:ce:8e:9c:89:44:06:eb:13:26:3f:19:a9:f1:f1:b9:fd:3a:
4d:aa:33:11:13:a0:88:4f:ad:51:fb:27:06:a6:00:0b:dd:fa:
5c:61:cc:a2:a7:43:6d:93:e6:fb:80:87:30:d9:5c:82:f9:10:
0c:b2:0d:ca:d5:0f:12:49:e4:c7:62:c6:44:00:8e:19:63:0b:
fd:83:22:43:13:4e:a5:54:72:16:56:11:a0:e8:78:0b:2d:43:
de:bf:5a:8c:da:d2:e5:9f:1a:b4:c4:37:4a:62:cb:a5:74:88:
3a:c9:87:eb:85:27:bc:87:22:3c:bd:1d:98:3b:b9:97:db:a3:
9b:5e:40:6f:5b:b6:f2:69:f9:04:fc:11:7e:f4:42:6b:7f:5d:
6e:b7:eb:e4:f2:6f:41:03:83:0c:a2:e6:7f:1b:8c:32:06:72:
0e:79:ff:0b:5b:de:0b:5a:62:f1:3a:04:73:cb:83:3c:2c:22:
6c:31:53:56:ee:ab:6f:42:94:ed:cc:a3:8f:c9:be:e0:15:d9:
e1:e8:87:d3:3e:c6:ba:0b:3c:94:c0:a6:a6:e5:b8:2e:90:7c:
5c:f9:35:a3:9c:11:d1:a8:b3:86:5e:62:97:36:82:ad:d5:a2:
fc:67:d2:91
-----BEGIN CERTIFICATE-----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Generated at Sat Jun 8 23:16:14 2024 by rpki-client on console-fra.rpki-client.org