Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/apBi3eIFQAbmrq80vxzQE0LlKgI.roa
File: apBi3eIFQAbmrq80vxzQE0LlKgI.roa (raw, json)
Hash identifier: FDi7beTpmVstDbeEI4VRV9hDSoZJJqLnUBDyXDdTzoc=
Subject key identifier: 6A:90:62:DD:E2:05:40:06:E6:AE:AF:34:BF:1C:D0:13:42:E5:2A:02
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FFC74DAF5D4A30EA39600346A9C27A4F5
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/apBi3eIFQAbmrq80vxzQE0LlKgI.roa
Signing time: Sun 09 Jun 2024 10:04:27 +0000
ROA not before: Sun 09 Jun 2024 10:04:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
2001:67c:64:ffff:0:18f:fc74:a8f1/128 maxlen: 128
Validation: Failed, certificate revoked on Sun 09 Jun 2024 10:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:fc:74:da:f5:d4:a3:0e:a3:96:00:34:6a:9c:27:a4:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 9 10:04:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6a9062dde2054006e6aeaf34bf1cd01342e52a02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:1b:16:6e:4b:6f:68:67:95:50:22:44:a0:b4:
83:fe:3c:9b:65:dc:3c:38:13:89:41:58:5a:ec:63:
bf:fd:c9:30:8b:b4:f3:36:3e:9b:6b:2d:20:b2:bd:
1d:8e:c3:f6:33:7d:f2:5d:7f:68:eb:d1:f9:a5:a5:
97:06:55:24:51:fb:f6:8c:4f:65:c4:bb:be:84:40:
2b:f7:48:46:af:67:c0:fc:8c:4e:66:9e:46:1c:8a:
6e:74:3c:41:5f:25:73:ce:ad:49:a0:41:ae:a0:99:
07:50:5d:2a:1f:0a:87:10:67:4d:d5:95:d9:94:d0:
8f:e6:e6:67:da:4d:2e:0a:73:e7:39:99:61:77:cd:
7b:69:2d:d4:c6:ae:53:98:aa:ab:af:67:96:f1:a0:
a9:e6:41:1d:db:f9:0e:fd:18:2d:60:5e:07:9b:21:
e8:37:e7:48:da:f9:d7:9f:6c:6a:83:4e:03:45:2d:
80:b3:f9:65:42:f2:89:de:26:8c:aa:9a:e8:59:2e:
fe:cd:39:a8:d8:b7:4d:b4:c8:d0:66:8f:74:c8:5f:
d0:38:ac:f5:0d:de:da:06:02:9d:c0:ab:25:39:ea:
c8:92:fd:de:65:ee:a8:41:a4:21:d6:c5:86:09:ac:
27:27:58:07:12:33:92:3a:28:d4:35:55:39:5c:15:
26:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:90:62:DD:E2:05:40:06:E6:AE:AF:34:BF:1C:D0:13:42:E5:2A:02
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/apBi3eIFQAbmrq80vxzQE0LlKgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
52:df:e2:2e:33:bd:06:98:03:29:a8:d9:c9:d2:2b:46:9d:a6:
ac:91:10:61:83:91:99:c9:8e:60:6f:c5:c6:50:08:ed:96:4d:
c7:35:56:7a:8e:8d:9d:4d:a1:ff:f0:59:21:b3:ad:9a:6b:ac:
10:c2:97:ab:15:1f:1c:a6:f8:9a:33:ff:19:c6:29:de:00:65:
f2:7a:d2:16:6d:bc:0c:70:aa:8c:7b:ab:14:70:34:57:06:97:
52:06:54:9e:63:ab:46:a2:30:92:c1:c7:53:dd:31:0a:41:23:
d1:06:a2:ad:f1:80:ab:e0:67:22:f3:14:db:de:7b:8f:4b:6a:
ca:d9:10:80:e8:54:50:e2:db:44:dd:62:45:17:66:17:7d:93:
c8:42:f9:f5:65:be:ce:5c:bd:d6:6d:42:7c:35:35:32:62:00:
06:f6:8a:53:c0:a6:f2:5c:2e:09:19:18:32:a6:68:11:49:6b:
e9:d9:68:80:f7:33:93:f5:4f:03:f1:64:f6:d2:83:66:73:4c:
07:ce:2b:9a:17:c6:53:e0:d7:cf:bb:a7:cd:b9:9d:f9:3a:bb:
79:0f:ef:e8:60:81:3d:53:1f:c8:98:9c:b5:d7:1a:2f:af:45:
d6:69:a8:09:b4:75:ba:aa:b5:51:e3:c6:28:10:95:fb:d4:68:
1d:c1:9e:d5
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY/8dNr11KMOo5YANGqcJ6T1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjA5MTAwNDI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YTkwNjJkZGUyMDU0MDA2ZTZhZWFmMzRiZjFjZDAxMzQyZTUyYTAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2RsWbktvaGeVUCJEoLSD/jybZdw8
OBOJQVha7GO//ckwi7TzNj6bay0gsr0djsP2M33yXX9o69H5paWXBlUkUfv2jE9l
xLu+hEAr90hGr2fA/IxOZp5GHIpudDxBXyVzzq1JoEGuoJkHUF0qHwqHEGdN1ZXZ
lNCP5uZn2k0uCnPnOZlhd817aS3Uxq5TmKqrr2eW8aCp5kEd2/kO/RgtYF4HmyHo
N+dI2vnXn2xqg04DRS2As/llQvKJ3iaMqproWS7+zTmo2LdNtMjQZo90yF/QOKz1
Dd7aBgKdwKslOerIkv3eZe6oQaQh1sWGCawnJ1gHEjOSOijUNVU5XBUmMwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFGqQYt3iBUAG5q6vNL8c0BNC5SoCMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvYXBCaTNlSUZRQWJtcnE4MHZ4elFFMExsS2dJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAFLf4i4zvQaYAymo2cnS
K0adpqyREGGDkZnJjmBvxcZQCO2WTcc1VnqOjZ1Nof/wWSGzrZprrBDCl6sVHxym
+Joz/xnGKd4AZfJ60hZtvAxwqox7qxRwNFcGl1IGVJ5jq0aiMJLBx1PdMQpBI9EG
oq3xgKvgZyLzFNvee49LasrZEIDoVFDi20TdYkUXZhd9k8hC+fVlvs5cvdZtQnw1
NTJiAAb2ilPApvJcLgkZGDKmaBFJa+nZaID3M5P1TwPxZPbSg2ZzTAfOK5oXxlPg
18+7p825nfk6u3kP7+hggT1TH8iYnLXXGi+vRdZpqAm0dbqqtVHjxigQlfvUaB3B
ntU=
Generated at Sun Jun 9 14:08:36 2024 by rpki-client on console-fra.rpki-client.org