Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/VC0VzDrKfT0gD371Lu2Xs93PMiY.roa
File: VC0VzDrKfT0gD371Lu2Xs93PMiY.roa (raw, json)
Hash identifier: jLs17/QS9DTcr9fK/lJsn1gTNu4ODJuSgoRlZQUV/Yo=
Subject key identifier: 54:2D:15:CC:3A:CA:7D:3D:20:0F:7E:F5:2E:ED:97:B3:DD:CF:32:26
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01908F4147F3C045E204936A22E41B143009
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/VC0VzDrKfT0gD371Lu2Xs93PMiY.roa
Signing time: Sun 07 Jul 2024 22:12:18 +0000
ROA not before: Sun 07 Jul 2024 22:12:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 07 Jul 2024 23:04:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:8f:41:47:f3:c0:45:e2:04:93:6a:22:e4:1b:14:30:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 7 22:12:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=542d15cc3aca7d3d200f7ef52eed97b3ddcf3226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:16:bd:e8:4a:bc:2e:fe:8c:fa:c1:3e:ca:7d:
ae:76:36:79:4d:4b:0f:f7:3d:51:e1:4f:56:06:20:
64:09:c2:ff:27:bc:33:c0:8d:82:a9:00:e1:7d:7e:
4b:52:ae:50:26:a3:c3:a6:5f:32:5b:cf:3c:59:61:
c7:72:d0:23:55:ef:6d:af:c6:93:21:71:01:b6:1a:
4d:46:9c:c4:92:66:c4:e5:4c:56:0f:8b:f9:8b:25:
be:1f:32:5a:33:5e:c9:e3:b6:e6:84:dc:2f:85:6d:
50:54:db:a0:52:14:fd:6e:fb:12:8b:df:d8:85:69:
9c:ce:97:6e:99:f1:c4:a3:52:ea:1a:a0:68:62:05:
d8:c1:ae:11:ca:da:cd:68:65:76:8e:02:53:5b:90:
60:3b:3b:4c:67:5e:18:ce:ba:fe:fc:b8:65:fe:9c:
2a:f8:cb:2c:92:0b:77:16:eb:2e:e8:3c:ee:b3:1d:
cb:ad:2a:e2:45:c4:a7:f3:ed:4d:0b:73:56:f4:e2:
33:b5:55:92:00:d2:3e:ec:8b:6a:79:ec:3e:7e:01:
54:1a:50:40:33:28:9b:b5:e1:db:21:6d:ca:06:0e:
77:6c:3e:1b:a6:be:44:7f:03:2e:19:a9:26:aa:ae:
8b:59:95:a1:7d:f9:f9:39:4f:b1:8a:fb:d6:ba:c8:
36:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:2D:15:CC:3A:CA:7D:3D:20:0F:7E:F5:2E:ED:97:B3:DD:CF:32:26
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/VC0VzDrKfT0gD371Lu2Xs93PMiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
59:94:b0:fa:48:be:5a:4c:7b:56:68:58:a7:a9:bf:02:e6:e1:
42:50:0d:c0:83:5d:fc:e2:74:b5:02:13:a6:62:b3:31:52:36:
58:8b:94:27:8f:9c:ec:ad:13:0d:19:6f:9b:bd:39:1f:b7:c2:
f3:49:8e:c9:94:1c:e3:94:17:9a:b8:b6:3f:b8:24:6f:a6:3d:
f5:46:05:bf:1f:a6:33:83:d2:08:48:14:84:88:c3:39:a2:84:
93:99:78:82:85:df:46:0f:02:04:ac:2d:8e:5e:1f:71:97:d7:
33:30:b3:a4:9b:8c:0d:9e:d5:d7:bb:e5:1f:f4:cc:12:de:92:
cb:f6:c7:0b:e3:72:a3:e5:44:3d:ff:bf:39:b5:e8:12:a4:fb:
50:6e:20:18:e7:10:54:f2:7f:ed:03:29:61:a2:96:d4:ff:d5:
41:56:47:b0:f9:d7:76:0c:24:e3:0b:53:b2:b4:2e:ca:47:b2:
d3:ac:b1:03:6b:86:cd:30:76:d4:8a:40:f8:6e:33:dc:35:ed:
15:03:78:88:29:39:07:c7:da:78:c6:fb:e6:fc:e2:d7:f2:88:
85:c9:fd:d8:43:b0:a3:f3:3c:da:7e:c0:84:16:6c:2f:ca:fb:
09:1a:c8:2a:e7:55:75:47:a4:f3:71:9f:3e:cb:4d:cf:7a:af:
83:21:7a:da
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZCPQUfzwEXiBJNqIuQbFDAJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNzA3MjIxMjE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NDJkMTVjYzNhY2E3ZDNkMjAwZjdlZjUyZWVkOTdiM2RkY2YzMjI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtha96Eq8Lv6M+sE+yn2udjZ5TUsP
9z1R4U9WBiBkCcL/J7wzwI2CqQDhfX5LUq5QJqPDpl8yW888WWHHctAjVe9tr8aT
IXEBthpNRpzEkmbE5UxWD4v5iyW+HzJaM17J47bmhNwvhW1QVNugUhT9bvsSi9/Y
hWmczpdumfHEo1LqGqBoYgXYwa4RytrNaGV2jgJTW5BgOztMZ14Yzrr+/Lhl/pwq
+Msskgt3Fusu6Dzusx3LrSriRcSn8+1NC3NW9OIztVWSANI+7Itqeew+fgFUGlBA
MyibteHbIW3KBg53bD4bpr5EfwMuGakmqq6LWZWhffn5OU+xivvWusg28wIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFFQtFcw6yn09IA9+9S7tl7PdzzImMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvVkMwVnpEcktmVDBnRDM3MUx1MlhzOTNQTWlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAFmUsPpIvlpMe1ZoWKep
vwLm4UJQDcCDXfzidLUCE6ZiszFSNliLlCePnOytEw0Zb5u9OR+3wvNJjsmUHOOU
F5q4tj+4JG+mPfVGBb8fpjOD0ghIFISIwzmihJOZeIKF30YPAgSsLY5eH3GX1zMw
s6SbjA2e1de75R/0zBLeksv2xwvjcqPlRD3/vzm16BKk+1BuIBjnEFTyf+0DKWGi
ltT/1UFWR7D513YMJOMLU7K0LspHstOssQNrhs0wdtSKQPhuM9w17RUDeIgpOQfH
2njG++b84tfyiIXJ/dhDsKPzPNp+wIQWbC/K+wkayCrnVXVHpPNxnz7LTc96r4Mh
eto=
Generated at Mon Jul 8 00:16:47 2024 by rpki-client on console-ams.rpki-client.org