Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Ul99mFRU1lqMeXi_4_2lh1qQmAE.roa
File: Ul99mFRU1lqMeXi_4_2lh1qQmAE.roa (raw, json)
Hash identifier: RAbHHfLLeSR60y9+tS+UG2X3YtVL4UyyUQSjJupOm5A=
Subject key identifier: 52:5F:7D:98:54:54:D6:5A:8C:79:78:BF:E3:FD:A5:87:5A:90:98:01
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FFA55F2EEDCABA99FA1E8E3754322DE02
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Ul99mFRU1lqMeXi_4_2lh1qQmAE.roa
Signing time: Sun 09 Jun 2024 00:11:27 +0000
ROA not before: Sun 09 Jun 2024 00:11:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 09 Jun 2024 01:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:fa:55:f2:ee:dc:ab:a9:9f:a1:e8:e3:75:43:22:de:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 9 00:11:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=525f7d985454d65a8c7978bfe3fda5875a909801
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9a:f2:0d:00:ac:9f:17:e3:87:6b:fa:a2:6f:
cd:30:42:1f:02:ac:62:6e:43:75:8c:6c:03:50:2a:
d2:18:2f:d3:44:90:78:15:3b:7d:36:68:a0:2f:7e:
a5:e3:4c:2e:b1:f1:43:92:15:3b:8c:12:a3:b3:e7:
24:70:17:3d:9e:ec:23:94:f2:d4:71:78:5b:11:9c:
3a:ac:4e:86:44:84:6d:96:11:c8:09:33:93:ae:4e:
16:c5:35:fd:b1:75:69:9d:e2:e6:b5:ef:1f:19:08:
ac:51:5b:99:2b:49:8d:57:87:6d:e5:d7:25:ac:b4:
40:4d:8c:23:18:a5:e8:d2:bb:1d:db:5c:8e:48:c4:
d2:4e:29:35:8e:03:d8:06:18:43:60:d4:62:cf:67:
40:2f:e7:23:c8:29:9c:d1:d3:3d:31:9d:c3:60:67:
f7:eb:4a:5c:5e:13:b5:13:70:0b:04:5e:3a:20:0d:
7f:52:a1:34:76:45:dd:27:06:37:a8:aa:29:2c:81:
ea:e1:d8:57:ec:db:00:02:85:56:30:c5:1b:df:fe:
9a:3d:0a:d6:cc:9e:e6:0a:e4:74:9c:bd:79:59:97:
8d:cb:44:57:ed:69:9c:4f:66:13:f9:2a:93:51:9b:
a9:c3:89:d0:bd:69:94:f3:31:09:16:60:e9:f1:d7:
ca:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:5F:7D:98:54:54:D6:5A:8C:79:78:BF:E3:FD:A5:87:5A:90:98:01
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Ul99mFRU1lqMeXi_4_2lh1qQmAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
84:1f:3c:bc:eb:93:ef:dc:50:47:8b:39:25:42:6a:b8:5f:ba:
45:de:64:7e:90:10:a8:9f:ff:3a:eb:7f:2b:7c:65:a8:d5:f9:
4f:b1:78:0c:ca:32:d3:01:bf:a7:3b:c0:09:e7:ab:1c:94:f2:
c0:72:ec:7a:07:92:2e:e2:2c:1f:2d:7f:af:76:0b:7a:51:d5:
43:83:d0:43:a8:2c:7b:60:05:b3:a3:42:fa:ef:8b:bf:d0:fd:
d0:c0:21:40:c5:49:31:63:a8:b3:54:11:af:1e:f7:9d:1b:ab:
02:f9:66:5f:d1:19:7f:02:32:fb:a6:9f:56:cf:35:e2:13:f4:
9b:c7:09:1d:02:b2:40:87:f2:32:95:ec:49:97:d9:2b:6f:a8:
94:02:20:06:92:19:c4:09:99:bc:15:c4:ea:61:70:d8:3c:e7:
7b:c7:ff:be:b3:5b:45:cf:17:e1:f0:01:72:67:40:6d:b5:a2:
bf:f2:8c:c6:77:3e:0b:0e:94:4c:1a:3c:09:99:f0:e8:c1:bf:
07:42:85:b7:50:35:63:7b:fa:13:43:6a:af:c8:d9:a7:c1:7f:
33:a9:69:c1:a6:3b:6d:c3:fc:19:32:6d:ae:33:eb:a2:90:48:
f8:d4:9c:6d:c4:0c:3a:57:c9:85:15:7a:33:99:c0:43:54:14:
ef:25:0b:9b
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY/6VfLu3Kupn6Ho43VDIt4CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjA5MDAxMTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MjVmN2Q5ODU0NTRkNjVhOGM3OTc4YmZlM2ZkYTU4NzVhOTA5ODAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArpryDQCsnxfjh2v6om/NMEIfAqxi
bkN1jGwDUCrSGC/TRJB4FTt9NmigL36l40wusfFDkhU7jBKjs+ckcBc9nuwjlPLU
cXhbEZw6rE6GRIRtlhHICTOTrk4WxTX9sXVpneLmte8fGQisUVuZK0mNV4dt5dcl
rLRATYwjGKXo0rsd21yOSMTSTik1jgPYBhhDYNRiz2dAL+cjyCmc0dM9MZ3DYGf3
60pcXhO1E3ALBF46IA1/UqE0dkXdJwY3qKopLIHq4dhX7NsAAoVWMMUb3/6aPQrW
zJ7mCuR0nL15WZeNy0RX7WmcT2YT+SqTUZupw4nQvWmU8zEJFmDp8dfKgwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFFJffZhUVNZajHl4v+P9pYdakJgBMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvVWw5OW1GUlUxbHFNZVhpXzRfMmxoMXFRbUFFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAIQfPLzrk+/cUEeLOSVC
arhfukXeZH6QEKif/zrrfyt8ZajV+U+xeAzKMtMBv6c7wAnnqxyU8sBy7HoHki7i
LB8tf692C3pR1UOD0EOoLHtgBbOjQvrvi7/Q/dDAIUDFSTFjqLNUEa8e950bqwL5
Zl/RGX8CMvumn1bPNeIT9JvHCR0CskCH8jKV7EmX2StvqJQCIAaSGcQJmbwVxOph
cNg853vH/76zW0XPF+HwAXJnQG21or/yjMZ3PgsOlEwaPAmZ8OjBvwdChbdQNWN7
+hNDaq/I2afBfzOpacGmO23D/Bkyba4z66KQSPjUnG3EDDpXyYUVejOZwENUFO8l
C5s=
Generated at Sun Jun 9 03:54:59 2024 by rpki-client on console-fra.rpki-client.org