Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/9iUJt2a45QKchFtd-v9L4_SC-Zc.roa
File: 9iUJt2a45QKchFtd-v9L4_SC-Zc.roa (raw, json)
Hash identifier: NWyAEEzkSw32roVk/Da2P+BFmWxaFEtQ4eFWEO/84fU=
Subject key identifier: F6:25:09:B7:66:B8:E5:02:9C:84:5B:5D:FA:FF:4B:E3:F4:82:F9:97
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FC88FDD3183CED7AF7F31A2705634C94E
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/9iUJt2a45QKchFtd-v9L4_SC-Zc.roa
Signing time: Thu 30 May 2024 08:13:42 +0000
ROA not before: Thu 30 May 2024 08:13:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 30 May 2024 09:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c8:8f:dd:31:83:ce:d7:af:7f:31:a2:70:56:34:c9:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: May 30 08:13:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f62509b766b8e5029c845b5dfaff4be3f482f997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4e:55:40:ed:38:79:75:90:15:3f:f7:8c:21:
14:af:67:0d:67:89:c1:04:24:14:98:9d:ad:4e:b2:
34:b6:5e:0c:90:2a:28:c5:17:d7:2e:43:b3:21:f5:
3c:f4:97:d7:77:bb:fd:51:0e:30:ed:9a:f9:78:30:
c2:cc:4b:23:e7:21:c7:75:c0:22:91:e4:23:8e:af:
c5:a2:83:e9:b9:19:5a:12:55:d9:49:b4:87:53:3a:
74:d8:da:b2:96:9a:be:2e:9e:ef:6d:60:aa:85:44:
e6:cb:a9:fe:d3:b2:87:21:f8:0a:26:1c:50:9e:d7:
49:a7:91:cf:09:9f:11:bf:74:aa:b4:83:ad:34:a2:
80:ed:c9:c1:6b:44:04:b2:fc:33:5f:3f:62:3a:9f:
37:b9:4d:08:0f:59:89:61:ad:ae:e3:c4:d3:a1:57:
8f:66:05:19:32:24:2e:d6:66:f0:fc:df:40:8e:e1:
68:62:ea:30:26:b3:95:f3:98:45:0c:15:48:08:9d:
c0:e0:4e:e4:49:4c:cb:6a:2e:44:5e:b0:a8:c9:33:
8d:2c:af:6b:19:96:21:34:ef:55:65:c0:4e:fb:4b:
69:cc:31:2e:82:b7:a0:84:0d:1c:0c:e1:a1:f6:84:
82:61:1c:d0:44:56:57:e8:ef:49:ae:63:ab:08:9c:
da:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:25:09:B7:66:B8:E5:02:9C:84:5B:5D:FA:FF:4B:E3:F4:82:F9:97
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/9iUJt2a45QKchFtd-v9L4_SC-Zc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
08:75:83:4a:34:98:72:69:e0:fe:04:0e:55:c3:9e:cb:4d:97:
8b:97:6f:5d:e9:93:7e:2f:3a:7b:1e:98:67:ac:bc:10:e9:bf:
df:8a:57:27:46:db:a8:9d:9e:c7:96:bf:95:5a:88:d2:36:02:
d8:bf:97:ee:8b:37:c3:11:27:50:d3:37:4f:48:c4:d8:0b:6a:
50:93:8f:2e:16:c4:11:6f:b1:35:f8:a7:55:a0:55:52:76:5e:
76:bd:b4:7a:10:8a:14:b1:52:42:47:6d:9d:33:e2:4b:b3:74:
00:1b:00:1c:92:fb:0f:60:fa:dc:e2:9c:e5:80:e4:24:9e:5d:
dc:a6:b5:ff:bd:1d:e8:ee:a1:0e:c2:57:7f:40:74:24:c3:db:
e0:42:77:c7:c6:89:82:ea:60:e3:d9:74:d5:82:9b:d2:3d:79:
56:b6:0f:a7:ce:38:c2:23:14:1b:a2:5e:95:e0:bf:4a:32:05:
74:b6:cd:b5:21:42:ed:75:6e:a0:a9:d7:7a:ff:51:db:f3:26:
5e:e0:d7:02:94:64:8e:cc:fc:42:1d:39:5f:d6:94:cb:9d:89:
d8:c6:11:3b:6b:63:fd:a9:c4:7c:c3:f5:f4:25:f0:7c:18:2c:
a8:65:fb:d6:e6:79:3d:8f:4e:98:52:e9:1f:94:34:ad:e8:50:
e9:bb:98:39
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY/Ij90xg87Xr38xonBWNMlOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNTMwMDgxMzQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNjI1MDliNzY2YjhlNTAyOWM4NDViNWRmYWZmNGJlM2Y0ODJmOTk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtU5VQO04eXWQFT/3jCEUr2cNZ4nB
BCQUmJ2tTrI0tl4MkCooxRfXLkOzIfU89JfXd7v9UQ4w7Zr5eDDCzEsj5yHHdcAi
keQjjq/FooPpuRlaElXZSbSHUzp02Nqylpq+Lp7vbWCqhUTmy6n+07KHIfgKJhxQ
ntdJp5HPCZ8Rv3SqtIOtNKKA7cnBa0QEsvwzXz9iOp83uU0ID1mJYa2u48TToVeP
ZgUZMiQu1mbw/N9AjuFoYuowJrOV85hFDBVICJ3A4E7kSUzLai5EXrCoyTONLK9r
GZYhNO9VZcBO+0tpzDEugreghA0cDOGh9oSCYRzQRFZX6O9JrmOrCJza/QIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFPYlCbdmuOUCnIRbXfr/S+P0gvmXMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvOWlVSnQyYTQ1UUtjaEZ0ZC12OUw0X1NDLVpjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAAh1g0o0mHJp4P4EDlXD
nstNl4uXb13pk34vOnsemGesvBDpv9+KVydG26idnseWv5VaiNI2Ati/l+6LN8MR
J1DTN09IxNgLalCTjy4WxBFvsTX4p1WgVVJ2Xna9tHoQihSxUkJHbZ0z4kuzdAAb
AByS+w9g+tzinOWA5CSeXdymtf+9HejuoQ7CV39AdCTD2+BCd8fGiYLqYOPZdNWC
m9I9eVa2D6fOOMIjFBuiXpXgv0oyBXS2zbUhQu11bqCp13r/UdvzJl7g1wKUZI7M
/EIdOV/WlMudidjGETtrY/2pxHzD9fQl8HwYLKhl+9bmeT2PTphS6R+UNK3oUOm7
mDk=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:02 2025 by rpki-client