Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/sl_13ojUX-6yIQdyEvYyj-LALcI.roa
File: sl_13ojUX-6yIQdyEvYyj-LALcI.roa (raw, json)
Hash identifier: uZPUTzSer5rxKaCZcuQ2ZOKBOVNMPpAobQDJ4HssJIA=
Subject key identifier: B2:5F:F5:DE:88:D4:5F:EE:B2:21:07:72:12:F6:32:8F:E2:C0:2D:C2
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FE218805206C00D3464A4A5AFF4DCB255
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/sl_13ojUX-6yIQdyEvYyj-LALcI.roa
Signing time: Tue 04 Jun 2024 07:13:27 +0000
ROA not before: Tue 04 Jun 2024 07:13:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 04 Jun 2024 08:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e2:18:80:52:06:c0:0d:34:64:a4:a5:af:f4:dc:b2:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 4 07:13:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b25ff5de88d45feeb221077212f6328fe2c02dc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:8a:88:26:36:84:0c:40:08:ef:7a:ab:6e:61:
e0:a2:f9:6c:13:52:1c:b7:b7:5a:ef:21:e7:8a:7b:
9d:d7:5d:19:ca:a6:41:7c:70:42:97:af:d0:74:83:
69:b9:68:fd:a2:55:a1:11:cf:31:37:ae:2f:4e:ed:
a3:ed:a8:28:43:1c:83:b7:ce:aa:f2:6a:c6:d1:31:
7d:1f:99:1a:ea:f6:82:ad:0d:7d:8d:59:3a:7e:30:
91:ed:06:9d:4d:65:16:99:f3:5a:3a:83:02:8b:42:
e4:fc:7c:54:5e:3d:ab:c8:f1:69:ef:e5:dd:2f:7b:
51:06:c8:19:5f:ae:71:07:1e:ce:bf:5a:23:b2:96:
3c:17:4f:02:3b:5e:29:24:fd:5a:0f:37:68:41:97:
43:ea:5b:31:68:a3:de:88:ba:d5:d1:72:15:d9:b1:
f2:a3:f7:a1:89:7b:78:ab:41:8a:8d:28:40:1f:ce:
c8:9c:01:b2:a3:0c:76:97:15:31:54:cf:7b:ef:bb:
2e:2e:7b:8f:a0:8d:f7:fc:b3:1f:99:75:d2:0f:7a:
56:f2:7d:ef:44:e3:63:43:34:19:b9:ed:df:16:d3:
54:9e:4d:a8:7b:cf:c2:8a:83:59:c4:1d:43:81:7e:
78:cb:2e:72:99:3a:b2:d5:64:03:b8:16:9c:ce:41:
ca:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:5F:F5:DE:88:D4:5F:EE:B2:21:07:72:12:F6:32:8F:E2:C0:2D:C2
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/sl_13ojUX-6yIQdyEvYyj-LALcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
03:28:0c:0f:fa:21:a9:3b:95:8b:57:14:f5:a1:8c:da:83:ea:
36:a0:7b:29:9b:fc:7a:b7:f6:c8:31:d3:1a:52:30:d3:61:24:
e8:33:4e:36:6e:a0:2e:82:f3:ce:20:bd:53:7d:5f:06:fa:39:
69:f5:1c:2e:9e:25:a9:cc:70:c6:45:3d:1b:f7:c5:ba:39:f3:
1c:64:e7:ee:ea:b0:4d:a0:9e:b6:f4:59:49:fb:eb:91:a3:da:
03:57:32:cf:8f:8d:e8:f8:4e:fa:be:c3:cf:e5:7a:25:85:7a:
c1:c5:50:02:0d:39:fb:63:8c:77:74:33:e1:71:63:65:a6:21:
66:6d:ca:f1:4f:37:7d:d1:c0:5e:d9:4b:e2:77:e2:f6:dc:7f:
ea:80:72:3a:e0:c9:ea:cb:59:ba:b4:dc:fc:8a:fe:13:2f:78:
1b:de:09:24:ad:56:aa:a3:4a:09:22:65:11:be:bb:04:99:9b:
4b:b7:c4:41:eb:fa:b0:80:05:4a:f7:63:27:6f:a9:73:5d:9b:
dd:fc:88:61:23:07:f9:e7:23:cf:6f:e7:3d:02:ac:0e:fd:58:
a1:47:44:ce:4b:87:df:95:d5:16:5d:37:8b:08:81:33:f8:6e:
2a:c3:2e:4a:9f:39:0a:a7:1e:9b:87:d3:d1:71:47:73:d6:dc:
87:3a:62:ea
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY/iGIBSBsANNGSkpa/03LJVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjA0MDcxMzI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMjVmZjVkZTg4ZDQ1ZmVlYjIyMTA3NzIxMmY2MzI4ZmUyYzAyZGMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlYqIJjaEDEAI73qrbmHgovlsE1Ic
t7da7yHninud110ZyqZBfHBCl6/QdINpuWj9olWhEc8xN64vTu2j7agoQxyDt86q
8mrG0TF9H5ka6vaCrQ19jVk6fjCR7QadTWUWmfNaOoMCi0Lk/HxUXj2ryPFp7+Xd
L3tRBsgZX65xBx7Ov1ojspY8F08CO14pJP1aDzdoQZdD6lsxaKPeiLrV0XIV2bHy
o/ehiXt4q0GKjShAH87InAGyowx2lxUxVM9777suLnuPoI33/LMfmXXSD3pW8n3v
RONjQzQZue3fFtNUnk2oe8/CioNZxB1DgX54yy5ymTqy1WQDuBaczkHKewIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFLJf9d6I1F/usiEHchL2Mo/iwC3CMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvc2xfMTNvalVYLTZ5SVFkeUV2WXlqLUxBTGNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAAMoDA/6Iak7lYtXFPWh
jNqD6jageymb/Hq39sgx0xpSMNNhJOgzTjZuoC6C884gvVN9Xwb6OWn1HC6eJanM
cMZFPRv3xbo58xxk5+7qsE2gnrb0WUn765Gj2gNXMs+Pjej4Tvq+w8/leiWFesHF
UAINOftjjHd0M+FxY2WmIWZtyvFPN33RwF7ZS+J34vbcf+qAcjrgyerLWbq03PyK
/hMveBveCSStVqqjSgkiZRG+uwSZm0u3xEHr+rCABUr3YydvqXNdm938iGEjB/nn
I89v5z0CrA79WKFHRM5Lh9+V1RZdN4sIgTP4birDLkqfOQqnHpuH09FxR3PW3Ic6
Yuo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:52 2024 by rpki-client on console-fra.rpki-client.org