Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/sUeBhcXmgLFQteslm7FKO3n7pXk.roa
File: sUeBhcXmgLFQteslm7FKO3n7pXk.roa (raw, json)
Hash identifier: 18VvN71RbL6jhdid/f3YTBDVN1h77Cpk+Hm4mFFNE4c=
Subject key identifier: B1:47:81:85:C5:E6:80:B1:50:B5:EB:25:9B:B1:4A:3B:79:FB:A5:79
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019080DFF22DB15CEEC8C84B418996EB9D13
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/sUeBhcXmgLFQteslm7FKO3n7pXk.roa
Signing time: Fri 05 Jul 2024 03:11:18 +0000
ROA not before: Fri 05 Jul 2024 03:11:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 05 Jul 2024 04:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:80:df:f2:2d:b1:5c:ee:c8:c8:4b:41:89:96:eb:9d:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 5 03:11:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b1478185c5e680b150b5eb259bb14a3b79fba579
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:75:15:8a:ab:71:54:31:94:ad:37:0d:7e:78:
24:33:07:2f:b7:ea:84:d7:ef:53:9d:07:be:f9:26:
58:40:2e:09:81:19:16:e8:23:0d:1f:06:12:e1:a7:
87:ea:b7:5a:d0:48:d8:40:62:41:e7:07:64:bf:6f:
55:5b:45:25:fb:a2:85:b0:52:e8:15:e3:8e:9e:61:
22:ef:8d:db:41:69:33:01:c7:84:e2:2b:fa:c3:82:
82:27:71:e1:73:c6:d9:fc:ce:29:49:db:1b:bf:92:
ed:b5:8e:05:fd:32:08:60:26:89:7f:1d:90:0d:14:
2c:c3:18:6f:15:a9:df:d1:e8:17:8c:4b:4e:f8:49:
99:2e:df:e2:2c:53:d3:00:78:ad:05:d7:82:d7:a7:
8d:f7:5c:c2:14:61:35:1c:7f:fb:e8:61:c2:f5:30:
91:d6:94:ac:5b:dc:cd:c2:fe:c3:b3:75:52:97:64:
61:c9:d9:22:c7:0a:7b:57:e2:39:d6:07:0e:5c:ae:
c6:84:6d:5e:22:c3:16:a9:0c:c0:61:2c:62:41:92:
78:4a:07:3c:28:f0:e7:1f:5b:33:34:99:e3:4d:d9:
b3:fd:b5:b6:6a:3d:02:39:ed:97:a0:c2:5e:57:4a:
10:95:d0:0f:8d:65:8c:25:17:04:40:87:ab:e1:28:
0f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:47:81:85:C5:E6:80:B1:50:B5:EB:25:9B:B1:4A:3B:79:FB:A5:79
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/sUeBhcXmgLFQteslm7FKO3n7pXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
69:d2:85:5c:4e:a6:e4:3d:2e:b0:db:45:9b:6f:05:a1:1e:49:
bf:72:84:55:b4:b7:3f:a4:bf:68:e8:d8:ab:24:5f:47:16:30:
6c:53:45:05:05:d9:8a:bd:ad:05:57:f1:a3:09:a5:79:ed:60:
c4:70:6b:fa:75:46:fd:9f:d9:63:d3:04:8b:85:32:4e:96:b9:
0b:0d:6e:3e:9e:5c:78:10:6f:34:11:f0:82:31:da:33:f7:3b:
4e:ba:ce:2d:32:86:37:ba:f0:d1:f1:01:4a:a4:7f:78:87:13:
f6:12:9b:8e:6c:7b:aa:37:4a:30:f2:82:8f:a4:d2:ba:6c:1f:
8a:ff:22:fd:3f:c5:3b:25:e4:85:2d:ea:2e:9b:0c:94:f8:12:
34:b3:26:30:21:a4:14:6b:78:73:d0:ab:a0:eb:d8:25:47:f0:
00:c3:cb:43:ae:66:5e:cb:23:b2:06:f8:f7:f6:b2:4d:ab:d8:
94:71:87:74:a8:01:b4:33:0c:5f:84:76:4f:c4:d7:5f:e7:6b:
d8:65:31:16:0b:8b:89:d4:d5:b0:1b:0d:66:ab:d8:b2:b1:68:
0f:72:89:b6:f2:0e:6e:8c:9a:cf:3c:62:dd:00:57:35:51:85:
01:de:8f:4a:1e:4f:0f:90:aa:a8:b2:f1:07:6d:5a:d4:69:e8:
65:0f:9a:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 5 05:01:36 2024 by rpki-client on console-fra.rpki-client.org