Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/C3Naly8YaQP-L4gKD6u0uCNh6v0.roa
File: C3Naly8YaQP-L4gKD6u0uCNh6v0.roa (raw, json)
Hash identifier: uGzHXZ29OB4x7wf0/VZ/tcKgYHZ/nCmN7AoTvu1yh2c=
Subject key identifier: 0B:73:5A:97:2F:18:69:03:FE:2F:88:0A:0F:AB:B4:B8:23:61:EA:FD
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01901ED1587AEA6EAFFE2B435583D31653E6
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/C3Naly8YaQP-L4gKD6u0uCNh6v0.roa
Signing time: Sun 16 Jun 2024 02:12:34 +0000
ROA not before: Sun 16 Jun 2024 02:12:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 16 Jun 2024 03:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1e:d1:58:7a:ea:6e:af:fe:2b:43:55:83:d3:16:53:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 16 02:12:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0b735a972f186903fe2f880a0fabb4b82361eafd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:be:75:da:87:38:d5:8a:74:d2:21:17:09:6c:
30:40:a1:90:43:85:0a:55:15:2f:df:0b:09:29:3f:
f9:2b:ef:ad:02:27:6e:dd:f3:51:a1:c2:4f:b6:c7:
c4:33:ff:7a:0f:df:05:79:8f:45:4d:40:7f:ec:4d:
bf:0f:3c:e9:e6:7c:f4:0c:75:fa:18:57:79:7a:53:
ac:ba:e8:47:70:cf:14:bf:30:36:6c:30:ed:96:c9:
25:29:55:51:de:fd:30:dd:fa:e3:95:1d:91:d7:20:
8c:63:be:69:39:09:3f:d1:3f:f4:25:98:3d:db:7a:
f6:04:b3:86:cb:20:c4:1f:19:32:8a:24:70:6b:8f:
88:47:9d:3b:b6:bc:6a:4f:eb:3f:a0:6a:42:c2:f2:
69:97:0b:7f:4e:3f:95:1b:83:9d:22:58:e9:6b:e1:
8f:55:57:c7:1e:4d:55:5f:fc:25:02:6e:52:3f:5b:
21:f3:eb:4b:a8:22:46:42:ac:43:73:b1:cc:7b:f3:
dc:e9:1a:2b:6f:d9:b8:02:b8:ab:be:f0:93:b6:d1:
93:72:a4:3b:cf:32:d5:e3:e0:ea:03:5f:46:9c:bd:
43:45:ab:b2:16:0c:f2:91:d1:c5:19:19:4e:ac:1b:
79:6f:66:be:7f:b1:75:30:e7:57:40:89:4b:38:5b:
75:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:73:5A:97:2F:18:69:03:FE:2F:88:0A:0F:AB:B4:B8:23:61:EA:FD
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/C3Naly8YaQP-L4gKD6u0uCNh6v0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
02:e9:3e:4a:fe:db:b3:bf:04:e2:24:3e:ee:97:a0:23:4f:ad:
ff:a8:c8:52:8e:03:da:b8:b3:19:ac:83:9a:21:fe:76:6e:4c:
e8:8b:8a:d2:88:c0:7a:87:c1:af:63:26:a4:56:6f:4a:df:da:
1e:fd:26:0d:13:8f:a8:c2:8e:16:e4:14:8e:d2:29:b8:08:71:
8e:bd:72:a3:7e:80:0b:6a:6e:c7:2a:aa:cf:fe:39:4d:19:4f:
cb:ce:8d:e4:20:8a:6b:d1:3a:46:fb:79:a9:e8:8a:20:6f:13:
fe:ff:30:e9:76:a2:c7:cd:50:52:49:8c:ff:b0:45:49:87:51:
06:57:eb:42:be:7b:cf:01:1c:c8:3f:5a:fc:2e:65:d3:09:7c:
ae:13:da:6e:3b:de:cd:8c:eb:1f:42:bf:60:d7:ba:1c:c3:56:
63:f7:34:2b:e7:86:62:7f:6d:c9:82:e9:d6:84:f0:b6:0e:23:
d0:0f:38:2e:ed:db:b9:3f:a1:86:ba:15:36:ad:4a:6d:96:98:
15:15:58:1e:86:17:9c:aa:56:9e:8c:7f:a8:12:89:1f:18:9e:
83:f7:39:7a:ac:f2:45:a8:58:79:c2:c6:e2:df:41:27:43:89:
ea:97:3d:8e:b1:0f:32:40:d8:aa:50:7c:48:6a:8d:91:fe:90:
87:63:dc:b7
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZAe0Vh66m6v/itDVYPTFlPmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjE2MDIxMjM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYjczNWE5NzJmMTg2OTAzZmUyZjg4MGEwZmFiYjRiODIzNjFlYWZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuL512oc41Yp00iEXCWwwQKGQQ4UK
VRUv3wsJKT/5K++tAidu3fNRocJPtsfEM/96D98FeY9FTUB/7E2/Dzzp5nz0DHX6
GFd5elOsuuhHcM8UvzA2bDDtlsklKVVR3v0w3frjlR2R1yCMY75pOQk/0T/0JZg9
23r2BLOGyyDEHxkyiiRwa4+IR507trxqT+s/oGpCwvJplwt/Tj+VG4OdIljpa+GP
VVfHHk1VX/wlAm5SP1sh8+tLqCJGQqxDc7HMe/Pc6Rorb9m4ArirvvCTttGTcqQ7
zzLV4+DqA19GnL1DRauyFgzykdHFGRlOrBt5b2a+f7F1MOdXQIlLOFt1NQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFAtzWpcvGGkD/i+ICg+rtLgjYer9MB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvQzNOYWx5OFlhUVAtTDRnS0Q2dTB1Q05oNnYwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAALpPkr+27O/BOIkPu6X
oCNPrf+oyFKOA9q4sxmsg5oh/nZuTOiLitKIwHqHwa9jJqRWb0rf2h79Jg0Tj6jC
jhbkFI7SKbgIcY69cqN+gAtqbscqqs/+OU0ZT8vOjeQgimvROkb7eanoiiBvE/7/
MOl2osfNUFJJjP+wRUmHUQZX60K+e88BHMg/WvwuZdMJfK4T2m473s2M6x9Cv2DX
uhzDVmP3NCvnhmJ/bcmC6daE8LYOI9APOC7t27k/oYa6FTatSm2WmBUVWB6GF5yq
Vp6Mf6gSiR8YnoP3OXqs8kWoWHnCxuLfQSdDieqXPY6xDzJA2KpQfEhqjZH+kIdj
3Lc=
Generated at Sun Jun 16 06:42:33 2024 by rpki-client on console-ams.rpki-client.org