Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/e4oKC98LiYMbl2X4lhQ_0DY9-ME.roa
File: e4oKC98LiYMbl2X4lhQ_0DY9-ME.roa (raw, json)
Hash identifier: O5upTv09G3tkgLnUXE4btsRqMz4HOOp8s3qGMpihH2g=
Subject key identifier: 7B:8A:0A:0B:DF:0B:89:83:1B:97:65:F8:96:14:3F:D0:36:3D:F8:C1
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190125E654BACE7864A5954B2D1F1FBC328
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/e4oKC98LiYMbl2X4lhQ_0DY9-ME.roa
Signing time: Thu 13 Jun 2024 16:11:34 +0000
ROA not before: Thu 13 Jun 2024 16:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 13 Jun 2024 17:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:12:5e:65:4b:ac:e7:86:4a:59:54:b2:d1:f1:fb:c3:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 13 16:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7b8a0a0bdf0b89831b9765f896143fd0363df8c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:6a:9c:29:53:7c:b4:f8:82:4d:7d:7c:fe:43:
3e:af:47:72:73:63:b1:bc:51:77:16:b8:11:52:d3:
49:0a:e4:8a:89:21:23:53:d7:8f:79:32:5e:62:d7:
18:01:68:72:65:c8:7d:8c:53:1a:63:a2:32:4f:22:
cf:59:75:72:8b:cf:d5:c1:ba:50:b0:98:ab:33:90:
e5:9a:61:27:5d:39:85:73:19:37:81:15:56:a0:02:
12:dd:3a:87:88:bc:b7:43:13:d8:9f:a3:8f:fc:6e:
43:1c:40:fa:ff:3b:9a:95:67:54:7c:b7:1d:6a:2a:
09:cf:01:c0:68:3e:fd:ae:b2:48:3f:86:d5:f5:89:
2e:96:ff:e1:aa:51:9d:65:4e:3b:ec:98:41:85:c5:
27:4e:81:ba:7f:d4:ac:5d:09:9b:da:86:f7:1f:3d:
eb:24:07:b2:70:ac:25:1b:9c:4c:83:00:5e:d0:bf:
f5:d7:d1:c1:fc:29:d1:65:50:1f:3c:88:0d:8a:75:
f3:3d:9b:a7:64:74:da:2a:ea:a0:ac:ef:a1:11:dc:
42:83:4e:45:d6:d9:8f:66:91:f2:77:6e:a7:39:62:
00:04:88:71:8d:98:d3:3e:ee:d9:b1:67:cb:a9:27:
38:7c:93:ad:42:b3:38:e7:ab:c3:f4:f6:48:05:c1:
11:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:8A:0A:0B:DF:0B:89:83:1B:97:65:F8:96:14:3F:D0:36:3D:F8:C1
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/e4oKC98LiYMbl2X4lhQ_0DY9-ME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3d:7a:c5:3c:7b:4d:87:da:0b:87:4d:01:98:1c:c3:88:87:32:
a4:6a:8e:22:60:e8:e0:d5:41:d0:f0:44:44:ce:74:68:66:e8:
55:6c:d3:4d:89:bd:49:57:b9:0e:41:e3:5c:91:37:7c:6c:21:
d8:00:bd:2c:21:c7:c6:3e:a5:00:1d:58:a1:92:80:19:45:0b:
9d:95:a7:43:b7:aa:2d:89:c7:bd:df:25:e9:aa:d9:db:1f:ad:
ec:be:40:74:c1:58:ba:ec:47:14:e1:fe:22:f7:ce:f6:bf:9d:
84:06:ff:a2:d6:bc:24:ba:7e:33:97:90:78:6e:7e:76:8b:12:
22:ed:b1:f3:89:7e:5f:e4:06:07:31:fc:6a:77:94:7c:31:a8:
68:34:73:79:cc:38:1c:91:46:a6:da:e0:89:6b:ee:91:25:ee:
c2:0b:51:49:88:ac:3c:e7:9d:94:ea:19:57:fe:65:3e:32:2a:
e0:89:1b:3c:24:84:ef:3b:af:82:4c:50:4f:c8:bc:02:2f:26:
8e:a2:06:7c:2a:b5:b6:17:0f:53:1f:1e:70:57:57:5f:7e:d1:
c6:88:49:ff:8a:d9:ce:98:01:11:01:8c:5b:ed:de:87:65:51:
40:e8:ac:65:d3:49:8e:83:84:46:8a:4b:89:6c:e8:44:2e:40:
78:ba:ab:8f
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZASXmVLrOeGSllUstHx+8MoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjEzMTYxMTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YjhhMGEwYmRmMGI4OTgzMWI5NzY1Zjg5NjE0M2ZkMDM2M2RmOGMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx2qcKVN8tPiCTX18/kM+r0dyc2Ox
vFF3FrgRUtNJCuSKiSEjU9ePeTJeYtcYAWhyZch9jFMaY6IyTyLPWXVyi8/VwbpQ
sJirM5DlmmEnXTmFcxk3gRVWoAIS3TqHiLy3QxPYn6OP/G5DHED6/zualWdUfLcd
aioJzwHAaD79rrJIP4bV9Ykulv/hqlGdZU477JhBhcUnToG6f9SsXQmb2ob3Hz3r
JAeycKwlG5xMgwBe0L/119HB/CnRZVAfPIgNinXzPZunZHTaKuqgrO+hEdxCg05F
1tmPZpHyd26nOWIABIhxjZjTPu7ZsWfLqSc4fJOtQrM456vD9PZIBcER8wIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFHuKCgvfC4mDG5dl+JYUP9A2PfjBMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvZTRvS0M5OExpWU1ibDJYNGxoUV8wRFk5LU1FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAD16xTx7TYfaC4dNAZgc
w4iHMqRqjiJg6ODVQdDwRETOdGhm6FVs002JvUlXuQ5B41yRN3xsIdgAvSwhx8Y+
pQAdWKGSgBlFC52Vp0O3qi2Jx73fJemq2dsfrey+QHTBWLrsRxTh/iL3zva/nYQG
/6LWvCS6fjOXkHhufnaLEiLtsfOJfl/kBgcx/Gp3lHwxqGg0c3nMOByRRqba4Ilr
7pEl7sILUUmIrDznnZTqGVf+ZT4yKuCJGzwkhO87r4JMUE/IvAIvJo6iBnwqtbYX
D1MfHnBXV19+0caISf+K2c6YAREBjFvt3odlUUDorGXTSY6DhEaKS4ls6EQuQHi6
q48=
-----END CERTIFICATE-----
Generated at Thu Jun 13 20:43:39 2024 by rpki-client on console-fra.rpki-client.org