Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/FH41SAq5NLN2NG6ZP7SPZCGOlro.roa
File: FH41SAq5NLN2NG6ZP7SPZCGOlro.roa (raw, json)
Hash identifier: p4VyAPg5e9c5tv3xOhiUtz+fxBnam2l8RAp4WHLsQic=
Subject key identifier: 14:7E:35:48:0A:B9:34:B3:76:34:6E:99:3F:B4:8F:64:21:8E:96:BA
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019038903B11199CDED9373DF2A2E30A186A
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/FH41SAq5NLN2NG6ZP7SPZCGOlro.roa
Signing time: Fri 21 Jun 2024 02:11:34 +0000
ROA not before: Fri 21 Jun 2024 02:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 21 Jun 2024 03:05:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:38:90:3b:11:19:9c:de:d9:37:3d:f2:a2:e3:0a:18:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 21 02:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=147e35480ab934b376346e993fb48f64218e96ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7a:7b:2f:5d:18:0c:7e:0f:cd:bb:5a:e9:bc:
20:37:04:d6:40:7e:dd:3a:3a:be:d5:b2:4c:cc:43:
21:fb:54:70:55:56:b8:ae:08:15:40:e4:22:48:23:
2a:5e:01:6f:a6:f5:61:7c:a3:f8:89:2b:23:ee:22:
07:a1:15:67:ba:6e:4a:df:ef:e4:2f:67:b4:db:86:
aa:3d:0c:d0:79:47:57:bf:55:68:60:6a:58:f2:e6:
19:0d:b0:3e:1e:6c:2c:9f:93:4a:cf:06:10:08:e4:
07:3d:8d:b7:81:13:37:b3:29:71:ac:5f:10:a2:ac:
14:a7:0b:64:36:88:a8:20:51:79:a6:7a:bc:b7:be:
cb:7b:0b:d2:01:a5:24:db:e3:16:06:d5:d7:7c:a1:
05:07:16:7e:7a:11:8a:89:56:ce:30:21:1e:b6:cc:
39:77:93:66:34:c0:db:c5:3b:8e:14:75:c6:46:da:
8d:3d:25:6b:31:de:03:c9:45:90:ed:7d:6b:2b:e7:
72:0f:74:f1:58:35:4b:e9:ad:e4:e2:9a:0d:03:81:
a6:4d:22:b9:b5:e7:0d:91:0d:d4:1a:40:6d:d1:68:
cd:88:50:b6:d4:93:ca:50:4e:07:a3:4c:79:85:4d:
b2:72:71:2a:7e:9d:45:83:f0:37:1e:f0:03:d3:95:
58:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:7E:35:48:0A:B9:34:B3:76:34:6E:99:3F:B4:8F:64:21:8E:96:BA
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/FH41SAq5NLN2NG6ZP7SPZCGOlro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
98:a0:10:c1:23:01:59:d0:b9:8f:2d:18:6a:ab:8b:ef:ea:83:
34:cd:a0:0e:44:cd:cd:56:8d:7b:a2:bb:08:18:fe:3e:46:6f:
44:16:3b:66:21:58:66:38:63:69:e6:29:21:af:78:89:09:24:
c5:12:74:91:56:ab:d1:95:38:05:c1:d7:49:c8:12:79:a3:a8:
26:9c:12:cc:3f:b1:62:8a:a9:e2:bf:2f:f6:4a:15:e4:e7:ae:
f8:7e:4f:ac:7c:a1:e3:2c:77:dd:6e:36:b9:39:28:b2:e9:da:
a1:66:42:a6:38:42:57:3a:fa:4d:d9:c5:57:43:16:a4:da:6b:
1f:fb:38:4e:c3:ca:33:77:33:b3:db:fb:0f:6f:70:d8:d0:d7:
b3:ad:66:8a:00:2a:76:97:24:f7:bf:1f:b0:5d:5a:e5:14:02:
f2:79:ba:6b:79:c2:2d:31:34:3b:d5:c1:d6:a0:26:e2:3e:b4:
4e:73:38:22:3c:ac:ba:56:9b:86:81:dd:0d:e1:34:99:61:a7:
a5:9b:e0:ee:d3:fa:30:75:75:41:5f:e8:d9:9c:eb:05:8e:fc:
0d:60:74:e5:a0:bd:51:28:ed:f3:ba:92:f1:c1:12:80:a8:8c:
b1:75:ca:a3:95:b1:c2:7c:5f:40:d1:40:f2:93:43:d2:b9:8a:
62:10:f6:39
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZA4kDsRGZze2Tc98qLjChhqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjIxMDIxMTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNDdlMzU0ODBhYjkzNGIzNzYzNDZlOTkzZmI0OGY2NDIxOGU5NmJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu3p7L10YDH4Pzbta6bwgNwTWQH7d
Ojq+1bJMzEMh+1RwVVa4rggVQOQiSCMqXgFvpvVhfKP4iSsj7iIHoRVnum5K3+/k
L2e024aqPQzQeUdXv1VoYGpY8uYZDbA+Hmwsn5NKzwYQCOQHPY23gRM3sylxrF8Q
oqwUpwtkNoioIFF5pnq8t77LewvSAaUk2+MWBtXXfKEFBxZ+ehGKiVbOMCEetsw5
d5NmNMDbxTuOFHXGRtqNPSVrMd4DyUWQ7X1rK+dyD3TxWDVL6a3k4poNA4GmTSK5
tecNkQ3UGkBt0WjNiFC21JPKUE4Ho0x5hU2ycnEqfp1Fg/A3HvAD05VYHQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFBR+NUgKuTSzdjRumT+0j2Qhjpa6MB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvRkg0MVNBcTVOTE4yTkc2WlA3U1BaQ0dPbHJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAJigEMEjAVnQuY8tGGqr
i+/qgzTNoA5Ezc1WjXuiuwgY/j5Gb0QWO2YhWGY4Y2nmKSGveIkJJMUSdJFWq9GV
OAXB10nIEnmjqCacEsw/sWKKqeK/L/ZKFeTnrvh+T6x8oeMsd91uNrk5KLLp2qFm
QqY4Qlc6+k3ZxVdDFqTaax/7OE7DyjN3M7Pb+w9vcNjQ17OtZooAKnaXJPe/H7Bd
WuUUAvJ5umt5wi0xNDvVwdagJuI+tE5zOCI8rLpWm4aB3Q3hNJlhp6Wb4O7T+jB1
dUFf6Nmc6wWO/A1gdOWgvVEo7fO6kvHBEoCojLF1yqOVscJ8X0DRQPKTQ9K5imIQ
9jk=
-----END CERTIFICATE-----
Generated at Fri Jun 21 06:43:18 2024 by rpki-client on console-fra.rpki-client.org