Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/JvNGDxxZH6aiarUOn9A-S_XgOtk.roa
File: JvNGDxxZH6aiarUOn9A-S_XgOtk.roa (raw, json)
Hash identifier: F6M4D5s5MCiLUEH06BMkUWLHN2VHF97dJbW+0xtengU=
Subject key identifier: 26:F3:46:0F:1C:59:1F:A6:A2:6A:B5:0E:9F:D0:3E:4B:F5:E0:3A:D9
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FC36896E8D4210F96608D0B48BA09A0FF
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/JvNGDxxZH6aiarUOn9A-S_XgOtk.roa
Signing time: Wed 29 May 2024 08:12:42 +0000
ROA not before: Wed 29 May 2024 08:12:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 29 May 2024 09:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c3:68:96:e8:d4:21:0f:96:60:8d:0b:48:ba:09:a0:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 29 08:12:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26f3460f1c591fa6a26ab50e9fd03e4bf5e03ad9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:7e:0a:65:ba:2b:3a:69:fd:23:e3:03:59:7a:
92:92:ec:48:81:0a:25:f9:2b:7b:4c:81:c3:37:45:
0b:91:83:f1:a4:30:92:ff:95:f2:59:72:39:90:1b:
47:87:dd:9c:b2:4a:78:a6:f8:a9:b7:01:48:a9:43:
6c:5f:4d:fa:7f:55:14:08:ef:14:7a:ca:2b:53:12:
47:cc:86:22:89:ad:bc:ae:4c:c0:d8:a8:7b:fd:81:
c5:4f:37:af:78:d3:10:5e:68:be:7a:f5:a1:91:ea:
df:71:c6:4a:e5:8c:f8:1c:43:6f:f5:63:f6:c4:d0:
7c:c5:7c:38:3c:f8:84:50:f4:f8:40:4c:88:b1:50:
dc:31:f9:9d:c8:1e:aa:3d:5e:ee:c9:a6:28:49:35:
ae:f8:c9:20:72:c8:64:b0:7b:24:7a:6f:fc:c9:4b:
56:c4:6a:b9:27:db:d1:7d:45:8d:36:16:2a:39:9a:
d6:6b:d3:c5:92:a8:c4:04:56:23:43:5e:08:11:23:
b0:cc:8e:7b:22:76:26:fe:e3:bb:64:c4:f9:15:60:
ae:1c:06:c6:70:f5:96:b6:fe:c1:40:fa:da:37:d5:
ad:77:90:c1:ea:9d:20:f8:44:01:f3:c9:f3:b6:f3:
71:27:77:2c:d9:f9:d0:17:4e:1e:8d:bb:18:24:44:
41:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:F3:46:0F:1C:59:1F:A6:A2:6A:B5:0E:9F:D0:3E:4B:F5:E0:3A:D9
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/JvNGDxxZH6aiarUOn9A-S_XgOtk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
73:68:01:09:5f:8b:3c:98:42:c4:1e:fe:fb:72:d9:b2:bf:2f:
8e:f8:33:90:46:0f:4f:8e:e0:44:db:17:bf:e6:d8:94:45:18:
19:53:ab:d3:77:f2:50:fe:e8:8c:3b:30:f2:8e:d4:04:c4:57:
c3:fc:a6:63:6a:4e:8e:14:c8:05:70:72:86:ec:bf:6e:ca:48:
46:36:3b:cc:8b:f1:11:40:f0:45:ee:1a:d0:e0:68:ae:02:67:
48:6f:cd:d3:f7:01:7b:e0:0d:8f:25:42:c8:84:a6:4b:70:90:
e2:58:16:c1:a1:0d:a7:92:a5:72:41:b0:66:62:af:9c:28:3d:
91:7b:4c:56:f0:97:c5:4f:b9:2c:3c:52:a4:56:74:6e:af:ef:
53:86:c7:1b:40:06:c1:d7:11:63:3d:df:f9:9a:63:dc:b2:0d:
6d:89:7e:bc:3e:bb:b3:12:53:88:6a:88:7e:fb:f0:05:5f:e9:
19:17:68:22:9a:ba:c4:3f:a5:5d:c7:12:5e:41:d3:86:41:e6:
e8:28:55:5c:cd:08:33:93:97:f1:36:35:de:ef:e1:31:5b:a4:
de:40:a2:ec:8b:e4:fb:4c:69:4e:f0:c9:d9:96:7e:f1:21:2b:
b7:ea:6a:17:83:40:28:cf:d4:97:3f:10:1a:1e:21:21:5d:ae:
2c:e2:a6:81
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY/DaJbo1CEPlmCNC0i6CaD/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNTI5MDgxMjQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNmYzNDYwZjFjNTkxZmE2YTI2YWI1MGU5ZmQwM2U0YmY1ZTAzYWQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2X4KZborOmn9I+MDWXqSkuxIgQol
+St7TIHDN0ULkYPxpDCS/5XyWXI5kBtHh92cskp4pviptwFIqUNsX036f1UUCO8U
esorUxJHzIYiia28rkzA2Kh7/YHFTzeveNMQXmi+evWhkerfccZK5Yz4HENv9WP2
xNB8xXw4PPiEUPT4QEyIsVDcMfmdyB6qPV7uyaYoSTWu+MkgcshksHskem/8yUtW
xGq5J9vRfUWNNhYqOZrWa9PFkqjEBFYjQ14IESOwzI57InYm/uO7ZMT5FWCuHAbG
cPWWtv7BQPraN9Wtd5DB6p0g+EQB88nztvNxJ3cs2fnQF04ejbsYJERBCwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFCbzRg8cWR+momq1Dp/QPkv14DrZMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvSnZOR0R4eFpINmFpYXJVT245QS1TX1hnT3RrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAHNoAQlfizyYQsQe/vty
2bK/L474M5BGD0+O4ETbF7/m2JRFGBlTq9N38lD+6Iw7MPKO1ATEV8P8pmNqTo4U
yAVwcobsv27KSEY2O8yL8RFA8EXuGtDgaK4CZ0hvzdP3AXvgDY8lQsiEpktwkOJY
FsGhDaeSpXJBsGZir5woPZF7TFbwl8VPuSw8UqRWdG6v71OGxxtABsHXEWM93/ma
Y9yyDW2Jfrw+u7MSU4hqiH778AVf6RkXaCKausQ/pV3HEl5B04ZB5ugoVVzNCDOT
l/E2Nd7v4TFbpN5AouyL5PtMaU7wydmWfvEhK7fqaheDQCjP1Jc/EBoeISFdrizi
poE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:51 2024 by rpki-client on console-fra.rpki-client.org