Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/JDKNNxE0zYV8eGJrBRGIZJ4Azwc.roa
File: JDKNNxE0zYV8eGJrBRGIZJ4Azwc.roa (raw, json)
Hash identifier: FQ2hp6U3/acDzqU+LMdV/6mGjSoYCFTfSMIY84KBueE=
Subject key identifier: 24:32:8D:37:11:34:CD:85:7C:78:62:6B:05:11:88:64:9E:00:CF:07
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01902CF900D5ADD580281E52021D5395AD70
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/JDKNNxE0zYV8eGJrBRGIZJ4Azwc.roa
Signing time: Tue 18 Jun 2024 20:10:34 +0000
ROA not before: Tue 18 Jun 2024 20:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 18 Jun 2024 22:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:2c:f9:00:d5:ad:d5:80:28:1e:52:02:1d:53:95:ad:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 18 20:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=24328d371134cd857c78626b051188649e00cf07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c2:5b:2c:89:f1:42:ba:b1:34:92:ae:5f:52:
4f:c5:b1:3e:68:a8:1b:06:c2:0c:ac:9e:70:40:7e:
f3:ff:55:db:d6:0a:c9:97:b1:73:d1:06:a8:3f:d3:
39:b9:7b:4e:f3:d5:99:f1:35:52:45:75:68:17:e8:
0d:f0:a4:1d:24:bb:3d:e0:fb:a3:6a:80:5b:27:e9:
6a:a4:78:f7:f1:79:26:3e:b0:d1:3c:59:5a:f8:8e:
1d:05:a1:13:05:d4:d1:ae:17:8a:3d:74:bb:fe:2f:
11:bb:26:c2:51:ea:b7:3d:27:d7:a6:aa:e0:c2:1b:
6a:6f:c5:11:42:44:41:aa:7d:73:77:94:b7:af:34:
05:b6:5a:14:fc:f2:a4:d8:d2:76:e0:4b:85:0a:b1:
b0:8f:ff:ee:b8:a8:d8:09:26:23:21:e0:83:2f:59:
90:4f:7c:83:c1:e1:5d:27:19:fa:67:a4:a7:0b:ba:
2d:06:33:b9:c7:3e:dc:72:87:c6:48:39:14:83:3d:
c4:52:43:d1:f2:09:38:31:63:c9:c6:c3:6d:9b:80:
39:75:3c:0f:78:a9:d1:88:94:56:26:47:c1:5b:e6:
62:fc:14:a3:a5:12:84:23:de:9b:1e:c5:0f:ea:9f:
f2:8e:af:4c:a9:a7:16:53:30:ae:2f:91:60:11:78:
02:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:32:8D:37:11:34:CD:85:7C:78:62:6B:05:11:88:64:9E:00:CF:07
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/JDKNNxE0zYV8eGJrBRGIZJ4Azwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
85:f9:22:df:0b:0d:d7:04:2a:03:04:fe:81:1a:35:f1:15:9f:
2b:21:61:09:a3:d9:ea:08:5e:74:28:f0:49:b8:f3:1a:10:ff:
a1:d7:51:df:53:cb:4b:6d:8a:82:af:ba:28:f3:b0:cc:69:d9:
53:18:26:ca:88:f0:66:9f:8e:52:bb:04:65:b8:78:71:ef:b4:
f4:3d:b1:04:83:0c:7f:e3:6a:c4:f8:ef:c5:e2:ae:e0:80:76:
b8:de:b3:39:c2:db:1d:4a:21:dc:76:58:bf:e9:c3:44:65:dd:
85:ce:03:5a:89:e1:02:3c:59:0d:1b:80:2e:50:53:c3:e8:19:
0e:eb:2a:6e:63:af:c3:fd:7b:49:88:de:05:49:c9:fc:5f:4a:
c4:70:16:36:ef:d8:01:05:4d:ec:7b:29:1b:60:25:89:65:88:
b9:87:6f:1c:ff:ff:07:fe:b8:c9:ce:fd:fd:70:c0:e0:6b:a1:
b1:6e:8d:10:03:d0:18:ab:2d:36:4d:b0:3d:7e:06:ba:55:55:
d3:5b:30:ac:ac:e7:a7:b1:ab:12:61:5d:ea:b2:cf:0b:b1:99:
03:9b:78:5f:15:e5:1f:37:2d:5e:37:11:c5:c5:a7:de:b8:61:
10:64:46:eb:b4:d5:3b:37:3c:32:1e:20:b3:ab:f5:be:13:36:
76:de:10:db
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZAs+QDVrdWAKB5SAh1Tla1wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjE4MjAxMDM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNDMyOGQzNzExMzRjZDg1N2M3ODYyNmIwNTExODg2NDllMDBjZjA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAusJbLInxQrqxNJKuX1JPxbE+aKgb
BsIMrJ5wQH7z/1Xb1grJl7Fz0QaoP9M5uXtO89WZ8TVSRXVoF+gN8KQdJLs94Puj
aoBbJ+lqpHj38XkmPrDRPFla+I4dBaETBdTRrheKPXS7/i8RuybCUeq3PSfXpqrg
whtqb8URQkRBqn1zd5S3rzQFtloU/PKk2NJ24EuFCrGwj//uuKjYCSYjIeCDL1mQ
T3yDweFdJxn6Z6SnC7otBjO5xz7ccofGSDkUgz3EUkPR8gk4MWPJxsNtm4A5dTwP
eKnRiJRWJkfBW+Zi/BSjpRKEI96bHsUP6p/yjq9MqacWUzCuL5FgEXgCaQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFCQyjTcRNM2FfHhiawURiGSeAM8HMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvSkRLTk54RTB6WVY4ZUdKckJSR0laSjRBendjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAIX5It8LDdcEKgME/oEa
NfEVnyshYQmj2eoIXnQo8Em48xoQ/6HXUd9Ty0ttioKvuijzsMxp2VMYJsqI8Gaf
jlK7BGW4eHHvtPQ9sQSDDH/jasT478XiruCAdrjesznC2x1KIdx2WL/pw0Rl3YXO
A1qJ4QI8WQ0bgC5QU8PoGQ7rKm5jr8P9e0mI3gVJyfxfSsRwFjbv2AEFTex7KRtg
JYlliLmHbxz//wf+uMnO/f1wwOBrobFujRAD0BirLTZNsD1+BrpVVdNbMKys56ex
qxJhXeqyzwuxmQObeF8V5R83LV43EcXFp964YRBkRuu01Ts3PDIeILOr9b4TNnbe
ENs=
-----END CERTIFICATE-----
Generated at Wed Jun 19 00:30:27 2024 by rpki-client on console-ams.rpki-client.org