Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/zmtDLzb-g-O-jqi05CdwM04Q3sM.roa
File: zmtDLzb-g-O-jqi05CdwM04Q3sM.roa (raw, json)
Hash identifier: FV/8/9Dc2bwA9cbkCFGtIxXIeMCkIZx6vMmy/bybxAc=
Subject key identifier: CE:6B:43:2F:36:FE:83:E3:BE:8E:A8:B4:E4:27:70:33:4E:10:DE:C3
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190961F55D5877F1826D17D6F9EDDF15A3B
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/zmtDLzb-g-O-jqi05CdwM04Q3sM.roa
Signing time: Tue 09 Jul 2024 06:12:34 +0000
ROA not before: Tue 09 Jul 2024 06:12:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 09 Jul 2024 07:05:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:96:1f:55:d5:87:7f:18:26:d1:7d:6f:9e:dd:f1:5a:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 9 06:12:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ce6b432f36fe83e3be8ea8b4e42770334e10dec3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:48:ea:d4:6f:4d:6d:04:01:b9:b9:9e:37:00:
5e:76:2d:c3:76:e2:c6:e0:7e:6c:d1:69:e5:bf:a2:
bb:86:8d:ad:6a:2f:02:c5:98:18:d8:ab:6f:77:98:
70:b4:0d:98:e2:86:1b:ce:80:50:b2:4c:3e:d1:41:
b4:e7:8a:8d:ee:47:a0:8d:35:63:be:9f:bb:c7:d2:
88:dc:a3:78:59:94:22:2f:31:e3:b4:f3:85:7f:94:
d2:5e:f9:63:ee:ad:7b:27:f0:5d:f4:5a:6f:6b:f2:
39:79:4c:18:f4:57:2f:84:29:d4:f7:8c:62:76:6d:
4f:0e:f5:22:3f:c4:d9:56:eb:ce:a3:b4:a7:e1:06:
b0:7a:0c:d4:a9:9b:df:e0:73:ba:e1:4b:9c:2f:bf:
85:10:41:0d:4e:1c:20:aa:af:65:86:42:8f:26:0e:
9c:ed:87:67:4a:cc:d4:f3:9b:09:56:86:ed:c3:24:
3e:9e:4a:c9:ec:c2:42:e9:ae:74:28:3e:51:54:36:
64:7a:3f:7b:98:94:98:ef:ef:7d:cd:fe:36:ba:20:
3b:98:86:5e:ce:26:b0:56:f7:cb:db:61:a8:4c:19:
30:d8:4a:ca:1d:94:06:0c:8d:f3:a1:68:99:dc:10:
47:86:4d:2c:a8:39:50:e5:d9:51:a8:a2:6d:94:37:
ab:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:6B:43:2F:36:FE:83:E3:BE:8E:A8:B4:E4:27:70:33:4E:10:DE:C3
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/zmtDLzb-g-O-jqi05CdwM04Q3sM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
18:7a:99:2e:83:c4:7b:83:84:5f:36:ff:d4:ec:df:b4:b6:fd:
1c:ed:14:a1:97:df:f3:02:83:6e:43:6d:cf:48:6c:1b:83:eb:
2e:de:2b:55:af:a9:7a:56:a8:2a:2c:8c:e1:c3:f3:38:64:1f:
79:07:8f:56:da:eb:58:54:ef:8b:70:c2:c3:ed:33:ed:b6:2a:
d1:97:1f:e5:de:61:b9:4b:ec:2d:fb:98:34:64:1d:30:a7:3f:
8f:9b:85:57:d1:9f:7a:6e:d2:b3:24:0a:a8:e7:0b:3b:58:94:
2e:77:6a:45:18:84:ae:0f:61:83:eb:2c:01:b6:4d:be:f9:90:
7d:6c:62:fe:39:f9:50:8d:ad:af:09:8d:a4:11:35:63:22:a0:
2f:20:57:a0:96:e2:88:1c:d0:6f:62:3a:d5:17:38:e3:21:62:
09:1a:49:27:36:cb:bc:21:9e:1d:7c:ec:b6:b2:52:91:e7:42:
42:e4:d5:b0:42:94:47:82:dc:27:cb:74:e8:75:7b:4f:35:33:
12:76:50:8c:2d:e0:40:09:63:16:6f:0f:87:e6:ed:cd:34:04:
00:ac:68:9b:73:03:9d:9a:d8:76:98:04:5a:bc:fb:b9:b4:0a:
2f:96:02:a9:f4:4a:22:73:00:24:27:8d:f4:58:1b:73:13:65:
4f:a8:79:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:36 2025 by rpki-client