Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7MWbBGZe-YyGybmsAFW0SGnL0e8.roa
File: 7MWbBGZe-YyGybmsAFW0SGnL0e8.roa (raw, json)
Hash identifier: tr8F3fum06g0BQb3Kw/pAtp3sXHE8Q20yV3xrLXRzAY=
Subject key identifier: EC:C5:9B:04:66:5E:F9:8C:86:C9:B9:AC:00:55:B4:48:69:CB:D1:EF
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019075EE6EF15B81C2C7CD414E340628C600
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7MWbBGZe-YyGybmsAFW0SGnL0e8.roa
Signing time: Wed 03 Jul 2024 00:11:18 +0000
ROA not before: Wed 03 Jul 2024 00:11:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 03 Jul 2024 01:04:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:75:ee:6e:f1:5b:81:c2:c7:cd:41:4e:34:06:28:c6:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 3 00:11:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ecc59b04665ef98c86c9b9ac0055b44869cbd1ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9d:02:29:b8:3d:54:56:00:af:6b:74:0b:a4:
53:a9:e5:ba:ae:8e:fe:3b:cd:60:9c:e2:98:69:08:
e6:dc:38:d0:c8:61:10:ec:16:1f:16:3e:ff:15:45:
71:e1:61:17:c8:4a:d1:c3:bf:96:a5:97:6b:69:9d:
a9:4c:7b:f0:4a:94:50:11:fc:f4:bf:cd:13:a7:b3:
b7:96:a3:d6:e7:0e:a4:0d:d0:30:e5:3f:d2:c3:bc:
d7:22:69:50:f5:80:e7:63:14:11:24:a2:22:dc:ba:
f7:71:62:84:9d:95:ff:f6:44:cf:87:8f:18:c2:eb:
4d:8f:df:50:7f:ff:c6:f6:1a:22:26:12:76:af:9f:
68:8f:6a:12:95:45:4f:e1:34:10:09:ff:e7:f0:23:
4b:21:36:df:6a:72:87:92:ee:46:cd:7f:14:69:0d:
af:7f:76:5c:6a:80:bf:f7:8d:30:c6:46:bf:48:f9:
7d:ca:4d:c1:86:b7:06:e9:c2:ed:d1:67:a6:29:b7:
6a:8e:92:10:e2:9b:3d:30:a1:8f:51:39:9d:e2:85:
54:3d:89:13:d7:63:5d:aa:9c:f3:93:ac:bf:89:36:
8c:b7:1e:5d:16:ee:b6:06:23:9e:de:e1:eb:31:dd:
7f:8c:10:42:a5:36:24:98:68:df:e2:cf:fb:92:39:
70:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:C5:9B:04:66:5E:F9:8C:86:C9:B9:AC:00:55:B4:48:69:CB:D1:EF
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7MWbBGZe-YyGybmsAFW0SGnL0e8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
58:fc:20:6c:55:58:3a:2f:d6:ff:1c:4f:b1:f5:29:92:8d:62:
b0:c2:cc:0f:ff:2f:ec:31:18:cc:78:ac:30:65:44:df:34:6b:
66:be:ed:6d:be:a7:f2:f5:ea:62:03:c8:1c:87:e9:4d:0e:5a:
f6:46:54:9f:64:b5:96:f5:1c:56:9c:7f:f3:b5:dd:c4:86:a8:
7c:52:ce:38:48:4a:87:0a:24:46:73:32:74:b7:67:bc:a6:fb:
12:aa:8a:ba:8b:a5:56:35:b6:1a:bc:97:e6:8e:c8:3d:f5:8d:
a4:2f:ca:06:da:cc:18:b5:e0:b3:5a:91:58:12:63:ba:ad:81:
14:e8:ee:2e:91:5c:87:84:f7:43:42:fc:f0:05:d0:a4:4e:4b:
bc:91:39:1c:78:34:ad:ea:a5:61:9f:b0:22:ed:21:8a:9b:21:
86:aa:6f:d7:22:c2:7f:13:ae:1e:6a:b7:3e:d8:79:a9:fa:27:
65:7b:af:04:fb:c1:cb:35:c0:ed:f1:6d:7d:2f:e7:d8:a4:89:
3a:66:a9:0c:a1:d4:23:e6:4d:0d:ec:32:18:56:32:34:b2:3d:
0f:82:77:ac:bb:e3:23:17:6f:19:45:a4:80:1b:9d:94:b0:6f:
79:04:12:e1:9c:bf:76:45:bb:2d:70:6b:e8:14:59:59:b4:63:
31:0b:9b:56
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZB17m7xW4HCx81BTjQGKMYAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNzAzMDAxMTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlY2M1OWIwNDY2NWVmOThjODZjOWI5YWMwMDU1YjQ0ODY5Y2JkMWVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZ0CKbg9VFYAr2t0C6RTqeW6ro7+
O81gnOKYaQjm3DjQyGEQ7BYfFj7/FUVx4WEXyErRw7+WpZdraZ2pTHvwSpRQEfz0
v80Tp7O3lqPW5w6kDdAw5T/Sw7zXImlQ9YDnYxQRJKIi3Lr3cWKEnZX/9kTPh48Y
wutNj99Qf//G9hoiJhJ2r59oj2oSlUVP4TQQCf/n8CNLITbfanKHku5GzX8UaQ2v
f3ZcaoC/940wxka/SPl9yk3BhrcG6cLt0WemKbdqjpIQ4ps9MKGPUTmd4oVUPYkT
12Ndqpzzk6y/iTaMtx5dFu62BiOe3uHrMd1/jBBCpTYkmGjf4s/7kjlwHwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFOzFmwRmXvmMhsm5rABVtEhpy9HvMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvN01XYkJHWmUtWXlHeWJtc0FGVzBTR25MMGU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAFj8IGxVWDov1v8cT7H1
KZKNYrDCzA//L+wxGMx4rDBlRN80a2a+7W2+p/L16mIDyByH6U0OWvZGVJ9ktZb1
HFacf/O13cSGqHxSzjhISocKJEZzMnS3Z7ym+xKqirqLpVY1thq8l+aOyD31jaQv
ygbazBi14LNakVgSY7qtgRTo7i6RXIeE90NC/PAF0KROS7yRORx4NK3qpWGfsCLt
IYqbIYaqb9ciwn8Trh5qtz7Yean6J2V7rwT7wcs1wO3xbX0v59ikiTpmqQyh1CPm
TQ3sMhhWMjSyPQ+Cd6y74yMXbxlFpIAbnZSwb3kEEuGcv3ZFuy1wa+gUWVm0YzEL
m1Y=
-----END CERTIFICATE-----
Generated at Wed Jul 3 03:45:46 2024 by rpki-client on console-fra.rpki-client.org