Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/1-W9djonJ7RYbdMXU6HAPBnz0Apk.roa
File: 1-W9djonJ7RYbdMXU6HAPBnz0Apk.roa (raw, json)
Hash identifier: sg0NsEcIHqe+8APQLXchVpN+hSqJVgnhvRYFEhuTCmQ=
Subject key identifier: F9:6F:5D:8E:89:C9:ED:16:1B:74:C5:D4:E8:70:0F:06:7C:F4:02:99
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01901D4EFDF902744098D58735D036337521
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/1-W9djonJ7RYbdMXU6HAPBnz0Apk.roa
Signing time: Sat 15 Jun 2024 19:10:34 +0000
ROA not before: Sat 15 Jun 2024 19:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 15 Jun 2024 20:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1d:4e:fd:f9:02:74:40:98:d5:87:35:d0:36:33:75:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 15 19:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f96f5d8e89c9ed161b74c5d4e8700f067cf40299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:5e:51:dc:ab:ff:c6:64:46:f2:ce:20:9a:0d:
b7:12:52:f3:70:2d:01:59:6c:b4:d4:8a:67:26:34:
54:89:b4:d4:2e:5e:99:e7:21:af:7d:0a:bc:40:64:
13:ae:aa:3f:4f:7c:31:44:08:b6:74:f7:3e:80:0b:
e8:27:5b:2a:15:c4:cf:e0:86:62:53:5d:4c:0b:43:
c6:0e:3c:7f:68:3f:f0:62:37:d8:0a:21:42:d5:04:
65:cf:e8:b1:f2:26:a5:a2:80:19:bb:1c:1f:83:26:
02:16:76:28:34:ed:59:48:1c:47:d8:a4:1f:fc:8e:
bb:f3:82:d7:2b:79:97:9f:04:24:5d:63:ed:05:6a:
4a:04:71:2f:35:47:db:c4:5e:2a:04:60:3d:d8:73:
e7:6a:b3:da:51:78:87:bf:e4:4c:c6:e1:33:86:cb:
a2:f7:11:a5:84:94:dc:c8:e8:bd:7e:3f:8e:26:c9:
73:d3:0a:12:ff:f0:0f:83:52:6a:4c:25:7e:19:69:
60:9a:f5:38:42:ca:cf:4f:4d:8a:d9:1b:eb:bf:65:
62:30:27:a5:0b:a0:3f:a6:12:5c:0e:16:d7:be:02:
46:85:a8:fb:22:5c:c7:c8:9f:60:1a:e6:84:e4:b4:
a3:c5:9f:57:25:1e:ac:82:50:6a:ba:e8:62:86:e1:
af:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:6F:5D:8E:89:C9:ED:16:1B:74:C5:D4:E8:70:0F:06:7C:F4:02:99
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/1-W9djonJ7RYbdMXU6HAPBnz0Apk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
67:6a:cd:f8:1a:52:c2:73:5d:6a:53:5d:db:5a:86:65:9c:eb:
91:8e:b5:7e:62:ba:f6:c9:9c:72:26:3d:19:19:50:11:9c:05:
ee:6a:ef:a9:79:e8:1f:e8:45:03:00:31:6e:5b:8d:45:77:d9:
2f:c1:6d:13:4e:4b:ec:b0:af:82:c6:66:d0:5d:fe:60:0f:e0:
41:fb:46:98:69:b5:b2:aa:7b:a7:e2:d2:e0:0c:18:92:6e:a6:
01:27:34:c8:36:22:e5:86:76:10:b8:1f:59:1d:11:7f:e5:a6:
6c:14:f9:3a:60:ed:eb:3d:41:f9:84:ca:d2:77:20:d2:2b:4f:
19:a6:8a:d6:89:75:16:9f:80:71:3b:80:06:58:b6:78:4e:d6:
95:a3:64:78:2f:54:d1:e2:14:d8:79:e3:ad:8c:25:4b:2a:07:
d7:0b:a5:69:18:ea:d3:98:b7:89:49:68:68:44:b1:be:48:a1:
6e:7b:c2:c0:7a:79:c8:26:0b:85:7c:f6:21:4e:ab:f4:89:15:
93:00:83:1e:b4:6d:96:34:f7:2a:ac:26:48:83:69:37:6a:bc:
20:ee:64:c3:ec:44:e4:77:ef:cf:8d:d6:da:ef:10:1e:52:f9:
c6:b3:fd:12:84:e0:e6:90:95:13:d4:e5:18:80:05:0c:58:5f:
b8:71:93:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 01:50:39 2024 by rpki-client on console.sobornost.net