Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/1DlJHPQAFWkoUs4MV4Wh7DhHlbk.roa
File: 1DlJHPQAFWkoUs4MV4Wh7DhHlbk.roa (raw, json)
Hash identifier: G+X0gQNqprL+gkFKZOCNJXgcHsglGL83N6g+455FDc8=
Subject key identifier: D4:39:49:1C:F4:00:15:69:28:52:CE:0C:57:85:A1:EC:38:47:95:B9
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190754A8DBAAC5D9C3262E469463BCB620C
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/1DlJHPQAFWkoUs4MV4Wh7DhHlbk.roa
Signing time: Tue 02 Jul 2024 21:12:18 +0000
ROA not before: Tue 02 Jul 2024 21:12:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jul 2024 22:04:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:75:4a:8d:ba:ac:5d:9c:32:62:e4:69:46:3b:cb:62:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 2 21:12:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d439491cf40015692852ce0c5785a1ec384795b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d4:c4:1d:b7:cd:ea:fa:1e:8e:ee:cb:2a:c5:
83:b8:3a:ff:71:ac:7d:95:98:d7:c8:46:5a:4f:69:
f7:26:6f:b4:2f:02:db:36:f8:88:b9:c5:89:52:a0:
ee:26:06:6c:c6:d5:59:50:b9:61:bc:3b:e7:01:36:
83:03:49:f4:7a:75:ae:99:6d:f0:80:54:53:c2:0a:
91:11:da:d8:33:49:d8:b6:7c:60:eb:b5:48:52:2f:
2e:40:78:1a:46:51:da:e6:71:dc:4e:70:34:cd:e7:
18:85:1c:f6:f5:0e:c0:b9:6d:42:3d:8d:f1:8b:9c:
0a:68:aa:fc:3c:87:e0:7e:44:a0:09:e0:22:6a:12:
74:a7:65:ff:7a:36:21:cc:d6:f5:a4:db:e2:a9:7d:
76:6b:15:7f:98:83:a8:5c:63:ed:51:7a:fd:4c:6e:
be:59:88:34:3a:56:04:b3:ff:9f:58:50:2b:11:61:
d0:56:8a:7f:bd:b0:7d:3c:c6:66:b2:bf:86:de:23:
d1:82:a0:bc:36:62:08:75:1c:42:14:ad:87:d4:1c:
ee:57:74:f7:8c:89:1d:19:40:8e:5b:32:62:b2:32:
90:48:57:b3:f5:a1:c7:63:95:56:ee:04:cc:34:f2:
da:0a:a7:87:bc:ae:67:67:fb:cc:cd:a6:96:62:ff:
af:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:39:49:1C:F4:00:15:69:28:52:CE:0C:57:85:A1:EC:38:47:95:B9
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/1DlJHPQAFWkoUs4MV4Wh7DhHlbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
12:6e:33:a0:a9:4c:0e:73:b9:60:1d:71:36:aa:43:62:97:8a:
e7:4a:61:cc:f6:57:77:ff:95:7a:4f:78:ce:8d:51:a6:93:46:
6c:7e:88:0f:b6:53:f6:19:07:8c:0b:e7:e3:43:ce:fa:ef:f1:
b8:b7:5f:d0:62:41:36:9a:b0:64:e4:0f:17:3f:fb:b2:59:8a:
93:05:b3:24:b6:ac:88:7d:3f:34:07:7d:2c:28:4e:57:be:0a:
cf:8b:36:ed:94:16:36:96:7b:b9:ee:c9:27:5c:93:ee:29:e2:
c0:22:e5:b8:f6:be:d4:2c:07:b8:a5:1b:a5:5c:4d:07:1c:98:
6e:34:a6:59:79:14:55:7d:54:1a:89:64:b2:42:20:26:4c:28:
7e:e1:e4:8a:37:23:6a:bf:7a:d6:49:40:29:fc:ec:6a:bb:32:
98:fe:d8:66:24:f7:92:55:57:24:71:70:11:5c:d2:1b:2d:40:
ba:18:1d:13:fe:3d:bd:33:8e:61:84:2d:37:a9:98:ce:8c:ee:
06:3b:22:bb:0a:3a:46:8a:af:d2:d5:3a:4a:ad:41:04:17:96:
0e:47:83:37:7e:ce:b9:68:f7:27:d6:e5:27:43:c3:de:18:10:
af:05:5e:10:8d:18:bd:d8:bc:5e:f2:c1:bd:75:c2:b8:e2:8a:
3e:89:80:fd
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZB1So26rF2cMmLkaUY7y2IMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNzAyMjExMjE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNDM5NDkxY2Y0MDAxNTY5Mjg1MmNlMGM1Nzg1YTFlYzM4NDc5NWI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtNTEHbfN6voeju7LKsWDuDr/cax9
lZjXyEZaT2n3Jm+0LwLbNviIucWJUqDuJgZsxtVZULlhvDvnATaDA0n0enWumW3w
gFRTwgqREdrYM0nYtnxg67VIUi8uQHgaRlHa5nHcTnA0zecYhRz29Q7AuW1CPY3x
i5wKaKr8PIfgfkSgCeAiahJ0p2X/ejYhzNb1pNviqX12axV/mIOoXGPtUXr9TG6+
WYg0OlYEs/+fWFArEWHQVop/vbB9PMZmsr+G3iPRgqC8NmIIdRxCFK2H1BzuV3T3
jIkdGUCOWzJisjKQSFez9aHHY5VW7gTMNPLaCqeHvK5nZ/vMzaaWYv+v9wIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFNQ5SRz0ABVpKFLODFeFoew4R5W5MB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvMURsSkhQUUFGV2tvVXM0TVY0V2g3RGhIbGJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBABJuM6CpTA5zuWAdcTaq
Q2KXiudKYcz2V3f/lXpPeM6NUaaTRmx+iA+2U/YZB4wL5+NDzvrv8bi3X9BiQTaa
sGTkDxc/+7JZipMFsyS2rIh9PzQHfSwoTle+Cs+LNu2UFjaWe7nuySdck+4p4sAi
5bj2vtQsB7ilG6VcTQccmG40pll5FFV9VBqJZLJCICZMKH7h5Io3I2q/etZJQCn8
7Gq7Mpj+2GYk95JVVyRxcBFc0hstQLoYHRP+Pb0zjmGELTepmM6M7gY7IrsKOkaK
r9LVOkqtQQQXlg5Hgzd+zrlo9yfW5SdDw94YEK8FXhCNGL3YvF7ywb11wrjiij6J
gP0=
Generated at Tue Jul 2 23:17:34 2024 by rpki-client on console-fra.rpki-client.org