Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/I2v7iU2WUqbQUnxKEZeqbBzdWlU.roa
File: I2v7iU2WUqbQUnxKEZeqbBzdWlU.roa (raw, json)
Hash identifier: g2bIWBpqMJVwDDz/jGO97U0/kMa4/blxfhNJO7af0jo=
Subject key identifier: 23:6B:FB:89:4D:96:52:A6:D0:52:7C:4A:11:97:AA:6C:1C:DD:5A:55
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019019045D99B0212D46F7E883097EF2EFB4
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/I2v7iU2WUqbQUnxKEZeqbBzdWlU.roa
Signing time: Fri 14 Jun 2024 23:10:34 +0000
ROA not before: Fri 14 Jun 2024 23:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 15 Jun 2024 00:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:19:04:5d:99:b0:21:2d:46:f7:e8:83:09:7e:f2:ef:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 14 23:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=236bfb894d9652a6d0527c4a1197aa6c1cdd5a55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4d:d8:51:a3:a8:b4:44:76:c1:4f:fe:50:95:
c6:52:13:e7:aa:91:f5:e4:bf:a4:56:ed:75:52:d2:
14:e7:6c:5a:22:cc:b6:10:b3:10:79:71:f4:54:e5:
0f:45:f7:a6:69:ea:5a:78:4b:23:2c:f9:18:ca:7d:
a9:88:e8:2e:d5:dd:ec:46:52:9b:2e:c5:42:17:ff:
42:0d:1d:14:6f:73:01:b3:10:89:49:7a:aa:29:19:
cb:3c:5c:d5:70:45:00:2d:85:e1:72:95:f9:04:92:
bd:b4:42:b8:41:f3:78:cb:2f:8f:3f:ed:fe:06:b0:
d3:49:a3:13:b9:e2:37:00:e7:b8:23:81:95:15:81:
a4:6e:84:53:f9:88:ce:b5:ab:69:56:9a:01:83:87:
be:4e:11:67:91:06:2a:f4:6b:61:1e:8b:e4:06:62:
17:5b:cc:3c:0b:04:3d:91:26:22:e5:76:ee:00:76:
f1:a6:8c:20:c3:2a:9c:f6:69:59:5e:48:bf:b7:c8:
74:f9:4f:f8:49:d8:34:51:9d:d0:cb:d2:8d:82:ef:
b3:98:07:b9:a7:8e:24:e1:9e:bd:83:e6:1b:1c:06:
38:a6:78:79:d7:8d:1c:e4:71:14:22:7e:9b:fe:11:
e8:38:a7:be:82:a3:75:2d:e0:2d:76:91:05:4d:79:
6c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:6B:FB:89:4D:96:52:A6:D0:52:7C:4A:11:97:AA:6C:1C:DD:5A:55
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/I2v7iU2WUqbQUnxKEZeqbBzdWlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
40:89:59:00:af:d8:c1:fd:59:48:74:54:e2:bd:49:61:2d:f5:
ef:2c:e6:b6:7f:78:26:4d:3a:75:43:52:3a:35:3e:e4:55:9f:
7f:bc:10:ce:a8:e4:cd:96:b1:d3:16:8d:29:24:b1:c5:39:43:
29:72:ab:2a:de:9c:b8:93:2d:31:21:02:be:f6:5e:7c:44:70:
0f:4d:eb:0b:23:9a:52:84:69:89:2b:e8:4b:b9:7c:df:6b:d7:
7a:ca:b4:5d:75:70:36:3b:71:b1:d8:dd:ab:e7:22:91:92:eb:
27:dd:16:b4:77:93:ca:71:8e:db:99:c9:90:4c:2b:74:04:f7:
d9:d6:c6:39:64:d0:13:64:d2:86:af:2c:ef:7f:7b:b0:55:aa:
ae:27:8a:9e:a5:cd:6e:f6:84:60:58:8e:f4:5a:b8:db:cb:42:
f3:50:c4:d9:f3:7e:a2:17:ec:9b:f5:ed:03:ef:68:16:e9:2c:
27:f6:16:29:f9:fe:05:49:73:79:13:4d:f0:55:14:27:32:48:
45:cf:97:b1:fe:b1:80:21:b0:74:99:12:fd:1f:13:83:4a:8d:
77:20:b8:17:ba:1d:3d:e2:bc:f0:7c:40:64:bd:12:0a:cb:b5:
78:28:21:7a:50:db:5d:01:8c:ef:0c:61:02:6e:75:e6:1e:de:
20:04:8d:6c
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZAZBF2ZsCEtRvfogwl+8u+0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjE0MjMxMDM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMzZiZmI4OTRkOTY1MmE2ZDA1MjdjNGExMTk3YWE2YzFjZGQ1YTU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvE3YUaOotER2wU/+UJXGUhPnqpH1
5L+kVu11UtIU52xaIsy2ELMQeXH0VOUPRfemaepaeEsjLPkYyn2piOgu1d3sRlKb
LsVCF/9CDR0Ub3MBsxCJSXqqKRnLPFzVcEUALYXhcpX5BJK9tEK4QfN4yy+PP+3+
BrDTSaMTueI3AOe4I4GVFYGkboRT+YjOtatpVpoBg4e+ThFnkQYq9GthHovkBmIX
W8w8CwQ9kSYi5XbuAHbxpowgwyqc9mlZXki/t8h0+U/4Sdg0UZ3Qy9KNgu+zmAe5
p44k4Z69g+YbHAY4pnh5140c5HEUIn6b/hHoOKe+gqN1LeAtdpEFTXlsywIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFCNr+4lNllKm0FJ8ShGXqmwc3VpVMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvSTJ2N2lVMldVcWJRVW54S0VaZXFiQnpkV2xVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAECJWQCv2MH9WUh0VOK9
SWEt9e8s5rZ/eCZNOnVDUjo1PuRVn3+8EM6o5M2WsdMWjSkkscU5QylyqyrenLiT
LTEhAr72XnxEcA9N6wsjmlKEaYkr6Eu5fN9r13rKtF11cDY7cbHY3avnIpGS6yfd
FrR3k8pxjtuZyZBMK3QE99nWxjlk0BNk0oavLO9/e7BVqq4nip6lzW72hGBYjvRa
uNvLQvNQxNnzfqIX7Jv17QPvaBbpLCf2Fin5/gVJc3kTTfBVFCcySEXPl7H+sYAh
sHSZEv0fE4NKjXcguBe6HT3ivPB8QGS9EgrLtXgoIXpQ210BjO8MYQJudeYe3iAE
jWw=
Generated at Sat Jun 15 02:26:46 2024 by rpki-client on console-fra.rpki-client.org