Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/0JyAnO_CVfb3GQIpb-9gGr0BgII.roa
File: 0JyAnO_CVfb3GQIpb-9gGr0BgII.roa (raw, json)
Hash identifier: JCYlTzauDpOE3OHXHEtgqRiZ/cN02S4ylhEf2Nc7TXI=
Subject key identifier: D0:9C:80:9C:EF:C2:55:F6:F7:19:02:29:6F:EF:60:1A:BD:01:80:82
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01903823477B6E499FCA0A99EEEA4B92F84A
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/0JyAnO_CVfb3GQIpb-9gGr0BgII.roa
Signing time: Fri 21 Jun 2024 00:12:34 +0000
ROA not before: Fri 21 Jun 2024 00:12:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 21 Jun 2024 01:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:38:23:47:7b:6e:49:9f:ca:0a:99:ee:ea:4b:92:f8:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 21 00:12:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d09c809cefc255f6f71902296fef601abd018082
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:2e:ae:27:66:df:08:dd:79:7d:62:a7:c2:35:
8d:38:c8:45:4e:43:29:83:27:14:56:8a:e3:df:f3:
db:83:73:b5:f2:c9:e1:c7:09:74:f1:ea:3c:e9:68:
86:fa:af:ba:98:c9:fa:bd:a4:19:7e:d7:ed:fc:19:
d2:b5:80:84:8b:75:02:70:5f:c8:f4:26:eb:1c:03:
93:97:c9:7f:45:d8:cd:97:7d:39:98:99:65:46:23:
90:59:98:02:6a:50:92:f2:a9:5a:71:87:1c:5a:4e:
3b:b8:8e:b1:e8:35:4d:c4:58:87:06:7d:3b:42:be:
10:1d:ca:9c:c0:ad:4d:6d:11:3a:1b:84:7d:8f:94:
40:d1:85:ab:1a:15:5e:84:f9:51:c0:f0:4d:24:e6:
49:b4:7b:23:e4:bd:78:4f:3c:49:bd:88:70:70:93:
07:5a:96:34:1d:e9:ad:09:17:87:1c:d0:4c:58:84:
96:72:64:29:8f:33:c3:81:c6:1d:c4:28:ef:35:5f:
c8:84:6b:26:a7:8f:3c:8a:ff:f2:7f:1e:e1:e2:b2:
60:1a:ea:80:5e:bc:b7:ec:38:d3:05:76:b9:ff:b1:
5b:69:fb:1b:80:42:1d:84:d4:ef:33:05:4e:f2:73:
63:ca:62:50:29:d6:a4:db:2e:4e:55:39:3d:e9:3e:
81:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:9C:80:9C:EF:C2:55:F6:F7:19:02:29:6F:EF:60:1A:BD:01:80:82
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/0JyAnO_CVfb3GQIpb-9gGr0BgII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
28:5c:8f:2a:09:65:46:75:9e:18:a8:94:ee:d4:eb:62:93:21:
eb:39:ef:3d:e6:43:b5:93:80:24:97:43:e7:15:82:0d:1a:ca:
11:ca:bd:00:e3:4c:7f:bd:82:f5:24:b1:ea:5f:17:5c:7c:90:
b2:51:fb:5f:ee:14:5a:5d:a7:ef:f9:20:7b:f7:ce:71:75:bb:
8d:fe:4d:42:c4:83:5d:4d:39:14:c7:a7:e5:c0:c8:8b:c5:db:
ad:51:ce:84:63:4a:77:2e:3e:6e:f0:56:bf:d9:8b:b7:5b:92:
b3:d7:4f:e5:a7:47:97:db:da:a5:25:c4:72:42:0d:a4:3a:9b:
67:b5:60:f4:52:b5:13:45:3d:6e:8d:2e:ca:49:06:cc:f6:96:
30:99:fe:2d:93:a9:ff:78:7d:37:83:dd:6b:e1:58:be:dc:37:
b2:89:af:b8:01:d1:1d:04:14:33:03:7b:9e:4d:ef:34:a9:b4:
cb:73:29:c1:f6:d0:16:27:30:b2:c1:19:1d:94:67:75:8e:a5:
7d:09:f1:11:cd:d9:84:7b:18:8b:60:3f:18:b0:e9:1a:e8:c4:
bb:85:af:d4:08:8a:e8:ef:e4:a2:23:77:ea:13:5b:af:99:ae:
90:11:49:be:b0:1c:4f:0a:e6:5b:8a:6a:73:92:b2:97:94:56:
cb:c4:c3:74
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZA4I0d7bkmfygqZ7upLkvhKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjIxMDAxMjM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMDljODA5Y2VmYzI1NWY2ZjcxOTAyMjk2ZmVmNjAxYWJkMDE4MDgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuC6uJ2bfCN15fWKnwjWNOMhFTkMp
gycUVorj3/Pbg3O18snhxwl08eo86WiG+q+6mMn6vaQZftft/BnStYCEi3UCcF/I
9CbrHAOTl8l/RdjNl305mJllRiOQWZgCalCS8qlacYccWk47uI6x6DVNxFiHBn07
Qr4QHcqcwK1NbRE6G4R9j5RA0YWrGhVehPlRwPBNJOZJtHsj5L14TzxJvYhwcJMH
WpY0HemtCReHHNBMWISWcmQpjzPDgcYdxCjvNV/IhGsmp488iv/yfx7h4rJgGuqA
Xry37DjTBXa5/7FbafsbgEIdhNTvMwVO8nNjymJQKdak2y5OVTk96T6BrwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFNCcgJzvwlX29xkCKW/vYBq9AYCCMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvMEp5QW5PX0NWZmIzR1FJcGItOWdHcjBCZ0lJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAChcjyoJZUZ1nhiolO7U
62KTIes57z3mQ7WTgCSXQ+cVgg0ayhHKvQDjTH+9gvUksepfF1x8kLJR+1/uFFpd
p+/5IHv3znF1u43+TULEg11NORTHp+XAyIvF261RzoRjSncuPm7wVr/Zi7dbkrPX
T+WnR5fb2qUlxHJCDaQ6m2e1YPRStRNFPW6NLspJBsz2ljCZ/i2Tqf94fTeD3Wvh
WL7cN7KJr7gB0R0EFDMDe55N7zSptMtzKcH20BYnMLLBGR2UZ3WOpX0J8RHN2YR7
GItgPxiw6RroxLuFr9QIiujv5KIjd+oTW6+ZrpARSb6wHE8K5luKanOSspeUVsvE
w3Q=
Generated at Fri Jun 21 02:28:46 2024 by rpki-client on console-fra.rpki-client.org