Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/L3IvdzXTgU4537oE77q16kM7OOc.roa
File: L3IvdzXTgU4537oE77q16kM7OOc.roa (raw, json)
Hash identifier: jJineXekbq87VagLXYXxAT1ClcMqqXACrC76UcqAGZ8=
Subject key identifier: 2F:72:2F:77:35:D3:81:4E:39:DF:BA:04:EF:BA:B5:EA:43:3B:38:E7
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FE32869B46896C6EB3C9F40D9298731E4
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/L3IvdzXTgU4537oE77q16kM7OOc.roa
Signing time: Tue 04 Jun 2024 12:10:27 +0000
ROA not before: Tue 04 Jun 2024 12:10:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 04 Jun 2024 13:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e3:28:69:b4:68:96:c6:eb:3c:9f:40:d9:29:87:31:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 4 12:10:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f722f7735d3814e39dfba04efbab5ea433b38e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5c:f5:b6:97:9e:73:1a:a5:84:37:33:9b:0a:
c8:dd:d1:80:73:ec:c9:31:e6:8a:86:67:4a:cc:13:
43:c7:99:18:86:c0:09:66:19:e9:4e:c4:82:29:3a:
c3:68:97:65:e8:52:f7:17:6b:f5:fc:d6:4a:3f:a3:
aa:c8:8b:08:88:94:a7:f6:cb:d2:01:46:74:83:81:
6e:9c:cf:1b:0c:35:72:17:47:b0:68:d9:e6:4c:d2:
0e:77:28:d4:fc:26:39:a3:85:0a:3e:49:2b:ec:06:
f7:e5:28:e6:ee:48:c9:bd:e5:ad:57:19:8d:b7:d5:
3c:04:e7:9b:9b:8b:0a:7a:2d:d9:f3:68:49:90:4a:
f5:4a:4f:2b:ca:aa:b2:cd:fd:e8:6f:cf:e6:f9:13:
bb:e8:aa:6e:e9:24:0f:fd:7a:24:ec:e7:d0:0b:50:
1a:9b:b9:71:d1:27:4d:ff:3c:a9:f5:67:ef:56:24:
92:e4:ac:91:52:76:d2:b5:2f:19:4c:93:13:7b:c8:
42:b9:e2:a1:15:c7:2e:ac:7b:13:93:39:12:fd:b4:
75:63:c7:b6:d7:b5:4b:45:10:82:52:22:f8:bc:56:
d9:25:56:1d:6e:80:a2:22:7c:94:49:fe:ee:28:8d:
74:a1:68:ee:48:45:30:0c:b2:2e:b8:e6:03:c8:4c:
f5:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:72:2F:77:35:D3:81:4E:39:DF:BA:04:EF:BA:B5:EA:43:3B:38:E7
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/L3IvdzXTgU4537oE77q16kM7OOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
04:d7:37:18:77:ef:bc:73:6f:b1:a4:34:7d:20:9d:cd:f4:da:
a6:3a:68:a2:46:fa:76:84:f3:f4:7d:7c:79:a2:0d:4c:c9:15:
14:4c:b6:92:42:11:0a:87:34:90:84:25:fb:a5:83:f4:43:e8:
96:e2:38:7e:d7:c6:23:5e:51:eb:15:d8:10:5d:f2:c6:3b:a1:
b9:d8:25:64:05:f1:b0:81:1e:32:59:54:e4:87:b3:d9:8d:c0:
14:e6:8a:9f:37:c9:5d:9f:e1:08:00:8e:6f:3a:4f:d9:a3:6a:
cb:f9:26:94:94:ed:e3:f3:55:8d:a7:31:34:a6:75:d9:c1:3c:
8c:0e:50:72:2f:fb:c0:23:47:32:ee:66:ef:72:93:80:5c:d2:
c9:2b:11:36:63:5d:86:11:b7:a6:37:7a:20:a1:16:2b:a4:e2:
1b:94:7f:b0:a5:04:27:33:53:11:87:0d:72:c3:2e:98:3a:72:
5c:13:d0:ee:1d:42:85:c9:ef:b1:c0:b2:ed:99:f2:c0:fa:10:
71:3c:b6:92:f9:64:d7:dd:fa:6d:e3:4e:64:29:96:88:e9:d0:
f6:a8:50:07:76:b9:aa:ed:ef:fa:fe:c2:91:07:03:ad:6e:b2:
bb:41:d9:bf:6f:64:5b:9d:38:f8:0d:eb:f1:9e:be:26:bd:c7:
fc:de:18:6b
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY/jKGm0aJbG6zyfQNkphzHkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjA0MTIxMDI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZjcyMmY3NzM1ZDM4MTRlMzlkZmJhMDRlZmJhYjVlYTQzM2IzOGU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwFz1tpeecxqlhDczmwrI3dGAc+zJ
MeaKhmdKzBNDx5kYhsAJZhnpTsSCKTrDaJdl6FL3F2v1/NZKP6OqyIsIiJSn9svS
AUZ0g4FunM8bDDVyF0ewaNnmTNIOdyjU/CY5o4UKPkkr7Ab35Sjm7kjJveWtVxmN
t9U8BOebm4sKei3Z82hJkEr1Sk8ryqqyzf3ob8/m+RO76Kpu6SQP/Xok7OfQC1Aa
m7lx0SdN/zyp9WfvViSS5KyRUnbStS8ZTJMTe8hCueKhFccurHsTkzkS/bR1Y8e2
17VLRRCCUiL4vFbZJVYdboCiInyUSf7uKI10oWjuSEUwDLIuuOYDyEz1HwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFC9yL3c104FOOd+6BO+6tepDOzjnMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvTDNJdmR6WFRnVTQ1MzdvRTc3cTE2a003T09jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAATXNxh377xzb7GkNH0g
nc302qY6aKJG+naE8/R9fHmiDUzJFRRMtpJCEQqHNJCEJfulg/RD6JbiOH7XxiNe
UesV2BBd8sY7obnYJWQF8bCBHjJZVOSHs9mNwBTmip83yV2f4QgAjm86T9mjasv5
JpSU7ePzVY2nMTSmddnBPIwOUHIv+8AjRzLuZu9yk4Bc0skrETZjXYYRt6Y3eiCh
Fiuk4huUf7ClBCczUxGHDXLDLpg6clwT0O4dQoXJ77HAsu2Z8sD6EHE8tpL5ZNfd
+m3jTmQplojp0PaoUAd2uart7/r+wpEHA61usrtB2b9vZFudOPgN6/Gevia9x/ze
GGs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:51 2024 by rpki-client on console-fra.rpki-client.org