Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/o8iHxkRoDYKf9fhnghKuhHcHUY0.roa
File: o8iHxkRoDYKf9fhnghKuhHcHUY0.roa (raw, json)
Hash identifier: bXc5pG+iH3z8tor5f35UfbrPnwtrHK0N4HiEimjziK4=
Subject key identifier: A3:C8:87:C6:44:68:0D:82:9F:F5:F8:67:82:12:AE:84:77:07:51:8D
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FD56DB46C89910FCD64A2AA7406DCAEB8
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/o8iHxkRoDYKf9fhnghKuhHcHUY0.roa
Signing time: Sat 01 Jun 2024 20:11:27 +0000
ROA not before: Sat 01 Jun 2024 20:11:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 01 Jun 2024 21:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d5:6d:b4:6c:89:91:0f:cd:64:a2:aa:74:06:dc:ae:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 1 20:11:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3c887c644680d829ff5f8678212ae847707518d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:92:66:b8:4b:3b:0c:d3:4a:d6:ae:cd:8f:58:
4f:ef:3f:1f:dd:14:b2:0e:8a:14:86:97:97:d1:5f:
19:07:56:b7:28:aa:88:9d:ba:a0:40:ae:d9:5a:57:
66:50:1f:0b:7c:9f:1f:b1:e6:4b:ad:03:f9:17:a3:
48:02:dd:d3:71:5c:fe:50:44:81:fc:6b:a3:28:2d:
8b:9e:4a:28:fd:3a:f4:ef:3e:ef:5d:e9:7c:ee:06:
a7:44:0e:44:b7:df:b9:fb:2d:79:af:7c:4b:dc:7f:
90:96:d7:f5:08:ac:51:52:95:5c:d6:29:d1:89:c0:
d9:60:98:32:37:23:92:68:13:56:98:b9:24:6d:45:
42:3b:a1:eb:f6:ae:ae:8a:80:8a:cd:25:10:51:3b:
1b:4c:54:16:08:5c:f1:94:3d:d3:a8:7e:38:2a:5f:
4f:6f:1f:fd:ab:95:25:cf:75:c7:a7:44:d9:fe:26:
0d:46:54:22:25:93:f2:41:14:27:75:e0:7d:eb:08:
a5:e5:f8:2b:87:9e:37:7e:ec:31:d2:8e:b4:9c:14:
5b:98:0a:19:65:8b:79:b4:af:20:15:2a:52:75:62:
86:11:f9:57:6a:37:20:f3:fb:24:fa:da:c0:51:f7:
8a:1c:5f:79:eb:7f:a1:fc:72:fd:e3:de:29:12:18:
71:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:C8:87:C6:44:68:0D:82:9F:F5:F8:67:82:12:AE:84:77:07:51:8D
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/o8iHxkRoDYKf9fhnghKuhHcHUY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
07:95:72:49:7a:6b:51:e5:fc:35:7b:6e:1e:df:57:87:b2:f9:
9c:71:ad:6c:8c:f0:da:5f:d7:dd:7d:ff:9c:a7:ea:aa:a3:ad:
02:6b:d3:c6:f8:9a:ea:67:56:08:88:ee:b2:40:aa:86:45:42:
c0:a3:ae:d3:ba:68:09:b4:79:41:e5:ee:42:e7:b4:6c:5b:76:
87:23:91:09:f7:a1:63:b7:df:9d:1c:d6:72:63:98:c5:5d:59:
31:df:d7:6b:5f:a5:d7:e0:4d:89:a2:93:8c:1c:3c:97:4e:ff:
09:c8:d4:88:e5:51:84:9d:99:47:df:68:5a:f3:bc:3e:ae:66:
10:d6:1b:33:df:90:27:ae:b8:c5:72:e1:b4:fd:da:1f:ca:1c:
0d:01:e4:4c:a9:cf:4d:83:94:7e:56:ad:d2:76:da:1d:aa:54:
72:e3:b4:78:95:19:7b:ac:30:d7:f2:32:31:98:5a:e6:55:cf:
41:83:2a:8e:ec:5d:a7:0c:8e:14:bd:1d:34:c0:7d:95:1a:20:
e9:06:be:59:09:1f:d3:97:cb:92:6b:a8:94:bc:0e:43:4c:20:
dc:d2:fa:53:9f:f2:36:36:5d:ff:06:88:3a:8c:24:3c:62:ec:
63:2a:81:48:7b:87:8c:38:be:99:c8:e7:df:3e:23:9a:17:81:
c3:d2:56:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 02:35:44 2024 by rpki-client on console.sobornost.net