Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Blei7o60nuTHDFSXyf1n7NeOWvs.roa
File: Blei7o60nuTHDFSXyf1n7NeOWvs.roa (raw, json)
Hash identifier: yLBIdTXEutBaEXZSZp75+34mKXUOfuS2gCSY0Zs+oNk=
Subject key identifier: 06:57:A2:EE:8E:B4:9E:E4:C7:0C:54:97:C9:FD:67:EC:D7:8E:5A:FB
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01907A6D4112E7BC2E402C7C7AE659E1A723
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Blei7o60nuTHDFSXyf1n7NeOWvs.roa
Signing time: Wed 03 Jul 2024 21:08:18 +0000
ROA not before: Wed 03 Jul 2024 21:08:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 03 Jul 2024 22:04:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7a:6d:41:12:e7:bc:2e:40:2c:7c:7a:e6:59:e1:a7:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 3 21:08:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0657a2ee8eb49ee4c70c5497c9fd67ecd78e5afb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ff:bc:d3:a1:a8:cd:33:22:91:11:0c:f5:82:
fa:3f:f5:86:6e:1e:44:3c:66:9f:d9:db:cf:fe:74:
58:54:61:07:2d:4f:2f:fc:89:59:25:12:26:72:0b:
42:ca:bb:f1:ba:02:c0:c3:bc:29:ff:ac:64:a1:f5:
84:fd:be:fa:6b:e3:91:b1:80:bf:ab:1e:97:dd:6b:
a9:a1:8c:b2:78:f9:35:eb:0f:5a:b1:d1:ee:1a:10:
81:5c:6a:c3:b3:2e:4b:83:81:2e:fa:fe:9e:e6:e9:
60:b4:97:20:51:b1:cc:89:94:e1:53:47:f9:ec:4d:
2f:3a:72:ef:93:d4:ec:34:4d:ae:4f:4c:bc:ed:d9:
17:f9:15:ea:71:5c:c9:68:9e:23:20:02:c2:3c:1d:
7a:c9:22:56:be:ef:6c:f9:60:7d:53:de:bf:7a:0c:
b8:2a:2d:38:72:e7:41:94:d0:95:30:84:8b:33:b9:
00:cb:ab:56:5b:9f:20:d6:d8:36:01:f8:fd:5e:a6:
d3:06:7b:6d:e4:17:2d:dc:43:d2:30:83:61:5b:88:
75:7b:17:34:02:5b:ec:5a:ee:30:0b:17:1d:08:ce:
9b:dc:56:c7:d0:80:8b:9e:4d:6c:0d:71:73:b6:1b:
67:60:5d:13:bd:3d:9e:a2:96:df:a1:cc:87:0c:82:
d1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:57:A2:EE:8E:B4:9E:E4:C7:0C:54:97:C9:FD:67:EC:D7:8E:5A:FB
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Blei7o60nuTHDFSXyf1n7NeOWvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
25:31:e6:74:2c:cb:3e:37:75:56:44:87:8f:9c:a2:c9:42:17:
6d:43:7c:e7:83:0d:c8:5a:f0:8a:f6:66:d7:85:46:f1:4a:46:
53:6b:9d:9b:2a:58:20:89:39:32:30:b2:8a:b6:52:03:ed:75:
33:0e:31:f7:b4:0a:8c:86:9e:7d:f3:42:92:76:5a:7c:8d:0c:
83:a6:b2:44:73:ce:e6:67:84:bf:c5:88:0d:fb:a6:89:32:7a:
31:67:5c:37:9c:1a:21:ab:0d:73:16:df:a6:98:2a:99:c5:4d:
02:9d:18:6a:c5:11:94:b5:59:7f:4f:c1:3b:81:fd:6c:d0:06:
cc:56:6e:06:be:1a:5c:e9:ba:29:c1:b7:71:29:86:c5:94:28:
79:18:d5:6d:7a:01:cb:11:56:92:51:f8:0c:23:a9:4f:88:7e:
a7:dc:f4:3a:22:25:e7:1f:82:26:e6:fe:50:11:7f:64:9c:91:
d2:73:63:87:c6:9b:8a:41:10:b8:6c:bd:0b:eb:15:46:6c:34:
53:80:b0:79:02:69:6b:25:6e:4f:37:12:00:52:05:88:66:aa:
f0:d6:5c:3f:0a:6e:b0:c5:45:93:a6:a5:9e:42:e7:e9:ad:9f:
83:a4:b9:20:6d:e1:cb:68:47:c2:4f:f4:f5:11:b5:f0:e5:92:
ca:5f:f2:18
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZB6bUES57wuQCx8euZZ4acjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNzAzMjEwODE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNjU3YTJlZThlYjQ5ZWU0YzcwYzU0OTdjOWZkNjdlY2Q3OGU1YWZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlf+806GozTMikREM9YL6P/WGbh5E
PGaf2dvP/nRYVGEHLU8v/IlZJRImcgtCyrvxugLAw7wp/6xkofWE/b76a+ORsYC/
qx6X3WupoYyyePk16w9asdHuGhCBXGrDsy5Lg4Eu+v6e5ulgtJcgUbHMiZThU0f5
7E0vOnLvk9TsNE2uT0y87dkX+RXqcVzJaJ4jIALCPB16ySJWvu9s+WB9U96/egy4
Ki04cudBlNCVMISLM7kAy6tWW58g1tg2Afj9XqbTBntt5Bct3EPSMINhW4h1exc0
AlvsWu4wCxcdCM6b3FbH0ICLnk1sDXFzthtnYF0TvT2eopbfocyHDILRyQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFAZXou6OtJ7kxwxUl8n9Z+zXjlr7MB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvQmxlaTdvNjBudVRIREZTWHlmMW43TmVPV3ZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBACUx5nQsyz43dVZEh4+c
oslCF21DfOeDDcha8Ir2ZteFRvFKRlNrnZsqWCCJOTIwsoq2UgPtdTMOMfe0CoyG
nn3zQpJ2WnyNDIOmskRzzuZnhL/FiA37pokyejFnXDecGiGrDXMW36aYKpnFTQKd
GGrFEZS1WX9PwTuB/WzQBsxWbga+GlzpuinBt3EphsWUKHkY1W16AcsRVpJR+Awj
qU+Ifqfc9DoiJecfgibm/lARf2SckdJzY4fGm4pBELhsvQvrFUZsNFOAsHkCaWsl
bk83EgBSBYhmqvDWXD8KbrDFRZOmpZ5C5+mtn4OkuSBt4ctoR8JP9PURtfDlkspf
8hg=
-----END CERTIFICATE-----
Generated at Wed Jul 3 22:58:46 2024 by rpki-client on console-fra.rpki-client.org