Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/HzRWL4CbGzLy8cpPDrknJJf_F40.roa
File: HzRWL4CbGzLy8cpPDrknJJf_F40.roa (raw, json)
Hash identifier: AOxKBVhM6sHJirtHDNXWJ6rz8nKxrBeGGe8MzcrM3JA=
Subject key identifier: 1F:34:56:2F:80:9B:1B:32:F2:F1:CA:4F:0E:B9:27:24:97:FF:17:8D
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01907F5F6CF26A53D1C123133EF82186CE6A
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/HzRWL4CbGzLy8cpPDrknJJf_F40.roa
Signing time: Thu 04 Jul 2024 20:11:18 +0000
ROA not before: Thu 04 Jul 2024 20:11:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 04 Jul 2024 21:04:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7f:5f:6c:f2:6a:53:d1:c1:23:13:3e:f8:21:86:ce:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 4 20:11:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1f34562f809b1b32f2f1ca4f0eb9272497ff178d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:3e:1f:03:e4:4e:b7:47:73:15:c9:c7:a2:ea:
24:2f:ce:a9:e8:98:36:06:ce:8b:05:78:90:35:5f:
e9:3e:53:40:b8:7d:b1:75:8e:19:03:d6:17:35:cb:
97:80:74:f9:3b:19:81:96:41:a1:e0:5d:bf:ae:76:
73:2b:99:f6:e4:2c:d6:84:64:f4:31:d1:98:11:98:
1d:6a:18:d7:19:0f:7f:50:f7:4e:e4:de:16:3b:1e:
52:37:5b:c5:69:d6:df:20:e5:34:88:31:43:0c:0a:
02:c6:12:a0:86:f6:13:ca:96:79:1b:ab:45:cc:7f:
e0:28:9a:18:09:ee:f5:1e:e8:06:b4:2c:cb:c3:2c:
20:ec:69:46:bf:16:d9:9a:15:ad:68:f3:10:c8:a0:
86:04:33:ed:1c:f7:cf:1f:d9:74:c5:02:ef:f7:fa:
07:66:b6:80:0f:33:8d:18:ee:03:39:16:b0:f3:95:
19:86:e0:cb:cf:e0:bd:66:ba:08:d3:73:5a:c0:56:
41:06:75:81:45:09:94:94:00:ef:89:4f:06:4f:1a:
90:71:cd:2a:56:54:a6:3c:df:db:a6:f2:3c:c0:85:
c5:12:24:72:50:ec:22:e4:13:fd:0d:71:da:e0:af:
1a:e3:15:e7:b8:b9:8c:e9:14:48:a3:2e:8f:e2:c2:
cd:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:34:56:2F:80:9B:1B:32:F2:F1:CA:4F:0E:B9:27:24:97:FF:17:8D
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/HzRWL4CbGzLy8cpPDrknJJf_F40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
6b:ac:8f:d4:f3:c0:ca:35:f4:5c:76:de:17:5c:b1:dd:5c:a6:
97:92:93:d0:3e:48:9c:3f:18:d0:c4:56:6e:e8:9a:ad:8b:3f:
2d:9a:7e:aa:06:9f:7c:5b:63:71:5c:70:53:2f:77:54:9b:b2:
2f:28:60:28:34:e8:3c:40:c6:75:df:da:19:1f:07:a2:4b:e0:
3a:2c:3d:55:a9:aa:4a:54:e7:8f:e4:53:79:00:19:1c:c2:94:
96:41:7e:30:9a:e1:42:37:5f:48:9a:7a:8b:3e:5b:07:96:0c:
26:d6:8b:50:5c:cd:20:db:1f:4a:2d:3a:df:00:d4:42:7f:ff:
35:7e:e1:8a:1c:72:16:f4:61:75:be:10:05:96:bc:30:2f:34:
df:de:bd:b9:48:0c:c9:62:48:fb:e9:09:7a:ad:56:0f:75:c3:
f2:91:1f:b9:12:15:6a:54:3f:48:62:bb:31:75:d7:4d:67:e9:
7e:e6:91:85:7f:1b:8a:e5:d0:19:f1:97:65:59:ce:dc:6d:3c:
c5:8d:8b:20:43:72:74:b3:25:f5:18:e4:a5:4c:5d:a8:db:7b:
fe:b9:e4:6d:0d:b5:28:61:84:a0:4c:0a:18:97:9f:33:33:92:
67:7a:5d:b8:80:91:6b:6d:00:00:32:91:83:63:87:b0:19:73:
43:2d:3a:6a
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZB/X2zyalPRwSMTPvghhs5qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNzA0MjAxMTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZjM0NTYyZjgwOWIxYjMyZjJmMWNhNGYwZWI5MjcyNDk3ZmYxNzhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2D4fA+ROt0dzFcnHouokL86p6Jg2
Bs6LBXiQNV/pPlNAuH2xdY4ZA9YXNcuXgHT5OxmBlkGh4F2/rnZzK5n25CzWhGT0
MdGYEZgdahjXGQ9/UPdO5N4WOx5SN1vFadbfIOU0iDFDDAoCxhKghvYTypZ5G6tF
zH/gKJoYCe71HugGtCzLwywg7GlGvxbZmhWtaPMQyKCGBDPtHPfPH9l0xQLv9/oH
ZraADzONGO4DORaw85UZhuDLz+C9ZroI03NawFZBBnWBRQmUlADviU8GTxqQcc0q
VlSmPN/bpvI8wIXFEiRyUOwi5BP9DXHa4K8a4xXnuLmM6RRIoy6P4sLNYQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFB80Vi+Amxsy8vHKTw65JySX/xeNMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvSHpSV0w0Q2JHekx5OGNwUERya25KSmZfRjQwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAGusj9TzwMo19Fx23hdc
sd1cppeSk9A+SJw/GNDEVm7omq2LPy2afqoGn3xbY3FccFMvd1Sbsi8oYCg06DxA
xnXf2hkfB6JL4DosPVWpqkpU54/kU3kAGRzClJZBfjCa4UI3X0iaeos+WweWDCbW
i1BczSDbH0otOt8A1EJ//zV+4Yocchb0YXW+EAWWvDAvNN/evblIDMliSPvpCXqt
Vg91w/KRH7kSFWpUP0hiuzF1101n6X7mkYV/G4rl0Bnxl2VZztxtPMWNiyBDcnSz
JfUY5KVMXajbe/655G0NtShhhKBMChiXnzMzkmd6XbiAkWttAAAykYNjh7AZc0Mt
Omo=
-----END CERTIFICATE-----
Generated at Thu Jul 4 22:34:00 2024 by rpki-client on console-ams.rpki-client.org