Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ZI5DzKGanZRYv-EJIKxUN49Wn1g.roa
File: ZI5DzKGanZRYv-EJIKxUN49Wn1g.roa (raw, json)
Hash identifier: tLpHd6+Gt/eXurNZp3Z2kljvP502OWw9ko/QNfZAn18=
Subject key identifier: 64:8E:43:CC:A1:9A:9D:94:58:BF:E1:09:20:AC:54:37:8F:56:9F:58
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FEC2B8B10EBB037FF35BF38F08961041D
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ZI5DzKGanZRYv-EJIKxUN49Wn1g.roa
Signing time: Thu 06 Jun 2024 06:10:27 +0000
ROA not before: Thu 06 Jun 2024 06:10:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 06 Jun 2024 07:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ec:2b:8b:10:eb:b0:37:ff:35:bf:38:f0:89:61:04:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 6 06:10:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=648e43cca19a9d9458bfe10920ac54378f569f58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:33:a4:6b:0c:92:9d:72:29:7c:33:74:2f:f2:
19:2a:d6:c4:f5:d9:b2:4a:c8:45:67:f5:8b:2f:2f:
c9:b6:20:ce:08:95:db:4b:a1:07:2d:3f:10:2b:c5:
40:bc:6e:19:95:af:04:22:c8:e9:69:d5:46:d2:9b:
b4:a8:26:73:cf:0b:0e:09:a9:4c:92:43:fe:e3:8f:
ac:7a:83:0a:24:b0:dd:c0:e4:de:44:b2:f5:6d:ae:
fc:61:cd:aa:e0:91:a6:81:10:7c:0c:c7:2e:60:9c:
f0:c2:5b:d6:78:ea:93:e0:5e:fa:ab:56:15:5b:f7:
74:fb:7f:55:a9:5b:c3:ec:ed:1d:81:db:6e:ab:5f:
b0:86:e2:97:42:3b:b3:5f:cc:f5:2a:8d:68:bc:4a:
9e:57:3e:2e:93:fd:2d:45:60:08:50:fe:5a:8f:18:
ac:c9:4b:2f:37:1c:8d:93:9d:e6:71:ad:26:0f:8e:
20:96:1d:2e:10:db:53:c1:e0:d9:59:6a:05:72:d1:
8a:ec:b3:79:6a:01:cc:b8:39:a3:82:f9:bb:01:64:
c1:d3:22:41:da:47:ef:29:2f:7a:24:96:71:fe:e1:
2c:84:c1:06:0d:a3:09:12:a4:dc:7b:8e:7b:61:ae:
c4:bb:cd:42:70:c9:77:8f:51:7e:f5:6b:7c:c6:19:
9a:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:8E:43:CC:A1:9A:9D:94:58:BF:E1:09:20:AC:54:37:8F:56:9F:58
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ZI5DzKGanZRYv-EJIKxUN49Wn1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
63:74:66:63:13:e0:14:57:43:cc:40:68:6d:8a:9d:a4:c7:4f:
a2:cf:ac:b2:4e:49:62:f3:2a:4a:66:67:4b:4a:c2:a6:6c:30:
c5:98:e7:bc:3a:fa:6a:10:76:fc:13:78:d1:59:ed:98:eb:91:
55:8d:72:21:c7:42:42:ea:d6:6f:aa:f3:d3:ce:26:6b:d9:e3:
22:78:03:2f:44:14:76:0b:93:a4:ed:b0:7c:50:d9:55:9a:46:
5d:22:70:60:ad:dc:3a:68:6d:37:91:57:8b:64:70:3e:f4:e8:
f3:e7:5d:03:d1:09:24:5a:25:e2:e1:97:78:d8:19:0c:e9:f6:
33:7c:35:e2:bc:95:38:43:ac:9a:5e:77:1c:1f:84:42:51:15:
76:e1:53:1b:15:b1:db:03:d5:b6:a8:b0:c5:7f:cf:d6:84:59:
68:ec:22:e3:ee:01:a8:53:8c:9c:d6:60:65:77:4b:45:1c:a6:
6d:54:5d:b5:c9:ea:15:df:a7:fe:39:27:5c:3f:f3:fd:5c:a7:
1e:1d:66:e4:c8:39:76:ce:75:14:01:cd:7a:9d:8c:76:97:87:
53:3d:95:24:6c:13:eb:ef:f9:04:f1:1d:4b:c0:88:41:84:c2:
8d:0a:49:8f:0e:18:c1:29:61:87:1e:72:54:61:1b:8d:ec:ee:
46:97:f2:68
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY/sK4sQ67A3/zW/OPCJYQQdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjA2MDYxMDI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NDhlNDNjY2ExOWE5ZDk0NThiZmUxMDkyMGFjNTQzNzhmNTY5ZjU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqzOkawySnXIpfDN0L/IZKtbE9dmy
SshFZ/WLLy/JtiDOCJXbS6EHLT8QK8VAvG4Zla8EIsjpadVG0pu0qCZzzwsOCalM
kkP+44+seoMKJLDdwOTeRLL1ba78Yc2q4JGmgRB8DMcuYJzwwlvWeOqT4F76q1YV
W/d0+39VqVvD7O0dgdtuq1+whuKXQjuzX8z1Ko1ovEqeVz4uk/0tRWAIUP5ajxis
yUsvNxyNk53mca0mD44glh0uENtTweDZWWoFctGK7LN5agHMuDmjgvm7AWTB0yJB
2kfvKS96JJZx/uEshMEGDaMJEqTce457Ya7Eu81CcMl3j1F+9Wt8xhmaDQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFGSOQ8yhmp2UWL/hCSCsVDePVp9YMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvWkk1RHpLR2FuWlJZdi1FSklLeFVONDlXbjFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAGN0ZmMT4BRXQ8xAaG2K
naTHT6LPrLJOSWLzKkpmZ0tKwqZsMMWY57w6+moQdvwTeNFZ7ZjrkVWNciHHQkLq
1m+q89POJmvZ4yJ4Ay9EFHYLk6TtsHxQ2VWaRl0icGCt3DpobTeRV4tkcD706PPn
XQPRCSRaJeLhl3jYGQzp9jN8NeK8lThDrJpedxwfhEJRFXbhUxsVsdsD1baosMV/
z9aEWWjsIuPuAahTjJzWYGV3S0Ucpm1UXbXJ6hXfp/45J1w/8/1cpx4dZuTIOXbO
dRQBzXqdjHaXh1M9lSRsE+vv+QTxHUvAiEGEwo0KSY8OGMEpYYceclRhG43s7kaX
8mg=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:27 2025 by rpki-client