Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/EUWe2W0GSs2JOlkQ9eTXzX6Tdt0.roa
File: EUWe2W0GSs2JOlkQ9eTXzX6Tdt0.roa (raw, json)
Hash identifier: P4zZW49DvcAzzmC3xT4NE9j90G9xu4R58Azvw9tUyHw=
Subject key identifier: 11:45:9E:D9:6D:06:4A:CD:89:3A:59:10:F5:E4:D7:CD:7E:93:76:DD
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01905818313A1C113ECDACBFA4B821874C76
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/EUWe2W0GSs2JOlkQ9eTXzX6Tdt0.roa
Signing time: Thu 27 Jun 2024 05:08:18 +0000
ROA not before: Thu 27 Jun 2024 05:08:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 27 Jun 2024 06:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:58:18:31:3a:1c:11:3e:cd:ac:bf:a4:b8:21:87:4c:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 27 05:08:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=11459ed96d064acd893a5910f5e4d7cd7e9376dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:33:8d:62:c3:50:fa:de:14:33:8b:a0:a0:cf:
3b:44:56:2d:80:e8:68:d9:f7:cd:30:4f:fe:75:1b:
de:9a:24:86:31:64:bb:13:d6:1e:43:3e:8d:4b:34:
4a:aa:e7:20:05:b0:b5:ce:c9:85:fd:52:47:52:b9:
0e:54:c3:4a:44:c6:4b:c4:e5:4e:86:d8:a6:25:e4:
90:e3:e1:68:f1:cd:18:21:c0:f5:95:a2:e9:0d:0e:
d6:55:35:47:48:ba:c3:1a:e1:47:f1:af:1d:85:b2:
ad:22:47:2d:1d:ef:5d:43:db:4a:04:73:fa:35:07:
43:43:dc:67:82:5b:93:a4:19:e8:c2:8e:75:56:06:
ab:67:2f:e4:8c:c4:ed:59:22:36:3d:11:25:65:a8:
37:28:29:05:68:86:3c:8a:bb:d7:bb:71:d5:2a:c2:
0e:82:7b:4a:55:a5:24:b7:c0:6f:63:ab:a8:83:7e:
3f:3d:1a:05:80:15:d8:98:fa:93:8f:35:14:d2:36:
a8:09:fb:ee:aa:6a:0a:4e:39:20:fc:e9:b5:fc:d9:
3c:3b:6b:1b:1a:58:73:df:38:72:3a:e6:fe:a5:15:
60:8c:14:1b:79:22:9f:34:fa:35:ba:d4:7d:01:04:
1f:9c:8c:21:86:65:9f:fb:41:95:f7:0f:b6:bb:30:
d3:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:45:9E:D9:6D:06:4A:CD:89:3A:59:10:F5:E4:D7:CD:7E:93:76:DD
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/EUWe2W0GSs2JOlkQ9eTXzX6Tdt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
43:98:c9:6d:4c:46:d9:52:a4:2c:ed:6d:cb:b0:e6:e5:1a:28:
84:7d:c1:1b:95:24:c4:de:c1:c4:03:91:59:ba:3a:39:fc:21:
69:fa:78:43:56:99:de:db:1f:d2:1b:fb:ea:51:72:ee:a8:18:
b2:91:ba:40:9c:0b:b7:33:69:27:fb:4b:b2:db:ba:5c:06:f5:
de:04:a0:01:8d:26:c3:f0:6e:fc:5a:49:4b:bb:0f:89:82:42:
73:2c:b5:da:fd:b2:c7:72:b1:7c:83:95:f3:ff:29:b2:40:19:
2e:00:8d:b5:4c:ba:c2:5e:a2:99:31:4d:27:8c:4f:9b:46:77:
0b:ce:f6:3d:81:d4:25:e3:86:4f:a8:68:ba:31:f8:c1:26:e8:
03:bd:4f:cf:ad:f8:bb:c1:4a:06:0a:f8:e8:d8:bd:54:0b:bc:
14:00:c8:78:a1:d7:45:d7:16:cb:37:74:9e:de:75:92:ef:42:
f2:83:e1:89:04:d3:36:91:a7:0b:8a:4b:62:c9:d3:5b:a1:05:
dc:5f:47:5f:a1:68:60:59:88:42:23:4e:ea:34:e9:c8:12:09:
71:09:0b:de:1a:bc:67:01:56:5b:09:76:56:21:70:36:49:3f:
ab:f4:39:09:bc:e5:0f:07:a1:6e:ea:92:71:d4:64:02:bf:58:
56:73:a2:dc
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZBYGDE6HBE+zay/pLghh0x2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjI3MDUwODE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMTQ1OWVkOTZkMDY0YWNkODkzYTU5MTBmNWU0ZDdjZDdlOTM3NmRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjzONYsNQ+t4UM4ugoM87RFYtgOho
2ffNME/+dRvemiSGMWS7E9YeQz6NSzRKqucgBbC1zsmF/VJHUrkOVMNKRMZLxOVO
htimJeSQ4+Fo8c0YIcD1laLpDQ7WVTVHSLrDGuFH8a8dhbKtIkctHe9dQ9tKBHP6
NQdDQ9xngluTpBnowo51VgarZy/kjMTtWSI2PRElZag3KCkFaIY8irvXu3HVKsIO
gntKVaUkt8BvY6uog34/PRoFgBXYmPqTjzUU0jaoCfvuqmoKTjkg/Om1/Nk8O2sb
Glhz3zhyOub+pRVgjBQbeSKfNPo1utR9AQQfnIwhhmWf+0GV9w+2uzDT9QIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFBFFntltBkrNiTpZEPXk181+k3bdMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvRVVXZTJXMEdTczJKT2xrUTllVFh6WDZUZHQwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAEOYyW1MRtlSpCztbcuw
5uUaKIR9wRuVJMTewcQDkVm6Ojn8IWn6eENWmd7bH9Ib++pRcu6oGLKRukCcC7cz
aSf7S7LbulwG9d4EoAGNJsPwbvxaSUu7D4mCQnMstdr9ssdysXyDlfP/KbJAGS4A
jbVMusJeopkxTSeMT5tGdwvO9j2B1CXjhk+oaLox+MEm6AO9T8+t+LvBSgYK+OjY
vVQLvBQAyHih10XXFss3dJ7edZLvQvKD4YkE0zaRpwuKS2LJ01uhBdxfR1+haGBZ
iEIjTuo06cgSCXEJC94avGcBVlsJdlYhcDZJP6v0OQm85Q8HoW7qknHUZAK/WFZz
otw=
-----END CERTIFICATE-----
Generated at Thu Jun 27 12:26:56 2024 by rpki-client on console-ams.rpki-client.org