Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/pOFohvG84dfgoci-Yu4auq1CAaE.roa
File: pOFohvG84dfgoci-Yu4auq1CAaE.roa (raw, json)
Hash identifier: /ditCEnMLLasu+Ag+A499LOmuEZy6I88QUYNWOs3gb8=
Subject key identifier: A4:E1:68:86:F1:BC:E1:D7:E0:A1:C8:BE:62:EE:1A:BA:AD:42:01:A1
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190814CE51F2596F4F70D2AE58C042BEFEB
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/pOFohvG84dfgoci-Yu4auq1CAaE.roa
Signing time: Fri 05 Jul 2024 05:10:18 +0000
ROA not before: Fri 05 Jul 2024 05:10:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 05 Jul 2024 06:04:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:81:4c:e5:1f:25:96:f4:f7:0d:2a:e5:8c:04:2b:ef:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 5 05:10:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a4e16886f1bce1d7e0a1c8be62ee1abaad4201a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:e6:67:bc:7d:d7:c6:f2:ad:3d:ba:38:6e:22:
ee:aa:5a:86:f5:8b:38:c6:26:9a:ac:73:8e:6f:f4:
8f:56:ff:95:5a:74:1b:21:40:3d:24:1e:c6:b7:03:
23:09:f0:c3:10:d5:4f:25:d1:4a:1d:8b:52:cb:55:
a3:82:de:5c:e0:16:9e:cc:dd:d9:3b:17:7e:0f:8a:
36:d1:7e:bb:8d:b7:8d:42:a4:a8:2c:83:90:b3:52:
8a:af:48:ed:ab:6f:26:a2:96:58:cb:18:57:92:06:
6d:2f:56:0d:bc:fb:dd:64:4f:b2:0a:25:e1:b9:bc:
64:b5:a8:76:4a:d3:c6:fe:22:29:8a:96:50:84:4f:
04:a1:a5:f4:9e:d6:1b:ae:1b:f8:24:80:eb:5a:db:
82:aa:5e:67:79:26:db:32:a4:34:7f:90:8e:d2:cd:
0c:ae:04:92:66:30:02:81:1e:77:c6:ac:54:50:63:
f8:13:8d:cd:b4:0d:ad:b5:e5:c3:89:68:cf:76:c1:
bb:c5:4d:af:84:94:10:8c:c3:ab:51:ba:06:ed:2e:
cb:96:9a:51:4b:12:ed:e7:b7:0a:16:18:e9:c9:e1:
64:68:ac:90:cc:74:3d:83:fa:de:7a:64:02:c3:93:
06:10:8e:a6:03:df:bc:9f:af:6d:2d:57:88:87:48:
fc:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:E1:68:86:F1:BC:E1:D7:E0:A1:C8:BE:62:EE:1A:BA:AD:42:01:A1
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/pOFohvG84dfgoci-Yu4auq1CAaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5c:3a:1f:cb:63:06:dc:82:90:05:54:59:2c:8e:e8:59:74:45:
ca:e0:3a:ab:6c:79:bc:a0:2a:cc:40:86:48:36:d0:b6:ae:4d:
63:e4:a1:89:50:d4:db:14:5b:c6:23:0a:6c:73:66:ed:b0:8c:
6e:51:d6:75:23:c7:21:ee:9a:72:14:c1:6d:da:7c:20:bb:a5:
5c:35:dd:76:88:f9:bb:07:83:0b:c7:97:7c:7e:75:24:b1:fa:
f5:c5:10:3f:f2:fa:f3:03:f4:97:ee:aa:b2:13:ba:0c:f7:ec:
18:64:3c:51:66:86:2f:ea:c6:85:3c:d2:59:0f:eb:e7:09:16:
38:80:3a:18:3d:c0:46:43:20:3e:a9:27:58:18:99:a7:05:18:
51:db:ad:0a:1b:e5:ae:47:73:53:e9:3b:2e:dd:d0:c0:b8:42:
33:10:d3:b9:aa:e5:18:83:31:ff:ae:bf:52:5d:94:06:15:a7:
b0:64:99:79:9a:62:39:8f:56:81:4a:b7:35:a7:40:30:98:3c:
b5:c3:19:25:93:50:2b:f0:5d:b4:ef:dd:6a:0c:f5:3b:19:e5:
b8:b7:0f:00:6f:ba:1f:0d:b8:01:d3:bf:cb:b8:f1:27:df:7b:
f7:58:bd:e4:44:a1:9b:b2:7d:4f:ca:b4:f1:ce:eb:10:19:6b:
f7:b7:68:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 5 07:32:22 2024 by rpki-client on console-ams.rpki-client.org