Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/F5TRUrMX5yb5ZkNBFtSUwjLSpUg.roa
File: F5TRUrMX5yb5ZkNBFtSUwjLSpUg.roa (raw, json)
Hash identifier: Cp8ffrCi5dzvhOfRAxlnEvH3IjujuGkQVGwFb+5Ql5U=
Subject key identifier: 17:94:D1:52:B3:17:E7:26:F9:66:43:41:16:D4:94:C2:32:D2:A5:48
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01903E5B612027AC0AB7247498C1E46D5490
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/F5TRUrMX5yb5ZkNBFtSUwjLSpUg.roa
Signing time: Sat 22 Jun 2024 05:11:34 +0000
ROA not before: Sat 22 Jun 2024 05:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 22 Jun 2024 06:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:3e:5b:61:20:27:ac:0a:b7:24:74:98:c1:e4:6d:54:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 22 05:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1794d152b317e726f966434116d494c232d2a548
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2a:54:8c:4b:c2:13:d8:f0:15:3e:3d:89:5f:
56:ec:2c:20:db:98:a8:ba:4d:ee:9e:12:3b:de:f5:
2d:c1:a5:9d:ad:64:e5:e8:86:c2:71:ed:5a:29:69:
24:99:cf:03:83:df:98:60:f1:08:5b:a5:8b:37:90:
6e:d6:24:d6:c0:3a:b1:4d:42:81:91:f5:2e:17:b7:
8b:3d:7a:c7:8b:37:77:11:44:9c:12:5f:95:cc:3a:
92:b8:58:0d:1f:d7:a6:98:67:79:4b:82:aa:d4:d3:
bb:17:63:2b:25:6a:76:89:e4:f2:cc:d7:c9:5a:12:
cc:75:03:cc:44:b4:67:87:4f:ff:28:02:a3:42:24:
2e:d5:85:13:c2:a8:dc:4a:fb:26:65:f3:1e:6c:15:
ef:9a:20:0a:13:52:56:e9:c7:4f:15:24:b4:3c:a9:
b2:95:2c:35:a0:cd:89:93:b7:62:21:e1:89:29:df:
ca:97:f8:94:51:5b:13:0a:5a:f4:08:32:4d:64:35:
19:7b:e2:b0:97:a2:a1:df:ed:52:a3:6e:a8:bf:05:
81:dd:42:69:67:d7:77:fe:36:24:05:60:a7:53:40:
52:7f:e2:88:7f:9b:a1:ac:e1:43:f9:80:78:4c:bb:
4f:4f:8f:da:36:f9:11:e9:12:3f:73:4a:94:65:bf:
37:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:94:D1:52:B3:17:E7:26:F9:66:43:41:16:D4:94:C2:32:D2:A5:48
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/F5TRUrMX5yb5ZkNBFtSUwjLSpUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
8e:88:28:e0:56:65:b8:dc:9c:80:69:5b:b2:43:f3:40:5e:59:
75:91:a6:9a:8b:55:a0:52:6c:ed:b4:22:6b:34:82:35:eb:61:
94:cc:78:34:62:04:fd:8d:c9:7f:7e:f6:c6:10:dd:0f:cf:53:
ab:95:dc:fb:4e:04:f5:52:b8:d7:4d:42:df:87:35:d9:e1:ef:
56:0f:7b:df:91:d9:bf:50:14:db:54:1f:80:7a:3a:0a:24:22:
d0:9d:7e:08:7d:33:5d:eb:90:73:c2:3e:ec:4b:3b:9d:21:a4:
6d:0c:a0:5e:4f:29:6b:56:3e:6b:90:1e:8d:b3:e2:d9:df:f2:
90:6b:e8:7d:51:bd:f0:db:e9:70:8f:18:6b:1c:45:1a:78:87:
a0:fe:04:41:03:97:d5:fa:90:cb:42:60:97:53:d2:e7:9d:8d:
de:b0:7c:eb:7c:02:05:c5:91:1e:29:a1:25:79:fa:23:77:3b:
2c:5d:cd:97:af:35:43:69:5f:de:b7:4c:b8:00:cf:92:d1:7b:
97:92:ca:2d:d4:91:0b:28:ab:34:dc:9f:3a:70:b1:a4:46:20:
d3:88:02:8c:da:26:16:31:8d:14:4a:97:2a:98:d1:70:96:ee:
49:f4:6b:ce:bb:bb:80:68:f2:02:0d:4c:7d:f7:fc:47:8a:14:
53:a0:0b:57
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZA+W2EgJ6wKtyR0mMHkbVSQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjIyMDUxMTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNzk0ZDE1MmIzMTdlNzI2Zjk2NjQzNDExNmQ0OTRjMjMyZDJhNTQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsypUjEvCE9jwFT49iV9W7Cwg25io
uk3unhI73vUtwaWdrWTl6IbCce1aKWkkmc8Dg9+YYPEIW6WLN5Bu1iTWwDqxTUKB
kfUuF7eLPXrHizd3EUScEl+VzDqSuFgNH9emmGd5S4Kq1NO7F2MrJWp2ieTyzNfJ
WhLMdQPMRLRnh0//KAKjQiQu1YUTwqjcSvsmZfMebBXvmiAKE1JW6cdPFSS0PKmy
lSw1oM2Jk7diIeGJKd/Kl/iUUVsTClr0CDJNZDUZe+Kwl6Kh3+1So26ovwWB3UJp
Z9d3/jYkBWCnU0BSf+KIf5uhrOFD+YB4TLtPT4/aNvkR6RI/c0qUZb83awIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFBeU0VKzF+cm+WZDQRbUlMIy0qVIMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvRjVUUlVyTVg1eWI1WmtOQkZ0U1V3akxTcFVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAI6IKOBWZbjcnIBpW7JD
80BeWXWRppqLVaBSbO20Ims0gjXrYZTMeDRiBP2NyX9+9sYQ3Q/PU6uV3PtOBPVS
uNdNQt+HNdnh71YPe9+R2b9QFNtUH4B6OgokItCdfgh9M13rkHPCPuxLO50hpG0M
oF5PKWtWPmuQHo2z4tnf8pBr6H1RvfDb6XCPGGscRRp4h6D+BEEDl9X6kMtCYJdT
0uedjd6wfOt8AgXFkR4poSV5+iN3OyxdzZevNUNpX963TLgAz5LRe5eSyi3UkQso
qzTcnzpwsaRGINOIAozaJhYxjRRKlyqY0XCW7kn0a867u4Bo8gINTH33/EeKFFOg
C1c=
-----END CERTIFICATE-----
Generated at Sat Jun 22 06:43:24 2024 by rpki-client on console-fra.rpki-client.org