Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/U8jMf97HktEvvc_mAXtO9REV2uI.roa
File: U8jMf97HktEvvc_mAXtO9REV2uI.roa (raw, json)
Hash identifier: swmH7WGGr9Fb6Upxl8ALkoSzX4XHnzwwZTeae9wFhW0=
Subject key identifier: 53:C8:CC:7F:DE:C7:92:D1:2F:BD:CF:E6:01:7B:4E:F5:11:15:DA:E2
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FBB3F5B4516EC132E6F757F7E578ABA9F
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/U8jMf97HktEvvc_mAXtO9REV2uI.roa
Signing time: Mon 27 May 2024 18:10:42 +0000
ROA not before: Mon 27 May 2024 18:10:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 27 May 2024 19:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:bb:3f:5b:45:16:ec:13:2e:6f:75:7f:7e:57:8a:ba:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 27 18:10:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53c8cc7fdec792d12fbdcfe6017b4ef51115dae2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:17:ba:32:0c:bf:6b:5e:1d:9d:b9:7a:95:f5:
33:69:4e:b7:44:09:49:b5:38:95:76:43:42:51:40:
21:2e:25:35:af:7c:c7:2e:62:de:42:c1:34:79:ee:
02:8a:13:ec:9d:c7:54:ce:18:4b:f6:c2:a4:08:28:
c3:50:d6:af:ee:6b:11:ea:43:9a:48:49:12:9f:16:
5a:d1:b9:44:fc:35:35:51:95:22:6e:53:7c:bc:fe:
26:7b:92:f1:3d:88:24:34:c3:ec:e7:c4:6d:ee:9a:
7a:6d:46:fd:ab:8d:6e:da:05:15:9c:0a:df:9b:b8:
3f:01:6c:65:b3:24:49:c5:85:fe:74:44:c0:0b:10:
7c:ff:a0:92:4f:77:80:fa:e4:44:cd:c8:4b:36:e6:
a7:57:51:f4:0a:79:25:7a:56:12:17:a1:8f:03:e1:
cb:65:f1:05:1f:1e:fb:5e:8a:95:f7:9c:d4:9c:7e:
39:fa:b4:a2:c3:88:24:51:6a:ae:cd:2c:29:b6:fa:
8e:ea:2f:33:37:14:97:43:0a:c9:c0:5b:33:59:17:
cd:3b:0d:27:d5:63:ac:95:21:99:9a:f6:61:60:1f:
03:76:52:d1:91:b3:61:43:b8:8c:60:ee:b5:1d:6d:
90:e1:fe:82:61:8f:26:e7:0d:de:82:e1:6d:57:19:
ac:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:C8:CC:7F:DE:C7:92:D1:2F:BD:CF:E6:01:7B:4E:F5:11:15:DA:E2
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/U8jMf97HktEvvc_mAXtO9REV2uI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
52:a8:94:90:44:4a:42:25:ed:d9:85:1f:42:a9:34:b9:05:17:
b0:6c:11:a4:b8:de:3f:59:0c:19:98:7f:1f:56:ba:56:ec:0e:
d3:56:33:14:e7:18:22:3d:fa:d2:4d:8e:9e:60:1c:70:cf:26:
31:8b:66:84:7d:c2:90:d5:1a:39:9a:5e:5a:d7:e6:8a:69:17:
09:3a:30:f1:e6:ec:26:5c:7d:f8:e8:8d:30:de:43:f0:b2:a7:
f8:4f:14:51:07:79:ab:91:8d:d8:8c:ad:3b:ec:1f:52:c4:e1:
20:a4:fe:3a:8d:a6:6a:45:d2:50:80:9d:d7:c6:47:52:38:42:
fa:98:55:9e:12:93:ee:05:f1:04:7e:9c:9b:ad:a7:00:1f:bc:
f9:9e:a5:af:07:12:eb:91:b0:1d:4b:a3:7e:dd:1b:14:48:6b:
dc:80:02:81:88:26:7e:8f:3d:8c:1b:29:16:d1:a4:07:95:ae:
94:6c:f5:54:95:70:35:05:60:46:77:18:e2:c2:88:39:7c:4f:
2b:20:b7:24:3d:d6:8d:85:57:76:8f:f9:7d:42:61:cf:e2:b9:
fa:02:ea:9c:c0:1b:c3:a1:5b:41:84:c4:bc:14:e2:31:81:49:
3e:f5:9c:d7:64:87:d7:24:d2:87:d1:41:1c:ab:08:73:14:8c:
11:bf:2d:a8
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY+7P1tFFuwTLm91f35XirqfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNTI3MTgxMDQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1M2M4Y2M3ZmRlYzc5MmQxMmZiZGNmZTYwMTdiNGVmNTExMTVkYWUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9Be6Mgy/a14dnbl6lfUzaU63RAlJ
tTiVdkNCUUAhLiU1r3zHLmLeQsE0ee4CihPsncdUzhhL9sKkCCjDUNav7msR6kOa
SEkSnxZa0blE/DU1UZUiblN8vP4me5LxPYgkNMPs58Rt7pp6bUb9q41u2gUVnArf
m7g/AWxlsyRJxYX+dETACxB8/6CST3eA+uREzchLNuanV1H0CnklelYSF6GPA+HL
ZfEFHx77XoqV95zUnH45+rSiw4gkUWquzSwptvqO6i8zNxSXQwrJwFszWRfNOw0n
1WOslSGZmvZhYB8DdlLRkbNhQ7iMYO61HW2Q4f6CYY8m5w3eguFtVxmsVQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFFPIzH/ex5LRL73P5gF7TvURFdriMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvVThqTWY5N0hrdEV2dmNfbUFYdE85UkVWMnVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAFKolJBESkIl7dmFH0Kp
NLkFF7BsEaS43j9ZDBmYfx9WulbsDtNWMxTnGCI9+tJNjp5gHHDPJjGLZoR9wpDV
GjmaXlrX5oppFwk6MPHm7CZcffjojTDeQ/Cyp/hPFFEHeauRjdiMrTvsH1LE4SCk
/jqNpmpF0lCAndfGR1I4QvqYVZ4Sk+4F8QR+nJutpwAfvPmepa8HEuuRsB1Lo37d
GxRIa9yAAoGIJn6PPYwbKRbRpAeVrpRs9VSVcDUFYEZ3GOLCiDl8TysgtyQ91o2F
V3aP+X1CYc/iufoC6pzAG8OhW0GExLwU4jGBST71nNdkh9ck0ofRQRyrCHMUjBG/
Lag=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:15 2024 by rpki-client on console-ams.rpki-client.org