Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/pvXLscdLfZIxEJia7qYLTed8uV0.roa
File: pvXLscdLfZIxEJia7qYLTed8uV0.roa (raw, json)
Hash identifier: YWkXqX+PpWX9sme27ZgA9AAem4R/w5v2MSzqnwrIocY=
Subject key identifier: A6:F5:CB:B1:C7:4B:7D:92:31:10:98:9A:EE:A6:0B:4D:E7:7C:B9:5D
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01902C8A395568C19BD01CDAE9E8E182C9F6
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/pvXLscdLfZIxEJia7qYLTed8uV0.roa
Signing time: Tue 18 Jun 2024 18:09:34 +0000
ROA not before: Tue 18 Jun 2024 18:09:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 18 Jun 2024 19:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:2c:8a:39:55:68:c1:9b:d0:1c:da:e9:e8:e1:82:c9:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 18 18:09:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a6f5cbb1c74b7d923110989aeea60b4de77cb95d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:65:02:3f:eb:de:f8:9f:37:e8:03:53:5d:e0:
62:65:c4:88:d7:6e:f5:64:1c:0a:71:4e:9c:6b:3a:
c4:6c:22:c5:ca:b7:cc:90:5a:46:36:8f:20:3a:3b:
10:14:1e:57:10:ae:e7:b8:d0:49:54:39:14:dc:e1:
b4:4d:8f:f8:01:3c:3d:ea:99:6f:fd:f3:6c:39:e2:
85:bb:1e:8a:b9:4e:ac:89:37:e5:3a:6f:c0:b2:88:
3b:4e:26:a6:db:54:13:e4:de:7d:be:ce:24:99:89:
b4:e4:fe:28:33:e8:dc:25:72:37:4b:33:fb:76:35:
0a:bd:79:8a:19:02:7d:55:e1:7c:7b:a8:32:13:ed:
f3:04:8a:cd:ee:f5:87:f8:2f:2a:a0:eb:cc:91:f3:
a7:a8:9a:17:83:cc:e9:d9:0a:24:af:d8:ed:68:e2:
64:b7:50:76:94:b5:5f:eb:b0:6f:a4:6f:b6:36:21:
11:52:ca:32:8f:f1:62:3b:23:56:13:3f:1c:69:78:
31:31:78:df:57:cf:eb:9a:fd:fe:03:42:15:c0:61:
fc:24:e0:3e:3f:d7:54:29:0e:94:fb:f7:dd:2a:0b:
76:7c:da:55:52:d9:93:4c:5f:c1:72:82:d3:e7:44:
67:f0:84:a9:85:62:a3:2e:11:83:8a:e5:f3:d0:c1:
d9:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:F5:CB:B1:C7:4B:7D:92:31:10:98:9A:EE:A6:0B:4D:E7:7C:B9:5D
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/pvXLscdLfZIxEJia7qYLTed8uV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
17:4a:89:3b:1f:ae:7c:69:b3:f6:33:49:17:4c:c3:da:6c:d6:
16:4e:b4:98:f7:41:ff:10:c2:05:66:5b:bb:30:f2:0b:d7:c2:
35:a0:d1:07:21:24:aa:af:c5:17:f9:6b:78:e7:bc:86:d9:90:
73:67:52:ac:0f:3e:79:99:82:33:b1:f4:6c:50:a2:58:93:ab:
9b:44:e2:d5:50:25:88:37:a8:a5:20:1f:6e:f1:f4:13:7b:e8:
ce:f9:e3:48:0b:2d:46:d3:ca:59:30:b9:96:23:5f:1b:11:7c:
ed:26:a9:b4:c2:cc:dc:04:eb:a1:55:e1:c9:31:10:00:e6:87:
42:a4:37:ac:16:71:3f:eb:66:6c:2f:f0:28:4a:4f:69:bb:f8:
1c:57:3c:9e:0d:fa:68:04:d5:a8:61:5a:01:cc:ef:26:db:05:
88:bd:b9:58:28:04:f5:09:8c:9e:18:a4:51:83:47:0d:df:05:
97:e8:87:7e:ac:97:b8:2e:ed:27:bb:31:3e:59:78:7a:f3:7d:
6a:20:06:c8:06:82:80:8a:cc:48:6a:1d:78:b4:5f:b9:49:a9:
56:ca:4f:ea:8a:15:a9:63:48:26:43:fe:8e:80:0e:ea:a9:6b:
fb:5e:bc:32:ab:00:1b:86:27:50:d1:98:b5:94:09:57:48:94:
10:d9:9b:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 19 07:20:09 2024 by rpki-client on console.sobornost.net