Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/PUqBnJ_LuLYWL5ZwYRQkFaqPTAc.roa
File: PUqBnJ_LuLYWL5ZwYRQkFaqPTAc.roa (raw, json)
Hash identifier: Z47FS7co/lcXdHCUNOV4j3WS5YnIoJUmIP96M158Oas=
Subject key identifier: 3D:4A:81:9C:9F:CB:B8:B6:16:2F:96:70:61:14:24:15:AA:8F:4C:07
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019018607BB86649055B956ED87A90880DFD
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/PUqBnJ_LuLYWL5ZwYRQkFaqPTAc.roa
Signing time: Fri 14 Jun 2024 20:11:34 +0000
ROA not before: Fri 14 Jun 2024 20:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 14 Jun 2024 21:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:18:60:7b:b8:66:49:05:5b:95:6e:d8:7a:90:88:0d:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 14 20:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3d4a819c9fcbb8b6162f967061142415aa8f4c07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:81:1b:ec:b1:89:b2:83:94:12:43:b2:00:f2:
ea:a1:f5:a2:1c:0e:87:90:01:c4:c8:b2:51:d2:51:
16:52:59:fd:61:5a:5f:e6:94:6f:f4:c1:2f:5f:10:
be:fa:00:59:d2:92:0e:f8:40:02:fd:bd:58:15:f3:
97:ef:a4:47:87:14:38:fb:40:7c:6a:dc:02:39:4c:
16:3f:ef:c8:52:43:da:c0:67:db:6b:57:a1:31:1e:
14:51:9d:b2:8e:35:c0:7e:49:26:6b:ec:70:9f:9b:
1f:aa:c4:84:75:5c:26:95:66:a3:d4:a1:a4:a4:7e:
7c:39:29:06:12:f2:35:17:e3:3a:d9:c2:a5:dd:fb:
d7:d7:c2:5e:d3:ec:da:82:de:da:e5:b6:b2:48:eb:
be:c4:8d:f9:41:c2:49:e1:9e:2d:fc:1e:01:45:b8:
e6:7c:90:7d:aa:73:e5:27:0e:1f:1f:be:6e:fb:5e:
8e:9e:2d:ba:fc:52:c5:c6:bf:3d:56:0c:cc:7e:11:
2d:5c:c0:8e:d6:34:a4:a0:2b:13:63:c1:2b:6d:42:
a0:fb:8e:e4:b5:13:fc:10:bd:84:4f:cd:d0:90:4f:
ab:a1:31:bf:72:f8:bf:fb:1b:98:07:db:51:e0:3d:
16:8f:1a:8c:b5:d9:b6:aa:9c:a1:7e:e7:16:5a:e4:
15:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:4A:81:9C:9F:CB:B8:B6:16:2F:96:70:61:14:24:15:AA:8F:4C:07
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/PUqBnJ_LuLYWL5ZwYRQkFaqPTAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
6e:3e:2b:64:51:a1:10:15:5a:98:a5:e0:4a:bb:14:86:55:b5:
0d:92:5b:eb:2b:ad:f4:17:e2:1c:6a:c7:a8:97:81:32:ed:ba:
a7:ce:dc:75:07:89:bb:a3:9c:35:a5:d4:eb:d4:d4:77:30:24:
3b:be:07:8d:63:59:2c:42:f3:23:aa:85:ea:80:6f:56:c2:03:
29:e9:82:1d:b3:ca:43:e0:22:f6:6b:54:a9:48:d1:1a:9d:65:
fa:30:8f:d8:28:1d:10:82:16:68:47:80:20:05:20:ff:51:2e:
78:8a:a3:1c:f2:1c:41:69:f7:0a:75:25:01:1a:72:01:63:5e:
c7:7c:0d:e3:5a:3b:14:8c:c7:ba:fd:63:96:7a:b3:b0:35:d4:
45:fb:d5:52:af:d2:0e:db:39:ec:92:32:ff:c8:c8:1f:24:f6:
98:1f:42:69:93:0e:2e:dd:cb:6e:78:a6:21:02:c1:97:54:e7:
f9:cd:a0:2a:1f:28:82:a6:f8:90:3c:02:5e:90:ad:00:fa:a2:
4f:6d:47:fb:85:d0:1c:5a:b5:0a:fc:af:4f:6b:56:b5:a7:30:
d8:9d:4a:18:16:36:7e:7d:7f:98:4c:c0:e1:e2:0a:78:34:e4:
c3:f0:6d:9c:82:be:3c:63:15:ea:5e:84:f4:23:a5:46:80:52:
60:42:1d:69
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZAYYHu4ZkkFW5Vu2HqQiA39MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjE0MjAxMTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZDRhODE5YzlmY2JiOGI2MTYyZjk2NzA2MTE0MjQxNWFhOGY0YzA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvYEb7LGJsoOUEkOyAPLqofWiHA6H
kAHEyLJR0lEWUln9YVpf5pRv9MEvXxC++gBZ0pIO+EAC/b1YFfOX76RHhxQ4+0B8
atwCOUwWP+/IUkPawGfba1ehMR4UUZ2yjjXAfkkma+xwn5sfqsSEdVwmlWaj1KGk
pH58OSkGEvI1F+M62cKl3fvX18Je0+zagt7a5baySOu+xI35QcJJ4Z4t/B4BRbjm
fJB9qnPlJw4fH75u+16Oni26/FLFxr89VgzMfhEtXMCO1jSkoCsTY8ErbUKg+47k
tRP8EL2ET83QkE+roTG/cvi/+xuYB9tR4D0WjxqMtdm2qpyhfucWWuQVfwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFD1KgZyfy7i2Fi+WcGEUJBWqj0wHMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvUFVxQm5KX0x1TFlXTDVad1lSUWtGYXFQVEFjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAG4+K2RRoRAVWpil4Eq7
FIZVtQ2SW+srrfQX4hxqx6iXgTLtuqfO3HUHibujnDWl1OvU1HcwJDu+B41jWSxC
8yOqheqAb1bCAynpgh2zykPgIvZrVKlI0RqdZfowj9goHRCCFmhHgCAFIP9RLniK
oxzyHEFp9wp1JQEacgFjXsd8DeNaOxSMx7r9Y5Z6s7A11EX71VKv0g7bOeySMv/I
yB8k9pgfQmmTDi7dy254piECwZdU5/nNoCofKIKm+JA8Al6QrQD6ok9tR/uF0Bxa
tQr8r09rVrWnMNidShgWNn59f5hMwOHiCng05MPwbZyCvjxjFepehPQjpUaAUmBC
HWk=
Generated at Fri Jun 14 21:59:45 2024 by rpki-client on console-fra.rpki-client.org