Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/xMli1Iak6D7rEbkDUauGNecp9a8.roa
File: xMli1Iak6D7rEbkDUauGNecp9a8.roa (raw, json)
Hash identifier: fScSQMISS2VqdRvxQd3UxAi2i0hMDheiA8BlUEe2sOo=
Subject key identifier: C4:C9:62:D4:86:A4:E8:3E:EB:11:B9:03:51:AB:86:35:E7:29:F5:AF
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FC932998D2874083E05023B1509A967C7
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/xMli1Iak6D7rEbkDUauGNecp9a8.roa
Signing time: Thu 30 May 2024 11:11:27 +0000
ROA not before: Thu 30 May 2024 11:11:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 30 May 2024 12:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c9:32:99:8d:28:74:08:3e:05:02:3b:15:09:a9:67:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 30 11:11:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c4c962d486a4e83eeb11b90351ab8635e729f5af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:75:6a:1a:6e:e8:c2:91:9a:31:a2:27:5d:1d:
9c:5f:eb:0b:56:91:85:14:a1:1a:81:22:d4:11:3d:
8e:91:e7:78:cb:7b:06:d0:77:ea:aa:76:84:0d:47:
d5:c7:1a:05:10:09:0c:b9:fa:71:79:e8:33:ec:89:
4f:55:0b:3d:a9:72:19:2d:9a:c9:d9:34:50:8f:0d:
db:79:da:8b:32:77:36:35:a3:41:e9:b3:b8:0d:96:
e2:da:80:0c:50:08:62:0a:b4:1e:31:26:ba:05:95:
39:b4:3a:ba:00:ab:d1:38:55:cf:97:ed:a9:f0:ac:
3d:35:98:09:e3:12:4e:4b:d2:6e:aa:06:01:65:4b:
7f:e0:f6:18:b9:50:ba:04:1d:4e:52:40:0a:7a:31:
6e:83:74:30:db:fc:f0:db:43:74:53:32:e8:9a:1d:
83:65:dd:33:45:48:ee:ab:0a:41:dc:95:32:c5:59:
3e:26:6e:e6:02:9f:44:b4:e5:69:c5:a0:f8:f5:29:
f4:26:a7:3b:3f:0b:85:73:7d:71:da:5e:c8:57:0f:
0c:cc:41:86:bc:55:97:23:40:1a:d1:dd:2f:f0:d9:
ee:f1:9a:69:d3:d2:8d:e8:84:45:64:7e:13:b5:24:
f9:34:d1:71:4b:c2:f3:de:7f:bc:b5:4d:db:9d:76:
f1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:C9:62:D4:86:A4:E8:3E:EB:11:B9:03:51:AB:86:35:E7:29:F5:AF
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/xMli1Iak6D7rEbkDUauGNecp9a8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
72:66:ce:c4:50:14:3c:6a:38:5a:1e:54:d2:0a:09:f3:5a:5c:
d8:4d:95:56:a9:cd:82:bc:58:c8:60:33:d2:a9:00:03:e9:4a:
da:38:74:51:3d:b6:2c:1e:28:e2:e3:d1:a9:a0:59:29:19:36:
90:87:23:24:51:3a:39:15:a8:fd:bb:75:08:06:55:f3:c1:73:
d8:c1:30:f2:8d:c9:ff:fe:d7:89:3b:1a:83:7d:8f:76:08:2e:
f7:fc:b7:61:a3:b7:46:65:58:2a:4e:c4:e6:bd:02:7f:89:db:
3f:fe:1d:d1:41:6d:df:b9:68:1c:f4:3b:73:e8:33:97:1f:ac:
6c:44:06:4b:b7:20:2b:98:18:8d:18:e0:90:b0:9e:4d:0e:59:
3d:22:30:62:83:58:d8:0c:63:8f:54:91:36:c2:cf:93:8e:e5:
23:79:e2:af:80:41:e5:e7:ab:65:a9:df:b5:7f:12:c3:86:63:
b6:da:9a:e1:42:92:f0:b5:2a:7b:d3:04:f2:47:cd:0c:69:ea:
a2:4d:d8:67:e3:9b:5c:c6:cf:76:f1:be:ad:33:e1:69:b2:6c:
15:35:7f:33:85:b3:1c:aa:58:72:19:1b:7f:9c:ca:28:62:af:
3f:04:11:46:d0:29:8a:c5:d2:4b:52:07:5e:bc:4a:5b:8e:77:
13:28:34:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 30 22:31:06 2024 by rpki-client on console.sobornost.net