Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/mm_CxSilZNAgxEawk6nk311ZEyQ.roa
File: mm_CxSilZNAgxEawk6nk311ZEyQ.roa (raw, json)
Hash identifier: hi+7lwapzXZo+96ScYTK6Me9VK5ORA2h+vgHIAyoThI=
Subject key identifier: 9A:6F:C2:C5:28:A5:64:D0:20:C4:46:B0:93:A9:E4:DF:5D:59:13:24
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FFB67B0E62D161451EB401A6F3B852205
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/mm_CxSilZNAgxEawk6nk311ZEyQ.roa
Signing time: Sun 09 Jun 2024 05:10:27 +0000
ROA not before: Sun 09 Jun 2024 05:10:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 09 Jun 2024 06:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:fb:67:b0:e6:2d:16:14:51:eb:40:1a:6f:3b:85:22:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 9 05:10:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9a6fc2c528a564d020c446b093a9e4df5d591324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:20:a6:6c:e6:8e:c2:d3:4c:55:5a:76:b3:90:
08:b2:58:12:a3:7c:40:4b:42:14:e9:7b:43:8b:03:
29:61:be:b9:c0:8e:1a:41:ca:f3:b8:29:ac:16:2f:
96:d0:fd:db:cf:04:62:76:0e:b1:0d:86:15:37:c1:
15:20:f2:6e:15:e8:97:48:1d:c7:10:5c:3f:9f:fa:
c3:67:0b:4e:94:13:83:ac:c9:76:5b:e9:79:f0:7f:
a1:30:ff:07:d7:b9:7b:69:45:75:df:98:c3:a1:d2:
94:a4:7e:71:9a:52:21:c6:0c:82:9d:79:47:73:e6:
0d:2c:76:4a:aa:3a:aa:39:a0:1d:02:96:d3:f9:c5:
cc:e3:51:bc:ad:47:57:ad:88:8f:0d:53:2f:62:ab:
f9:be:b7:e4:bc:64:d1:22:00:87:f8:59:25:ac:cd:
d4:20:01:86:bc:64:fa:c9:d3:94:31:7f:6a:cf:8e:
fe:7a:e7:f1:56:89:05:b6:ee:83:9a:50:1c:cb:5f:
b8:3a:0f:29:7f:63:fa:24:9a:13:ea:dd:5c:ab:e2:
2a:22:7b:fa:8f:2d:08:85:48:21:a2:35:1a:59:b8:
50:07:4f:fa:c6:bf:8b:5c:69:05:9a:9c:d5:80:70:
6c:a0:57:31:9e:09:71:f2:e4:30:72:41:84:b6:c7:
d6:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:6F:C2:C5:28:A5:64:D0:20:C4:46:B0:93:A9:E4:DF:5D:59:13:24
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/mm_CxSilZNAgxEawk6nk311ZEyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
22:b8:5e:cc:5f:29:6e:16:3f:c1:d9:c3:5e:17:ec:35:09:52:
4e:a0:c5:46:86:94:8f:a0:d2:07:3e:22:33:15:ca:f4:1a:5a:
d9:6a:26:63:de:32:fa:54:e2:a5:51:4d:53:67:83:ee:0e:09:
04:ca:a5:3f:e1:ed:f0:22:0a:43:6f:a6:02:a0:4b:76:b1:2f:
44:00:bf:c9:7c:fd:73:ce:23:de:63:6e:10:00:63:53:b8:34:
66:ac:a0:83:e0:49:be:62:50:66:ef:0e:2e:6e:5e:88:2c:4f:
db:cd:96:db:94:74:96:5c:80:f5:34:27:53:fd:27:cf:ed:31:
e2:63:46:53:05:26:ae:ee:13:ee:c4:f1:2a:be:68:02:23:7b:
60:57:5d:44:a0:da:a6:c5:74:e6:9d:0d:cd:cc:f7:e6:d2:26:
0e:16:8a:07:ff:12:e4:6c:3f:91:f7:71:3b:03:be:b7:40:f8:
25:34:75:84:5b:32:a4:c1:79:28:61:65:e7:d6:48:4c:7e:41:
e2:11:bb:46:0f:c6:30:51:7c:4c:37:fd:8f:6f:5e:f6:a6:32:
d2:c5:3b:5b:df:d2:f6:91:b5:73:32:68:58:a9:c1:db:bd:30:
ed:7c:f2:84:06:06:6d:0f:bf:32:38:64:02:98:11:fc:1f:02:
31:d8:69:ea
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY/7Z7DmLRYUUetAGm87hSIFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjA5MDUxMDI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YTZmYzJjNTI4YTU2NGQwMjBjNDQ2YjA5M2E5ZTRkZjVkNTkxMzI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0SCmbOaOwtNMVVp2s5AIslgSo3xA
S0IU6XtDiwMpYb65wI4aQcrzuCmsFi+W0P3bzwRidg6xDYYVN8EVIPJuFeiXSB3H
EFw/n/rDZwtOlBODrMl2W+l58H+hMP8H17l7aUV135jDodKUpH5xmlIhxgyCnXlH
c+YNLHZKqjqqOaAdApbT+cXM41G8rUdXrYiPDVMvYqv5vrfkvGTRIgCH+FklrM3U
IAGGvGT6ydOUMX9qz47+eufxVokFtu6DmlAcy1+4Og8pf2P6JJoT6t1cq+IqInv6
jy0IhUghojUaWbhQB0/6xr+LXGkFmpzVgHBsoFcxnglx8uQwckGEtsfWlwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFJpvwsUopWTQIMRGsJOp5N9dWRMkMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvbW1fQ3hTaWxaTkFneEVhd2s2bmszMTFaRXlRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBACK4XsxfKW4WP8HZw14X
7DUJUk6gxUaGlI+g0gc+IjMVyvQaWtlqJmPeMvpU4qVRTVNng+4OCQTKpT/h7fAi
CkNvpgKgS3axL0QAv8l8/XPOI95jbhAAY1O4NGasoIPgSb5iUGbvDi5uXogsT9vN
ltuUdJZcgPU0J1P9J8/tMeJjRlMFJq7uE+7E8Sq+aAIje2BXXUSg2qbFdOadDc3M
9+bSJg4Wigf/EuRsP5H3cTsDvrdA+CU0dYRbMqTBeShhZefWSEx+QeIRu0YPxjBR
fEw3/Y9vXvamMtLFO1vf0vaRtXMyaFipwdu9MO188oQGBm0PvzI4ZAKYEfwfAjHY
aeo=
Generated at Sun Jun 9 07:02:42 2024 by rpki-client on console-fra.rpki-client.org