Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/mm2ZiJ8y1Xa9lUuHUAC5SXfVJK0.roa
File: mm2ZiJ8y1Xa9lUuHUAC5SXfVJK0.roa (raw, json)
Hash identifier: q1woUf2fh4r1CQPU/RKcdPN4bb06/o0/fuSdRZG2zes=
Subject key identifier: 9A:6D:99:88:9F:32:D5:76:BD:95:4B:87:50:00:B9:49:77:D5:24:AD
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01902B7790C3630929314125429341613926
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/mm2ZiJ8y1Xa9lUuHUAC5SXfVJK0.roa
Signing time: Tue 18 Jun 2024 13:09:34 +0000
ROA not before: Tue 18 Jun 2024 13:09:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 18 Jun 2024 14:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:2b:77:90:c3:63:09:29:31:41:25:42:93:41:61:39:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 18 13:09:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9a6d99889f32d576bd954b875000b94977d524ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:11:60:da:59:0c:f2:5e:01:69:d1:70:fd:d4:
ef:8e:e8:1f:9e:c7:3e:38:f3:77:08:bd:b0:83:62:
84:20:43:d9:9e:d0:fb:28:4d:b8:52:24:52:91:cb:
5e:a2:77:fe:fb:7c:61:98:22:80:cc:7b:34:9e:00:
71:b0:f4:47:57:4a:f5:86:c4:60:32:0d:38:39:1e:
54:6e:14:4c:d0:cb:db:1d:23:c3:1f:71:9f:b7:5c:
0c:1b:27:c2:22:9b:33:03:33:54:54:82:83:5d:29:
04:0d:85:a9:a2:9f:83:4b:ca:9f:0a:3c:33:5e:21:
97:7c:16:59:f5:26:84:15:01:b2:d5:30:12:c1:e3:
67:ff:d8:fd:18:89:ac:28:7e:f9:44:5a:e9:3d:aa:
2e:4d:b2:02:fa:12:be:56:b1:6b:94:23:64:b1:75:
3b:13:2f:6d:f5:88:ac:e5:6f:c3:51:f5:0c:24:78:
17:ea:0d:12:d9:a6:83:28:d8:de:6e:0e:89:82:13:
f4:4e:93:7a:dd:b6:b8:3f:d6:c9:a6:d3:a5:53:bc:
88:54:4d:a1:90:a2:a7:06:8c:4e:b0:80:ea:6e:e6:
96:94:c1:ed:47:b6:5b:4d:a7:37:1e:a9:7a:57:22:
ba:a5:6a:c8:2e:fc:d8:b9:a6:48:a9:05:91:7f:5d:
0a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:6D:99:88:9F:32:D5:76:BD:95:4B:87:50:00:B9:49:77:D5:24:AD
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/mm2ZiJ8y1Xa9lUuHUAC5SXfVJK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
57:4b:26:3f:22:51:72:fe:35:6f:88:ce:93:86:d4:84:c3:ea:
27:63:31:6d:47:c4:db:c2:d4:59:09:7a:81:7d:cd:70:b4:ad:
3e:e6:4a:b8:e1:df:09:cd:ab:dd:ee:15:ef:ba:e4:ea:f9:e2:
2a:e9:31:e5:af:15:09:52:12:82:51:30:50:dd:74:c7:c1:a7:
45:97:08:31:2b:17:6c:f3:a3:0d:31:ef:1b:70:c1:52:1e:43:
dc:42:83:b4:ba:45:48:20:32:08:94:bb:48:01:17:9b:b1:da:
d1:1b:52:cc:dd:45:51:46:0e:6c:4c:39:f7:a2:3c:48:30:44:
80:ee:5d:31:ce:b8:e2:e2:47:3a:38:a6:da:a4:9d:66:ad:1f:
ea:af:a9:af:e0:a3:f7:93:5f:25:99:3d:12:cb:0f:a8:c8:e6:
93:d1:f8:20:49:e5:48:d4:43:9c:f4:d6:f6:99:00:1c:e8:4b:
2c:cf:46:64:d6:c3:a0:61:a5:d2:75:44:47:93:63:52:3f:8d:
f0:20:ce:d0:51:40:57:84:0b:12:dc:ae:4a:0c:71:0a:3b:c4:
c0:e5:4a:bb:69:46:06:4d:e1:8b:2e:b9:b0:f7:e3:72:c0:eb:
6f:da:20:dd:ec:e6:65:63:fe:44:d3:db:af:79:8c:16:a2:59:
51:66:fc:e4
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZArd5DDYwkpMUElQpNBYTkmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjE4MTMwOTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YTZkOTk4ODlmMzJkNTc2YmQ5NTRiODc1MDAwYjk0OTc3ZDUyNGFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+RFg2lkM8l4BadFw/dTvjugfnsc+
OPN3CL2wg2KEIEPZntD7KE24UiRSkcteonf++3xhmCKAzHs0ngBxsPRHV0r1hsRg
Mg04OR5UbhRM0MvbHSPDH3Gft1wMGyfCIpszAzNUVIKDXSkEDYWpop+DS8qfCjwz
XiGXfBZZ9SaEFQGy1TASweNn/9j9GImsKH75RFrpPaouTbIC+hK+VrFrlCNksXU7
Ey9t9Yis5W/DUfUMJHgX6g0S2aaDKNjebg6JghP0TpN63ba4P9bJptOlU7yIVE2h
kKKnBoxOsIDqbuaWlMHtR7ZbTac3Hql6VyK6pWrILvzYuaZIqQWRf10KxwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFJptmYifMtV2vZVLh1AAuUl31SStMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvbW0yWmlKOHkxWGE5bFV1SFVBQzVTWGZWSkswLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAFdLJj8iUXL+NW+IzpOG
1ITD6idjMW1HxNvC1FkJeoF9zXC0rT7mSrjh3wnNq93uFe+65Or54irpMeWvFQlS
EoJRMFDddMfBp0WXCDErF2zzow0x7xtwwVIeQ9xCg7S6RUggMgiUu0gBF5ux2tEb
UszdRVFGDmxMOfeiPEgwRIDuXTHOuOLiRzo4ptqknWatH+qvqa/go/eTXyWZPRLL
D6jI5pPR+CBJ5UjUQ5z01vaZABzoSyzPRmTWw6BhpdJ1REeTY1I/jfAgztBRQFeE
CxLcrkoMcQo7xMDlSrtpRgZN4YsuubD343LA62/aIN3s5mVj/kTT2695jBaiWVFm
/OQ=
-----END CERTIFICATE-----
Generated at Tue Jun 18 20:00:09 2024 by rpki-client on console-ams.rpki-client.org