Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/KFo3AATnaew03Hge9_I4XtlwrY0.roa
File: KFo3AATnaew03Hge9_I4XtlwrY0.roa (raw, json)
Hash identifier: cG9C7FPQOA/8JgFnjqVlsQ9WlW99VQKjUz6fm1keRoQ=
Subject key identifier: 28:5A:37:00:04:E7:69:EC:34:DC:78:1E:F7:F2:38:5E:D9:70:AD:8D
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190757FA72390649DE4A9B5C18987FD7CDC
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/KFo3AATnaew03Hge9_I4XtlwrY0.roa
Signing time: Tue 02 Jul 2024 22:10:18 +0000
ROA not before: Tue 02 Jul 2024 22:10:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jul 2024 23:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:75:7f:a7:23:90:64:9d:e4:a9:b5:c1:89:87:fd:7c:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 2 22:10:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=285a370004e769ec34dc781ef7f2385ed970ad8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ed:58:72:96:cf:70:e8:c0:08:6d:49:d9:31:
25:dd:b3:90:84:f0:aa:c8:a4:fe:e0:ac:6b:bc:fa:
80:5a:04:92:3e:ca:e2:5a:17:12:47:6f:14:bc:a3:
a5:8c:7a:ff:d0:5c:30:fa:47:8d:8f:ac:e3:fe:3e:
07:48:53:95:44:87:f7:dc:64:f5:b9:2c:63:5f:a3:
e3:a9:f7:13:b9:36:2a:ba:5b:90:56:ed:fe:fd:7b:
c4:f1:0a:5c:32:78:d0:df:37:61:22:9e:18:eb:fc:
e6:fb:e0:cb:18:57:3d:50:05:df:ae:7d:9b:9b:ad:
96:ca:d9:3e:1c:5f:86:47:d3:ac:6b:31:3a:f4:f4:
f2:33:c7:a5:df:18:84:df:10:ec:c7:6c:05:1d:07:
03:57:d4:ed:5a:82:e7:74:94:4e:7e:d1:60:8c:00:
c3:25:24:d1:a9:98:13:ed:28:15:44:34:a0:05:d6:
1b:2a:26:95:e9:50:a6:b4:df:f3:06:a0:41:e0:ff:
72:ff:8b:c8:5e:0c:b8:b6:ed:36:13:70:dd:5b:bf:
a0:22:d7:5b:c2:e0:ca:c5:a1:0c:48:e7:54:0c:e3:
36:a4:9d:c2:1c:30:fe:2a:de:7d:6d:b0:25:43:69:
ae:51:66:7f:d1:64:6f:df:bb:1e:68:b7:6f:f5:6a:
73:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:5A:37:00:04:E7:69:EC:34:DC:78:1E:F7:F2:38:5E:D9:70:AD:8D
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/KFo3AATnaew03Hge9_I4XtlwrY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3b:0d:09:da:13:34:24:83:c0:02:23:41:82:8a:d2:39:14:29:
20:63:c1:9e:34:7e:7c:35:89:e8:12:b0:ed:e6:be:0a:c0:65:
13:ab:4f:4b:d3:20:64:c4:e4:50:0b:25:a5:06:dc:cf:81:81:
22:7a:67:03:45:b0:7d:07:dc:c1:06:c3:8f:1b:fe:1c:d4:05:
29:28:77:a0:40:ce:60:cb:4b:73:bf:a5:4b:00:d9:8f:85:90:
78:d3:fb:6a:5f:70:40:2f:ae:f4:01:a0:28:dc:42:95:bd:5e:
e8:c7:08:54:b3:be:f3:a6:af:39:3c:66:29:b9:5d:22:99:e0:
ee:d1:a5:94:53:27:1c:88:44:d9:78:81:1b:0a:db:f6:e8:90:
90:28:76:c4:68:b2:ce:d6:f1:df:7b:f2:c3:8d:18:15:d7:71:
7d:19:3a:ae:fc:05:46:e8:7e:26:37:1c:25:de:0f:17:04:48:
65:b9:10:17:b6:73:aa:b7:7d:d2:12:6a:55:f8:43:11:f4:19:
9f:06:7c:c9:fa:b5:e4:df:b2:9f:47:38:f9:15:ec:5e:6e:50:
50:9c:df:a9:d6:45:46:4c:40:00:a5:d8:12:5f:0f:ed:aa:7b:
64:c7:21:39:89:86:de:13:c6:99:68:9b:d3:34:4a:1a:8a:50:
ac:d8:45:1f
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZB1f6cjkGSd5Km1wYmH/XzcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNzAyMjIxMDE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyODVhMzcwMDA0ZTc2OWVjMzRkYzc4MWVmN2YyMzg1ZWQ5NzBhZDhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAju1YcpbPcOjACG1J2TEl3bOQhPCq
yKT+4KxrvPqAWgSSPsriWhcSR28UvKOljHr/0Fww+keNj6zj/j4HSFOVRIf33GT1
uSxjX6PjqfcTuTYquluQVu3+/XvE8QpcMnjQ3zdhIp4Y6/zm++DLGFc9UAXfrn2b
m62Wytk+HF+GR9OsazE69PTyM8el3xiE3xDsx2wFHQcDV9TtWoLndJROftFgjADD
JSTRqZgT7SgVRDSgBdYbKiaV6VCmtN/zBqBB4P9y/4vIXgy4tu02E3DdW7+gItdb
wuDKxaEMSOdUDOM2pJ3CHDD+Kt59bbAlQ2muUWZ/0WRv37seaLdv9WpzrQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFChaNwAE52nsNNx4HvfyOF7ZcK2NMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvS0ZvM0FBVG5hZXcwM0hnZTlfSTRYdGx3clkwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBADsNCdoTNCSDwAIjQYKK
0jkUKSBjwZ40fnw1iegSsO3mvgrAZROrT0vTIGTE5FALJaUG3M+BgSJ6ZwNFsH0H
3MEGw48b/hzUBSkod6BAzmDLS3O/pUsA2Y+FkHjT+2pfcEAvrvQBoCjcQpW9XujH
CFSzvvOmrzk8Zim5XSKZ4O7RpZRTJxyIRNl4gRsK2/bokJAodsRoss7W8d978sON
GBXXcX0ZOq78BUbofiY3HCXeDxcESGW5EBe2c6q3fdISalX4QxH0GZ8GfMn6teTf
sp9HOPkV7F5uUFCc36nWRUZMQACl2BJfD+2qe2THITmJht4Txplom9M0ShqKUKzY
RR8=
Generated at Wed Jul 3 00:14:44 2024 by rpki-client on console-fra.rpki-client.org