Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/luBH43RAQDKmdbQArLxoj_AzFCU.roa
File: luBH43RAQDKmdbQArLxoj_AzFCU.roa (raw, json)
Hash identifier: k2lO+R4brDWStlYH+QtQSe0UW3Ip0i/S0yxZTbanpyA=
Subject key identifier: 96:E0:47:E3:74:40:40:32:A6:75:B4:00:AC:BC:68:8F:F0:33:14:25
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01905097A87D909EA4473AA85B1AE3C308DC
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/luBH43RAQDKmdbQArLxoj_AzFCU.roa
Signing time: Tue 25 Jun 2024 18:10:34 +0000
ROA not before: Tue 25 Jun 2024 18:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 25 Jun 2024 19:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:50:97:a8:7d:90:9e:a4:47:3a:a8:5b:1a:e3:c3:08:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 25 18:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96e047e374404032a675b400acbc688ff0331425
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8a:bc:af:fa:e2:c1:51:49:55:73:45:46:78:
bb:0b:2a:00:70:8b:88:21:ea:2e:90:19:01:71:31:
9f:21:b8:b9:90:45:d7:28:4e:de:dc:84:cc:2d:ed:
58:bf:40:17:5d:d3:f5:49:2d:38:08:43:08:22:29:
5d:b5:c0:d5:b8:e0:c2:26:eb:0e:6f:8b:51:4f:f2:
f2:c8:bf:32:6c:ba:c4:50:0b:1a:a4:63:93:d9:37:
23:c1:c6:57:5e:52:77:16:2f:60:c5:88:81:e8:d0:
a7:82:8b:78:e3:07:5d:14:37:ab:bd:3e:b8:3f:a0:
b0:0b:cd:7f:fb:79:84:10:af:0a:14:16:3c:f9:b8:
64:e9:13:63:1f:fc:de:67:c2:25:f4:40:c9:8c:87:
71:11:54:2d:62:1a:24:86:8a:9a:48:5e:a6:3a:dd:
50:26:c1:75:8d:ef:3d:bc:3b:15:95:35:f4:89:f1:
aa:26:7b:17:b8:cf:b8:fc:db:a6:10:7c:70:44:45:
b1:80:b3:ff:fe:d5:24:a0:a7:fe:23:9b:af:51:8f:
58:34:97:9f:10:bf:ed:d3:59:d1:7f:f9:32:3f:71:
f1:5b:52:b6:e2:82:66:cd:ae:21:0a:7a:6d:9f:a4:
43:8f:a3:d2:e2:68:29:16:cb:09:8e:0e:fc:ab:f1:
e6:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:E0:47:E3:74:40:40:32:A6:75:B4:00:AC:BC:68:8F:F0:33:14:25
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/luBH43RAQDKmdbQArLxoj_AzFCU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
37:7f:ad:36:0a:d3:f3:e4:18:c9:1f:34:69:eb:b1:84:07:fb:
90:32:e7:cd:20:41:42:d5:9a:c2:e2:4a:e5:16:b7:0d:35:6b:
79:45:29:53:a9:06:de:d0:26:e2:b5:a9:81:9f:fc:f4:0e:74:
5e:aa:e5:f4:db:e2:ef:3d:ca:c7:da:cd:c3:a7:f8:9a:ad:b0:
43:87:60:a1:12:b3:f6:8c:0d:61:cc:8c:29:39:63:4d:56:1e:
7f:5c:6c:03:6c:16:a4:c3:60:52:fe:bd:27:74:db:39:5a:73:
b4:8a:4c:a5:d0:73:c9:18:91:f4:08:b5:af:03:cb:c6:27:c5:
b0:b9:aa:78:96:7f:69:f2:91:83:99:ee:7a:67:88:05:aa:a4:
00:e4:43:be:92:b3:bc:52:8d:5f:48:4d:a7:5d:a6:8c:65:c3:
52:d9:6c:f2:cd:0b:b0:63:b1:cf:67:c3:33:74:22:5b:15:98:
c8:d5:da:06:26:b1:9d:77:43:e8:cd:e3:86:6e:6e:99:92:8d:
ec:32:cb:e9:1b:75:1e:d5:54:ea:3e:a9:2a:52:d8:ff:61:59:
26:9a:3e:59:58:d0:5d:2a:71:28:28:8b:9c:f0:57:9d:3d:fd:
94:bb:4c:97:8d:ab:80:41:c7:55:d8:ee:0a:9d:45:f6:96:de:
06:7a:e7:32
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZBQl6h9kJ6kRzqoWxrjwwjcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjI1MTgxMDM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NmUwNDdlMzc0NDA0MDMyYTY3NWI0MDBhY2JjNjg4ZmYwMzMxNDI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwoq8r/riwVFJVXNFRni7CyoAcIuI
IeoukBkBcTGfIbi5kEXXKE7e3ITMLe1Yv0AXXdP1SS04CEMIIildtcDVuODCJusO
b4tRT/LyyL8ybLrEUAsapGOT2TcjwcZXXlJ3Fi9gxYiB6NCngot44wddFDervT64
P6CwC81/+3mEEK8KFBY8+bhk6RNjH/zeZ8Il9EDJjIdxEVQtYhokhoqaSF6mOt1Q
JsF1je89vDsVlTX0ifGqJnsXuM+4/NumEHxwREWxgLP//tUkoKf+I5uvUY9YNJef
EL/t01nRf/kyP3HxW1K24oJmza4hCnptn6RDj6PS4mgpFssJjg78q/HmrwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFJbgR+N0QEAypnW0AKy8aI/wMxQlMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvbHVCSDQzUkFRREttZGJRQXJMeG9qX0F6RkNVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBADd/rTYK0/PkGMkfNGnr
sYQH+5Ay580gQULVmsLiSuUWtw01a3lFKVOpBt7QJuK1qYGf/PQOdF6q5fTb4u89
ysfazcOn+JqtsEOHYKESs/aMDWHMjCk5Y01WHn9cbANsFqTDYFL+vSd02zlac7SK
TKXQc8kYkfQIta8Dy8YnxbC5qniWf2nykYOZ7npniAWqpADkQ76Ss7xSjV9ITadd
poxlw1LZbPLNC7Bjsc9nwzN0IlsVmMjV2gYmsZ13Q+jN44ZubpmSjewyy+kbdR7V
VOo+qSpS2P9hWSaaPllY0F0qcSgoi5zwV509/ZS7TJeNq4BBx1XY7gqdRfaW3gZ6
5zI=
-----END CERTIFICATE-----
Generated at Wed Jun 26 01:38:28 2024 by rpki-client on console-fra.rpki-client.org