Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/uHJU3k_PSMnsQLT_N2hBCx82A5U.roa
File: uHJU3k_PSMnsQLT_N2hBCx82A5U.roa (raw, json)
Hash identifier: c1V3y9aoIcMNyEf8l+UU1B5v2sZ/3vgmUmlGHvw+6ds=
Subject key identifier: B8:72:54:DE:4F:CF:48:C9:EC:40:B4:FF:37:68:41:0B:1F:36:03:95
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FEC987DEBE5ADB575F9CC23338FE8D3B4
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/uHJU3k_PSMnsQLT_N2hBCx82A5U.roa
Signing time: Thu 06 Jun 2024 08:09:27 +0000
ROA not before: Thu 06 Jun 2024 08:09:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 06 Jun 2024 09:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ec:98:7d:eb:e5:ad:b5:75:f9:cc:23:33:8f:e8:d3:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 6 08:09:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b87254de4fcf48c9ec40b4ff3768410b1f360395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:04:2f:88:c4:37:f0:7a:25:38:77:54:5e:70:
91:39:d0:7c:1f:b6:1e:dc:e6:15:05:f8:a9:6d:6c:
87:09:c2:d3:12:9b:80:6a:cd:f1:3e:a7:d5:a5:76:
bf:ab:4c:56:8a:69:e2:00:87:9c:0b:1f:09:15:28:
76:f4:ca:6d:96:3f:bd:6e:20:56:90:b9:d5:3b:ab:
d0:b8:ee:1c:60:14:8d:ba:f9:0b:08:11:1a:77:a1:
6a:ce:d6:b8:9d:fa:f3:a7:ac:ef:90:f6:e1:04:97:
e4:c7:59:8f:17:63:e1:a7:fc:67:35:59:1a:ee:cb:
3f:9e:6d:e7:03:a8:54:4c:40:bc:9d:e9:d1:a5:d7:
87:e2:5a:8a:d2:45:35:55:e0:8f:c7:6a:74:09:de:
e7:d4:b6:f6:86:28:96:39:39:d4:e3:38:96:f3:ea:
1e:85:3f:d9:a1:26:77:aa:e9:73:e5:ec:ca:36:5d:
f7:2c:27:75:e9:7e:75:38:80:74:a9:37:8e:fa:0f:
a2:c8:76:c7:5f:87:c0:86:ff:d8:e3:3b:28:75:1b:
47:2e:fb:9a:4b:65:ae:30:a2:7d:d8:8b:c7:28:77:
af:c3:47:63:60:0d:0a:1d:91:fc:c2:55:8f:f7:6e:
47:59:7f:58:09:14:b9:21:e3:91:fb:54:36:97:cc:
8f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:72:54:DE:4F:CF:48:C9:EC:40:B4:FF:37:68:41:0B:1F:36:03:95
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/uHJU3k_PSMnsQLT_N2hBCx82A5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
1e:f3:98:4a:7a:4e:82:4f:de:c8:87:8d:f7:28:d0:52:63:35:
44:e8:c3:d4:29:05:cc:70:b7:4d:15:e7:14:3f:26:34:bb:2f:
c4:f3:57:80:b0:87:72:db:33:cb:95:82:57:8f:03:cf:b9:51:
50:62:89:26:88:83:db:1e:3d:4c:9d:1f:fc:6d:ed:11:49:a6:
9e:8e:76:70:a6:16:16:a9:ea:96:ec:f9:ce:f6:8e:6a:70:f0:
44:09:c7:df:9a:9f:01:a4:02:4a:a2:4b:24:5e:a6:37:5f:4f:
41:cc:a1:20:01:f5:a2:b8:ec:2f:92:54:1d:91:1f:66:da:c1:
1f:d8:47:ca:35:a2:69:96:40:c7:d1:66:e7:55:38:7e:0f:b4:
21:65:17:f1:a0:19:8d:ac:8e:7e:d4:d5:8c:04:10:10:fe:20:
03:e6:2a:a7:0a:75:e1:4d:df:d0:c8:14:8a:d3:b6:4c:cc:f8:
64:08:21:df:e3:f8:80:31:31:54:48:c2:e1:20:52:6b:cc:6a:
9c:b4:41:20:28:1c:24:68:05:81:48:55:fd:f1:32:23:fa:04:
c3:1b:6a:51:05:33:c1:11:87:b3:4b:50:28:82:5a:a5:df:90:
ca:9f:43:ec:ea:59:e9:ec:ba:c0:f6:67:7d:71:22:5b:0b:23:
6d:37:d8:54
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY/smH3r5a21dfnMIzOP6NO0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjA2MDgwOTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODcyNTRkZTRmY2Y0OGM5ZWM0MGI0ZmYzNzY4NDEwYjFmMzYwMzk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0AQviMQ38HolOHdUXnCROdB8H7Ye
3OYVBfipbWyHCcLTEpuAas3xPqfVpXa/q0xWimniAIecCx8JFSh29Mptlj+9biBW
kLnVO6vQuO4cYBSNuvkLCBEad6Fqzta4nfrzp6zvkPbhBJfkx1mPF2Php/xnNVka
7ss/nm3nA6hUTEC8nenRpdeH4lqK0kU1VeCPx2p0Cd7n1Lb2hiiWOTnU4ziW8+oe
hT/ZoSZ3qulz5ezKNl33LCd16X51OIB0qTeO+g+iyHbHX4fAhv/Y4zsodRtHLvua
S2WuMKJ92IvHKHevw0djYA0KHZH8wlWP925HWX9YCRS5IeOR+1Q2l8yPPwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFLhyVN5Pz0jJ7EC0/zdoQQsfNgOVMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvdUhKVTNrX1BTTW5zUUxUX04yaEJDeDgyQTVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAB7zmEp6ToJP3siHjfco
0FJjNUTow9QpBcxwt00V5xQ/JjS7L8TzV4Cwh3LbM8uVglePA8+5UVBiiSaIg9se
PUydH/xt7RFJpp6OdnCmFhap6pbs+c72jmpw8EQJx9+anwGkAkqiSyRepjdfT0HM
oSAB9aK47C+SVB2RH2bawR/YR8o1ommWQMfRZudVOH4PtCFlF/GgGY2sjn7U1YwE
EBD+IAPmKqcKdeFN39DIFIrTtkzM+GQIId/j+IAxMVRIwuEgUmvMapy0QSAoHCRo
BYFIVf3xMiP6BMMbalEFM8ERh7NLUCiCWqXfkMqfQ+zqWensusD2Z31xIlsLI203
2FQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:52 2024 by rpki-client on console-fra.rpki-client.org