Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/NLLWG7kFrm4hqS15RgdMPXQ5wd4.roa
File: NLLWG7kFrm4hqS15RgdMPXQ5wd4.roa (raw, json)
Hash identifier: HZcEv6QkydWh7MMGnVpU1j7ii/cwXUaNQwazb5K0sQY=
Subject key identifier: 34:B2:D6:1B:B9:05:AE:6E:21:A9:2D:79:46:07:4C:3D:74:39:C1:DE
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019076933B0415A1FED574A75E12413BB74A
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/NLLWG7kFrm4hqS15RgdMPXQ5wd4.roa
Signing time: Wed 03 Jul 2024 03:11:18 +0000
ROA not before: Wed 03 Jul 2024 03:11:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 03 Jul 2024 04:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:76:93:3b:04:15:a1:fe:d5:74:a7:5e:12:41:3b:b7:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 3 03:11:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=34b2d61bb905ae6e21a92d7946074c3d7439c1de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:79:54:01:25:21:c2:79:d1:6c:29:eb:5e:d8:
27:a5:08:7b:86:99:92:8e:bc:de:a5:5c:51:7e:81:
92:06:96:76:d3:2e:88:c2:9d:4b:24:4e:b3:a0:dd:
0a:83:f0:9a:d7:32:8f:0c:7f:da:d7:d3:45:75:2e:
70:d2:68:97:49:dd:f7:d3:a1:2b:8e:b4:43:5b:21:
34:8a:ea:bb:3a:f8:5a:a0:47:fa:c1:a8:7e:0f:bf:
28:65:ec:bd:15:8e:1c:ba:ad:b8:73:ac:31:ef:5e:
dd:78:b8:ea:95:0d:fb:e6:d9:ce:ba:52:a3:99:7c:
60:71:36:cc:4f:12:48:07:7b:57:07:fd:d2:69:ca:
68:ab:0a:86:f3:6c:6f:28:99:83:8b:fe:a1:6c:81:
3b:8f:74:3b:75:37:2a:27:21:95:44:bb:8c:c4:fd:
4a:81:cd:82:c2:c3:9f:df:2f:bd:7b:2d:05:13:e9:
51:06:43:61:2b:01:20:5c:6e:a6:25:f8:88:f8:eb:
4b:60:90:61:25:21:5b:6e:6d:92:01:e4:5b:34:08:
74:ba:07:b8:e8:07:ff:ee:4f:26:cb:3d:a4:23:b7:
0c:f4:15:4e:18:e7:81:75:38:2f:67:1b:ce:9c:04:
03:f5:33:b9:4a:56:66:75:e3:99:97:e9:61:6b:2f:
de:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B2:D6:1B:B9:05:AE:6E:21:A9:2D:79:46:07:4C:3D:74:39:C1:DE
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/NLLWG7kFrm4hqS15RgdMPXQ5wd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
59:2f:04:94:9e:79:5d:bb:12:a5:e1:1f:52:eb:9b:05:b2:0b:
43:e3:c1:4b:4e:bc:97:16:71:8f:3a:e0:e1:9c:96:b8:be:3f:
49:0d:5f:12:52:9b:21:04:63:dc:56:2a:20:e1:59:b3:73:54:
ed:08:e3:ec:32:53:ee:29:3a:c5:20:e7:67:08:5e:43:65:90:
a5:c4:61:9f:9d:0b:7b:12:20:7c:62:14:bf:d1:30:50:19:36:
0c:a6:80:92:28:1b:aa:5c:52:7d:3d:ce:dc:d5:f2:5c:6b:48:
c3:f2:50:80:31:c0:a4:3b:a0:7f:98:a8:51:51:92:f4:72:6e:
ed:38:bb:77:27:b6:a2:b9:81:7e:e1:39:eb:4a:b3:33:2b:cc:
5c:7a:2f:f1:b6:44:5c:e0:19:ef:e1:67:92:04:fd:f6:a9:44:
2f:66:cc:32:db:2a:4d:5b:cf:66:21:96:42:f8:58:3c:d6:02:
36:65:62:3b:06:77:50:cf:9f:2d:cb:db:1a:07:1c:56:73:80:
68:2c:85:a8:df:df:6e:05:25:48:61:ff:6e:e6:b3:7a:0b:80:
ef:d3:0f:da:ef:3e:5c:17:c5:ad:bd:4b:f6:3e:90:d9:58:2b:
d7:b7:2a:ae:12:3a:31:87:c9:cb:a3:b7:35:ba:99:b5:cd:ff:
bb:a3:87:69
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZB2kzsEFaH+1XSnXhJBO7dKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNzAzMDMxMTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNGIyZDYxYmI5MDVhZTZlMjFhOTJkNzk0NjA3NGMzZDc0MzljMWRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA03lUASUhwnnRbCnrXtgnpQh7hpmS
jrzepVxRfoGSBpZ20y6Iwp1LJE6zoN0Kg/Ca1zKPDH/a19NFdS5w0miXSd3306Er
jrRDWyE0iuq7OvhaoEf6wah+D78oZey9FY4cuq24c6wx717deLjqlQ375tnOulKj
mXxgcTbMTxJIB3tXB/3SacpoqwqG82xvKJmDi/6hbIE7j3Q7dTcqJyGVRLuMxP1K
gc2CwsOf3y+9ey0FE+lRBkNhKwEgXG6mJfiI+OtLYJBhJSFbbm2SAeRbNAh0uge4
6Af/7k8myz2kI7cM9BVOGOeBdTgvZxvOnAQD9TO5SlZmdeOZl+lhay/eyQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFDSy1hu5Ba5uIakteUYHTD10OcHeMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvTkxMV0c3a0ZybTRocVMxNVJnZE1QWFE1d2Q0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAFkvBJSeeV27EqXhH1Lr
mwWyC0PjwUtOvJcWcY864OGclri+P0kNXxJSmyEEY9xWKiDhWbNzVO0I4+wyU+4p
OsUg52cIXkNlkKXEYZ+dC3sSIHxiFL/RMFAZNgymgJIoG6pcUn09ztzV8lxrSMPy
UIAxwKQ7oH+YqFFRkvRybu04u3cntqK5gX7hOetKszMrzFx6L/G2RFzgGe/hZ5IE
/fapRC9mzDLbKk1bz2YhlkL4WDzWAjZlYjsGd1DPny3L2xoHHFZzgGgshajf324F
JUhh/27ms3oLgO/TD9rvPlwXxa29S/Y+kNlYK9e3Kq4SOjGHycujtzW6mbXN/7uj
h2k=
-----END CERTIFICATE-----
Generated at Wed Jul 3 05:06:19 2024 by rpki-client on console-ams.rpki-client.org