Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/EpWBRyluA_Ovg5UvjY_eGjdFGtI.roa
File: EpWBRyluA_Ovg5UvjY_eGjdFGtI.roa (raw, json)
Hash identifier: g8ioHCzalmnNUpIvb4JI7pRxx9wIFr5P9p3eKYyWkrc=
Subject key identifier: 12:95:81:47:29:6E:03:F3:AF:83:95:2F:8D:8F:DE:1A:37:45:1A:D2
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01907436FC353541956370831E437AA6383B
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/EpWBRyluA_Ovg5UvjY_eGjdFGtI.roa
Signing time: Tue 02 Jul 2024 16:11:18 +0000
ROA not before: Tue 02 Jul 2024 16:11:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jul 2024 17:04:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:74:36:fc:35:35:41:95:63:70:83:1e:43:7a:a6:38:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 2 16:11:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=12958147296e03f3af83952f8d8fde1a37451ad2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:30:73:89:73:50:f4:29:28:e4:1f:4e:16:58:
b7:5f:be:c3:eb:e0:6a:3d:50:62:38:07:72:fb:d6:
c1:b7:fa:ad:4d:0c:44:6a:8b:ac:a6:8d:6c:a4:0e:
c4:00:6f:7e:f6:4d:8f:c4:91:c9:d6:17:8b:f5:09:
d8:2c:47:69:a7:63:b3:b6:8b:a3:85:1c:4c:e9:30:
4c:da:38:23:c6:ff:10:60:0f:f7:7a:60:4b:e1:76:
eb:a3:ca:4c:f0:09:5e:9d:90:9b:58:7e:32:25:1c:
74:eb:29:6f:d8:24:c3:48:1b:73:62:c1:ad:60:f4:
64:4a:9b:08:95:19:65:76:b5:3b:e5:1c:8e:5d:d8:
82:b1:2e:91:17:9e:a3:12:ab:6c:87:ea:bd:7a:54:
ef:f3:84:9d:d3:48:9f:bc:f0:c8:dd:63:37:25:85:
d2:5a:1b:38:ca:cf:06:45:02:73:42:64:4e:2c:76:
7d:e1:74:0d:c6:1d:fa:c2:67:51:fb:68:ac:92:69:
ff:6f:c2:72:1d:69:42:9f:0a:8d:e0:a2:d5:9f:d7:
7f:a3:37:39:22:d7:c7:9c:dd:23:f5:ec:3c:8b:d3:
11:50:8e:f7:b0:a8:ee:63:16:a6:62:08:af:ba:ca:
0b:38:74:39:44:0a:06:3a:ee:33:79:e4:4d:f6:94:
9f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:95:81:47:29:6E:03:F3:AF:83:95:2F:8D:8F:DE:1A:37:45:1A:D2
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/EpWBRyluA_Ovg5UvjY_eGjdFGtI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3d:3c:e3:3e:a6:0d:02:ca:b5:77:ce:78:6e:91:d5:2b:ee:de:
a8:ac:1e:58:38:b8:bb:95:38:f3:bb:93:5b:c6:54:80:36:71:
a9:ac:d8:11:b7:6e:bc:6b:1e:d9:36:2e:cd:a2:d5:9f:c3:b4:
2c:f5:46:30:a3:7a:d2:be:4e:03:20:d7:e8:f2:c3:2e:25:38:
24:64:dc:ca:57:35:4d:66:c5:53:11:04:42:dc:30:9f:aa:80:
4f:fa:ee:bd:5d:cf:5b:00:25:1b:ad:fa:29:93:26:e2:9c:2c:
0e:f7:fb:77:48:3d:8a:89:57:7f:3b:0f:36:ca:a2:54:34:03:
92:22:70:b8:f3:3b:49:b9:d8:ce:09:f0:13:d9:8d:49:a7:f8:
6f:d2:60:4b:58:06:a9:0c:cc:13:0c:e6:86:9d:83:32:30:ba:
88:a7:ea:74:7d:50:8d:1e:da:60:f6:43:3f:af:ef:31:66:91:
e2:a3:0e:d2:ac:d6:41:60:78:57:80:0a:9b:4c:d4:71:05:93:
62:6b:34:e6:3a:d4:42:d0:a8:87:e0:ac:3c:19:b4:3d:33:3f:
06:07:d2:64:6f:e4:f0:cc:9b:48:a8:c8:23:48:b9:8f:ae:01:
fe:8d:92:cf:0b:db:55:31:e2:ba:24:5e:40:be:81:7c:18:77:
21:49:a1:f1
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZB0Nvw1NUGVY3CDHkN6pjg7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNzAyMTYxMTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMjk1ODE0NzI5NmUwM2YzYWY4Mzk1MmY4ZDhmZGUxYTM3NDUxYWQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3jBziXNQ9Cko5B9OFli3X77D6+Bq
PVBiOAdy+9bBt/qtTQxEaouspo1spA7EAG9+9k2PxJHJ1heL9QnYLEdpp2Oztouj
hRxM6TBM2jgjxv8QYA/3emBL4Xbro8pM8AlenZCbWH4yJRx06ylv2CTDSBtzYsGt
YPRkSpsIlRlldrU75RyOXdiCsS6RF56jEqtsh+q9elTv84Sd00ifvPDI3WM3JYXS
Whs4ys8GRQJzQmROLHZ94XQNxh36wmdR+2iskmn/b8JyHWlCnwqN4KLVn9d/ozc5
ItfHnN0j9ew8i9MRUI73sKjuYxamYgivusoLOHQ5RAoGOu4zeeRN9pSf6QIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFBKVgUcpbgPzr4OVL42P3ho3RRrSMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvRXBXQlJ5bHVBX092ZzVVdmpZX2VHamRGR3RJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAD084z6mDQLKtXfOeG6R
1Svu3qisHlg4uLuVOPO7k1vGVIA2cams2BG3brxrHtk2Ls2i1Z/DtCz1RjCjetK+
TgMg1+jywy4lOCRk3MpXNU1mxVMRBELcMJ+qgE/67r1dz1sAJRut+imTJuKcLA73
+3dIPYqJV387DzbKolQ0A5IicLjzO0m52M4J8BPZjUmn+G/SYEtYBqkMzBMM5oad
gzIwuoin6nR9UI0e2mD2Qz+v7zFmkeKjDtKs1kFgeFeACptM1HEFk2JrNOY61ELQ
qIfgrDwZtD0zPwYH0mRv5PDMm0ioyCNIuY+uAf6Nks8L21Ux4rokXkC+gXwYdyFJ
ofE=
-----END CERTIFICATE-----
Generated at Tue Jul 2 18:54:54 2024 by rpki-client on console-fra.rpki-client.org