Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/5_R9taNkD5128Z5qQmSq9kY0eMU.roa
File: 5_R9taNkD5128Z5qQmSq9kY0eMU.roa (raw, json)
Hash identifier: KgYpN/1UkAfQs6Agk6B6GZszLChleFaAXOM7YwtKbUo=
Subject key identifier: E7:F4:7D:B5:A3:64:0F:9D:76:F1:9E:6A:42:64:AA:F6:46:34:78:C5
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01903DEBAF553C75E617DFD2B11694894200
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/5_R9taNkD5128Z5qQmSq9kY0eMU.roa
Signing time: Sat 22 Jun 2024 03:09:34 +0000
ROA not before: Sat 22 Jun 2024 03:09:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 22 Jun 2024 04:05:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:3d:eb:af:55:3c:75:e6:17:df:d2:b1:16:94:89:42:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 22 03:09:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7f47db5a3640f9d76f19e6a4264aaf6463478c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:c6:aa:b5:97:b0:cd:ea:0b:e8:bb:63:10:34:
12:b1:05:9e:51:91:f9:66:83:5c:6d:bb:ad:00:09:
af:c3:cf:9b:ad:46:b8:14:d0:44:79:b7:ce:4a:9f:
53:b7:83:01:32:5b:ee:96:8e:cd:9e:67:c8:4d:26:
1d:e5:a2:3a:e1:3d:86:33:61:b0:4e:68:e3:c0:2f:
0c:c8:40:7d:fe:42:44:ea:ab:b9:31:04:99:fd:d5:
65:8b:9f:98:b8:fe:bc:18:ea:3a:49:f9:4b:8b:3f:
9b:77:ad:be:e4:02:0d:ef:81:3f:3b:e2:cb:b8:8d:
68:aa:06:ac:ed:33:46:cf:a4:48:d3:32:a7:ec:4a:
9d:ed:a7:34:be:5a:97:83:c2:ea:be:75:42:cc:9f:
38:80:48:3e:41:98:e4:47:39:91:81:31:b2:6f:17:
23:9e:93:ca:4a:a3:0b:e1:32:40:8f:35:79:41:69:
ac:52:63:fc:90:0d:c7:b4:96:30:47:a7:81:41:b6:
0f:36:02:38:95:b5:79:68:24:c0:d9:8b:3d:f0:7b:
6c:ac:3a:bb:ee:ff:6d:3f:9b:17:58:d1:6e:7e:7f:
08:28:43:8a:dd:3b:db:27:36:01:74:da:fd:06:fd:
4d:7a:66:3d:ab:2b:a5:d9:d9:e2:3d:d1:01:50:90:
a7:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:F4:7D:B5:A3:64:0F:9D:76:F1:9E:6A:42:64:AA:F6:46:34:78:C5
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/5_R9taNkD5128Z5qQmSq9kY0eMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5f:ed:0c:2f:44:21:9e:d9:fc:c3:d0:bd:6f:13:c7:f7:21:ea:
33:52:00:e8:5d:bc:9d:d4:3b:55:ae:ff:08:17:3c:e2:ed:33:
f2:05:45:c7:37:94:89:be:61:a8:91:b6:1f:a5:0c:52:16:96:
fe:c7:ff:e2:07:e6:b6:29:02:6e:7e:6d:d1:d9:3e:2e:09:ec:
03:5d:78:ec:37:10:79:67:e7:f6:57:c4:b8:ae:da:08:7d:28:
d6:e9:d7:4c:db:f9:1b:78:a0:f0:ef:f4:dc:75:63:e1:7e:b4:
ce:c7:13:e3:76:6e:bc:a6:b5:b5:f9:a9:f8:37:b2:c1:d5:69:
48:50:4c:d6:f4:c8:c6:98:03:25:89:00:69:ab:d4:20:94:e7:
96:df:5d:7a:ac:4e:ef:1e:70:de:7f:80:8a:cb:30:cc:7b:ee:
22:ba:b9:53:a2:be:f9:18:96:e2:11:81:31:b4:5e:02:bb:e4:
80:38:ae:d1:58:c4:6e:7e:83:fe:83:c6:27:dd:bd:4c:58:e8:
cd:02:91:ee:26:57:a8:fe:31:84:1b:e7:1d:d7:f0:63:bf:a9:
ad:b5:b1:c3:37:9d:d0:60:6c:60:d9:67:d7:aa:1f:b1:d3:ae:
41:c1:47:18:4c:c5:7a:49:4f:df:c9:fd:4f:ca:20:7b:9e:a8:
58:b5:99:0f
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZA9669VPHXmF9/SsRaUiUIAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjIyMDMwOTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlN2Y0N2RiNWEzNjQwZjlkNzZmMTllNmE0MjY0YWFmNjQ2MzQ3OGM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3MaqtZewzeoL6LtjEDQSsQWeUZH5
ZoNcbbutAAmvw8+brUa4FNBEebfOSp9Tt4MBMlvulo7NnmfITSYd5aI64T2GM2Gw
TmjjwC8MyEB9/kJE6qu5MQSZ/dVli5+YuP68GOo6SflLiz+bd62+5AIN74E/O+LL
uI1oqgas7TNGz6RI0zKn7Eqd7ac0vlqXg8LqvnVCzJ84gEg+QZjkRzmRgTGybxcj
npPKSqML4TJAjzV5QWmsUmP8kA3HtJYwR6eBQbYPNgI4lbV5aCTA2Ys98HtsrDq7
7v9tP5sXWNFufn8IKEOK3TvbJzYBdNr9Bv1NemY9qyul2dniPdEBUJCn9wIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFOf0fbWjZA+ddvGeakJkqvZGNHjFMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvNV9SOXRhTmtENTEyOFo1cVFtU3E5a1kwZU1VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAF/tDC9EIZ7Z/MPQvW8T
x/ch6jNSAOhdvJ3UO1Wu/wgXPOLtM/IFRcc3lIm+YaiRth+lDFIWlv7H/+IH5rYp
Am5+bdHZPi4J7ANdeOw3EHln5/ZXxLiu2gh9KNbp10zb+Rt4oPDv9Nx1Y+F+tM7H
E+N2brymtbX5qfg3ssHVaUhQTNb0yMaYAyWJAGmr1CCU55bfXXqsTu8ecN5/gIrL
MMx77iK6uVOivvkYluIRgTG0XgK75IA4rtFYxG5+g/6DxifdvUxY6M0Cke4mV6j+
MYQb5x3X8GO/qa21scM3ndBgbGDZZ9eqH7HTrkHBRxhMxXpJT9/J/U/KIHueqFi1
mQ8=
Generated at Sat Jun 22 05:18:14 2024 by rpki-client on console-fra.rpki-client.org