Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7pEBuB7d4xXpj1PW34CHvjmSSZ4.roa
File: 7pEBuB7d4xXpj1PW34CHvjmSSZ4.roa (raw, json)
Hash identifier: RLlZRl4wKley7SbEucb+8a0XabFpvreu8n3Im92qDeM=
Subject key identifier: EE:91:01:B8:1E:DD:E3:15:E9:8F:53:D6:DF:80:87:BE:39:92:49:9E
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01905D0887CCE4E96F9B59729D23AE13C435
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7pEBuB7d4xXpj1PW34CHvjmSSZ4.roa
Signing time: Fri 28 Jun 2024 04:09:18 +0000
ROA not before: Fri 28 Jun 2024 04:09:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 28 Jun 2024 05:04:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:5d:08:87:cc:e4:e9:6f:9b:59:72:9d:23:ae:13:c4:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 28 04:09:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee9101b81edde315e98f53d6df8087be3992499e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:97:23:9b:e4:c6:b7:7c:8e:87:7f:01:b8:3e:
fc:c0:33:c8:ba:3b:91:73:40:8c:b1:3c:86:96:15:
f2:6e:15:04:2f:8e:29:be:4b:a1:78:06:90:03:67:
10:63:ce:ae:19:d5:a0:ca:82:2e:8c:71:3d:59:d8:
4d:85:f2:b9:30:d6:df:10:b0:4c:1f:28:52:5c:fe:
b3:ce:76:c7:fb:db:08:2e:60:e4:ba:d0:a2:69:fd:
ba:34:e6:af:e6:cb:1a:a9:43:e5:9f:dc:99:ef:28:
4b:c1:14:1c:43:02:c3:02:32:f5:8f:53:eb:e0:44:
74:cb:e9:78:f4:cc:22:14:df:02:72:70:f0:96:28:
8b:a3:43:12:0e:40:9f:f7:ef:76:b8:dc:22:1e:26:
7b:f6:80:7e:79:f7:55:92:e3:21:3a:77:df:ff:e3:
48:5e:2b:d1:99:93:33:ca:40:be:b7:2f:ed:58:a2:
d9:90:68:92:0f:09:66:52:b4:87:13:06:a9:1f:8b:
41:6e:d0:78:7d:21:a1:29:92:bb:26:a2:75:19:89:
cf:01:99:a2:50:74:b8:40:36:01:65:cd:7f:e7:4f:
cb:92:c4:69:e2:6c:4c:b6:63:61:ff:95:c7:16:eb:
34:d3:49:8a:4d:dc:99:03:6b:61:33:4f:15:ed:09:
4a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:91:01:B8:1E:DD:E3:15:E9:8F:53:D6:DF:80:87:BE:39:92:49:9E
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7pEBuB7d4xXpj1PW34CHvjmSSZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
68:49:34:4e:18:39:db:05:22:81:6b:43:ab:9c:1c:f8:82:a5:
7b:73:15:c0:e2:11:f0:73:46:a7:2b:47:5d:65:6b:c6:9a:7c:
71:7c:6c:66:35:b8:17:fd:bf:2a:7a:d0:b1:33:17:87:03:5f:
f0:d6:ab:13:ff:d8:81:fd:07:6f:28:06:0a:5b:34:91:b5:fd:
1d:69:51:41:6f:20:3f:ab:0f:64:a9:3b:05:76:9f:ef:29:d1:
66:83:94:99:87:a0:a7:f2:10:2d:20:1e:e7:5f:e3:ee:ac:57:
07:bf:7f:dc:5a:bd:92:29:4c:ab:fd:16:4d:05:4a:51:f1:c0:
6c:04:2d:22:15:3a:b5:73:01:f0:09:88:07:ac:28:45:99:7b:
6b:77:c2:94:6b:40:ab:44:78:c1:e4:75:b5:62:1d:a1:7a:80:
e2:dc:83:98:3a:82:13:89:7d:f6:16:02:14:08:9f:e8:ab:6c:
70:5d:2b:04:e1:01:83:e1:1e:e9:0f:1d:a2:c2:0c:9f:d7:6c:
91:06:29:8e:ac:54:e0:49:bf:79:4c:d1:b0:63:00:e3:ad:88:
b7:d8:f3:7e:7c:6f:dd:b0:bd:29:1a:88:cf:48:3e:90:94:ed:
06:a4:7c:de:be:59:2d:e6:0f:2c:12:82:7d:53:f1:08:44:1b:
98:20:d5:0e
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZBdCIfM5Olvm1lynSOuE8Q1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjI4MDQwOTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZTkxMDFiODFlZGRlMzE1ZTk4ZjUzZDZkZjgwODdiZTM5OTI0OTllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyZcjm+TGt3yOh38BuD78wDPIujuR
c0CMsTyGlhXybhUEL44pvkuheAaQA2cQY86uGdWgyoIujHE9WdhNhfK5MNbfELBM
HyhSXP6zznbH+9sILmDkutCiaf26NOav5ssaqUPln9yZ7yhLwRQcQwLDAjL1j1Pr
4ER0y+l49MwiFN8CcnDwliiLo0MSDkCf9+92uNwiHiZ79oB+efdVkuMhOnff/+NI
XivRmZMzykC+ty/tWKLZkGiSDwlmUrSHEwapH4tBbtB4fSGhKZK7JqJ1GYnPAZmi
UHS4QDYBZc1/50/LksRp4mxMtmNh/5XHFus000mKTdyZA2thM08V7QlKywIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFO6RAbge3eMV6Y9T1t+Ah745kkmeMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvN3BFQnVCN2Q0eFhwajFQVzM0Q0h2am1TU1o0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAGhJNE4YOdsFIoFrQ6uc
HPiCpXtzFcDiEfBzRqcrR11la8aafHF8bGY1uBf9vyp60LEzF4cDX/DWqxP/2IH9
B28oBgpbNJG1/R1pUUFvID+rD2SpOwV2n+8p0WaDlJmHoKfyEC0gHudf4+6sVwe/
f9xavZIpTKv9Fk0FSlHxwGwELSIVOrVzAfAJiAesKEWZe2t3wpRrQKtEeMHkdbVi
HaF6gOLcg5g6ghOJffYWAhQIn+irbHBdKwThAYPhHukPHaLCDJ/XbJEGKY6sVOBJ
v3lM0bBjAOOtiLfY8358b92wvSkaiM9IPpCU7QakfN6+WS3mDywSgn1T8QhEG5gg
1Q4=
Generated at Fri Jun 28 08:12:26 2024 by rpki-client on console-fra.rpki-client.org