Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/RV9PiDnAzKrnVAmmL5wkNgSP5BM.roa
File: RV9PiDnAzKrnVAmmL5wkNgSP5BM.roa (raw, json)
Hash identifier: qX4LUSuP4Sn3V7fjDX9YQwGZbCaZHPqE3x8JtcSKpIk=
Subject key identifier: 45:5F:4F:88:39:C0:CC:AA:E7:54:09:A6:2F:9C:24:36:04:8F:E4:13
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190AFDE37FB23E471CAA2E8657F3B09A0F7
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/RV9PiDnAzKrnVAmmL5wkNgSP5BM.roa
Signing time: Sun 14 Jul 2024 06:11:34 +0000
ROA not before: Sun 14 Jul 2024 06:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 14 Jul 2024 07:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:af:de:37:fb:23:e4:71:ca:a2:e8:65:7f:3b:09:a0:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 14 06:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=455f4f8839c0ccaae75409a62f9c2436048fe413
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:bf:5b:f1:c9:3b:59:be:61:81:f1:23:ec:7c:
40:eb:7c:1f:a9:c7:93:e1:28:6c:18:99:6c:1b:46:
57:d4:55:6b:45:7e:15:87:89:0c:0f:ae:6c:79:1d:
a6:9d:25:21:1e:51:4e:69:10:2b:15:fd:53:5a:be:
a9:06:5a:4b:6e:4e:9e:54:0e:2d:c8:46:7b:09:7f:
38:56:90:5f:34:c0:76:7a:33:62:0e:6a:c4:45:52:
22:24:52:aa:62:03:0b:0c:81:11:48:0e:44:ff:91:
3e:9f:ef:b1:42:62:9d:53:7f:2b:36:c3:3a:31:bb:
77:65:c4:a3:98:03:89:40:3a:e8:40:e2:05:31:a6:
be:c9:49:99:86:52:8a:c0:9f:bd:62:e7:8a:48:2c:
3d:cc:f4:5a:c3:a1:e4:4e:69:01:f3:86:d6:c4:1d:
83:14:af:51:70:05:66:fe:c9:6e:be:fa:8a:6b:63:
ad:bb:81:a0:08:12:7a:73:b8:11:92:b6:6f:17:8a:
90:19:16:34:c0:90:b5:21:11:9f:04:18:df:a4:c3:
ea:db:d2:aa:7c:e5:b7:4f:e9:74:85:35:31:24:2b:
31:e3:d7:1d:e9:c3:4b:e6:d6:6e:88:f4:3a:99:3a:
37:f4:db:8c:c7:13:38:9c:de:5a:04:ff:af:1d:1e:
67:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:5F:4F:88:39:C0:CC:AA:E7:54:09:A6:2F:9C:24:36:04:8F:E4:13
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/RV9PiDnAzKrnVAmmL5wkNgSP5BM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
21:c5:a3:ee:ab:d4:71:6f:d8:f3:09:05:db:01:9c:3a:14:6f:
ec:c9:e3:f1:6e:5d:2b:f8:ed:f8:da:3d:48:28:32:bf:92:be:
1c:27:1e:4a:b6:7a:44:0e:64:40:26:a8:94:f8:08:5a:57:1f:
b0:bc:40:66:b5:e3:7c:a9:6a:16:69:60:b6:18:b1:73:90:1e:
bd:cc:65:86:4f:0d:91:15:75:fb:ba:1c:1c:94:bf:e4:4e:9e:
e7:3a:36:32:98:64:da:3f:cf:9d:b8:75:ec:70:89:0a:20:32:
b5:8d:5d:46:bd:bc:15:4c:f7:dd:6c:db:e2:05:aa:05:29:7a:
c0:f6:d6:9f:ca:56:92:42:7b:7c:32:a8:bb:0b:a5:ce:24:e3:
e9:44:f1:5e:7c:84:21:52:82:ef:87:d5:45:89:bd:f7:a3:d9:
6c:8e:c6:58:64:de:b3:6b:73:12:68:d3:14:1f:fd:4c:0f:85:
06:0c:c5:b9:2b:f3:28:85:db:d2:f4:d8:cb:72:ff:aa:36:bc:
49:5b:1a:35:35:63:bd:0e:93:74:aa:01:9e:07:d7:7f:bb:85:
cd:98:e5:77:11:e1:b1:cd:ae:b7:c6:ba:81:75:14:4d:11:15:
29:4a:cf:40:dc:9e:91:71:6a:9f:e3:de:95:92:3b:fa:fd:3f:
e8:ba:a8:aa
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZCv3jf7I+RxyqLoZX87CaD3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNzE0MDYxMTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NTVmNGY4ODM5YzBjY2FhZTc1NDA5YTYyZjljMjQzNjA0OGZlNDEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnr9b8ck7Wb5hgfEj7HxA63wfqceT
4ShsGJlsG0ZX1FVrRX4Vh4kMD65seR2mnSUhHlFOaRArFf1TWr6pBlpLbk6eVA4t
yEZ7CX84VpBfNMB2ejNiDmrERVIiJFKqYgMLDIERSA5E/5E+n++xQmKdU38rNsM6
Mbt3ZcSjmAOJQDroQOIFMaa+yUmZhlKKwJ+9YueKSCw9zPRaw6HkTmkB84bWxB2D
FK9RcAVm/sluvvqKa2Otu4GgCBJ6c7gRkrZvF4qQGRY0wJC1IRGfBBjfpMPq29Kq
fOW3T+l0hTUxJCsx49cd6cNL5tZuiPQ6mTo39NuMxxM4nN5aBP+vHR5nrQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFEVfT4g5wMyq51QJpi+cJDYEj+QTMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvUlY5UGlEbkF6S3JuVkFtbUw1d2tOZ1NQNUJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBACHFo+6r1HFv2PMJBdsB
nDoUb+zJ4/FuXSv47fjaPUgoMr+SvhwnHkq2ekQOZEAmqJT4CFpXH7C8QGa143yp
ahZpYLYYsXOQHr3MZYZPDZEVdfu6HByUv+ROnuc6NjKYZNo/z524dexwiQogMrWN
XUa9vBVM991s2+IFqgUpesD21p/KVpJCe3wyqLsLpc4k4+lE8V58hCFSgu+H1UWJ
vfej2WyOxlhk3rNrcxJo0xQf/UwPhQYMxbkr8yiF29L02Mty/6o2vElbGjU1Y70O
k3SqAZ4H13+7hc2Y5XcR4bHNrrfGuoF1FE0RFSlKz0DcnpFxap/j3pWSO/r9P+i6
qKo=
Generated at Sun Jul 14 07:58:51 2024 by rpki-client on console-fra.rpki-client.org