Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/fcUjiREnV8nybzSJppqz7kwWdkE.roa
File: fcUjiREnV8nybzSJppqz7kwWdkE.roa (raw, json)
Hash identifier: ld/+XghMQd+Syfff5ETx/8lZ93+Q00uXpckjbHQbhwM=
Subject key identifier: 7D:C5:23:89:11:27:57:C9:F2:6F:34:89:A6:9A:B3:EE:4C:16:76:41
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019017F387E6AE25EB348A00DA295CB957D3
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/fcUjiREnV8nybzSJppqz7kwWdkE.roa
Signing time: Fri 14 Jun 2024 18:12:34 +0000
ROA not before: Fri 14 Jun 2024 18:12:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 14 Jun 2024 19:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:17:f3:87:e6:ae:25:eb:34:8a:00:da:29:5c:b9:57:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 14 18:12:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7dc52389112757c9f26f3489a69ab3ee4c167641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:39:bc:92:55:d3:74:a1:0d:ea:56:06:b7:5d:
d9:8b:f6:96:07:1b:11:a1:e2:88:e9:35:4f:03:49:
ab:71:2f:1c:fa:6e:1a:3e:a6:1b:19:01:27:88:0f:
20:92:15:32:ad:31:79:fa:89:2a:4a:81:4e:9e:66:
91:1f:52:8f:ae:ef:27:6b:51:7a:bd:8c:f7:f9:98:
00:dd:01:44:83:7c:d0:fd:3f:ad:01:af:20:31:5d:
d3:ff:02:84:46:38:ca:b4:b6:60:a4:6c:c2:4d:05:
52:03:7c:3d:23:65:e5:46:f1:5b:35:bd:3f:14:95:
d9:32:b7:31:9b:11:48:63:e8:43:92:57:c6:26:8b:
e9:47:57:15:4c:e7:50:e7:06:c3:54:e5:c9:5d:1e:
ff:97:12:31:c1:d7:00:13:5b:b7:72:49:44:b5:fb:
46:f6:a1:75:0b:9e:49:3a:3c:18:9b:5e:71:be:65:
76:69:4c:dd:61:52:e4:5d:93:d9:ab:f2:4e:24:7d:
40:fa:d1:b8:95:91:45:8d:ff:3f:b3:97:73:63:3d:
47:91:80:50:61:45:f9:43:03:05:a4:30:b3:b8:ce:
15:02:d9:0a:5b:85:b9:81:cf:cd:83:f4:33:1d:52:
06:86:58:25:84:ed:d2:37:a7:09:6b:f8:82:e2:c8:
11:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:C5:23:89:11:27:57:C9:F2:6F:34:89:A6:9A:B3:EE:4C:16:76:41
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/fcUjiREnV8nybzSJppqz7kwWdkE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
4f:35:d2:ef:95:e0:2a:fb:86:ce:c5:7e:1f:45:53:2a:2c:8e:
d2:eb:26:02:03:03:8a:80:06:d8:2d:94:e7:2c:05:8c:c0:bc:
a0:ef:c2:90:28:c5:57:87:85:0a:a8:41:b8:56:97:69:e3:90:
95:c5:96:16:a1:87:bf:03:d5:6f:a5:d2:5d:b3:0e:b4:01:f7:
fd:e1:2a:c1:f1:a9:a8:6f:23:30:0c:a8:c2:29:83:aa:47:9a:
57:0f:ba:1e:a3:14:b0:0d:25:b4:be:2d:bb:1c:f8:1a:e1:2d:
a5:7a:40:81:62:28:24:0c:15:2a:d8:f5:0f:74:34:27:e7:d9:
87:9b:ad:2a:29:3d:db:a8:ae:52:60:20:93:f8:02:ee:80:d0:
ac:71:28:93:83:42:47:3b:28:82:eb:95:40:b8:f5:1b:09:22:
91:b5:2f:f8:32:6c:7b:bd:9a:93:59:27:73:6c:f1:56:a5:95:
d8:de:cb:ca:dc:de:95:26:e8:ae:aa:8d:ae:68:3d:03:a6:2a:
2d:cf:cf:41:be:33:c6:68:31:9c:1f:aa:c0:12:e9:cf:40:e9:
61:84:0d:b6:d7:ed:76:37:13:6f:c9:a8:f8:7e:1f:ad:b1:9e:
89:6a:8e:f4:1c:bf:e7:bf:b2:a8:2f:4f:2c:06:8f:d1:f4:8e:
b3:c8:73:de
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZAX84fmriXrNIoA2ilcuVfTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjE0MTgxMjM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZGM1MjM4OTExMjc1N2M5ZjI2ZjM0ODlhNjlhYjNlZTRjMTY3NjQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkzm8klXTdKEN6lYGt13Zi/aWBxsR
oeKI6TVPA0mrcS8c+m4aPqYbGQEniA8gkhUyrTF5+okqSoFOnmaRH1KPru8na1F6
vYz3+ZgA3QFEg3zQ/T+tAa8gMV3T/wKERjjKtLZgpGzCTQVSA3w9I2XlRvFbNb0/
FJXZMrcxmxFIY+hDklfGJovpR1cVTOdQ5wbDVOXJXR7/lxIxwdcAE1u3cklEtftG
9qF1C55JOjwYm15xvmV2aUzdYVLkXZPZq/JOJH1A+tG4lZFFjf8/s5dzYz1HkYBQ
YUX5QwMFpDCzuM4VAtkKW4W5gc/Ng/QzHVIGhlglhO3SN6cJa/iC4sgRoQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFH3FI4kRJ1fJ8m80iaaas+5MFnZBMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvZmNVamlSRW5WOG55YnpTSnBwcXo3a3dXZGtFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAE810u+V4Cr7hs7Ffh9F
UyosjtLrJgIDA4qABtgtlOcsBYzAvKDvwpAoxVeHhQqoQbhWl2njkJXFlhahh78D
1W+l0l2zDrQB9/3hKsHxqahvIzAMqMIpg6pHmlcPuh6jFLANJbS+Lbsc+BrhLaV6
QIFiKCQMFSrY9Q90NCfn2YebrSopPduorlJgIJP4Au6A0KxxKJODQkc7KILrlUC4
9RsJIpG1L/gybHu9mpNZJ3Ns8Valldjey8rc3pUm6K6qja5oPQOmKi3Pz0G+M8Zo
MZwfqsAS6c9A6WGEDbbX7XY3E2/JqPh+H62xnolqjvQcv+e/sqgvTywGj9H0jrPI
c94=
-----END CERTIFICATE-----
Generated at Fri Jun 14 19:55:18 2024 by rpki-client on console-fra.rpki-client.org