Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/cMTfpihtYzopa9WMd4offQJqUP4.roa
File: cMTfpihtYzopa9WMd4offQJqUP4.roa (raw, json)
Hash identifier: SGpfCFYABLwTkyF+ioI6G2z98s6UMbKbS1FNBGiSW08=
Subject key identifier: 70:C4:DF:A6:28:6D:63:3A:29:6B:D5:8C:77:8A:1F:7D:02:6A:50:FE
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01907F94873DA9BA4FCF3975A6135302F599
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/cMTfpihtYzopa9WMd4offQJqUP4.roa
Signing time: Thu 04 Jul 2024 21:09:18 +0000
ROA not before: Thu 04 Jul 2024 21:09:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 04 Jul 2024 22:04:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7f:94:87:3d:a9:ba:4f:cf:39:75:a6:13:53:02:f5:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 4 21:09:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=70c4dfa6286d633a296bd58c778a1f7d026a50fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e6:a7:af:b3:29:08:41:20:66:6c:9c:71:7a:
90:a3:aa:0c:2b:0a:8b:6c:84:fd:ee:95:cd:57:f1:
64:02:ec:41:e7:06:71:a3:5b:aa:63:22:fc:63:c3:
3c:de:01:f1:62:42:02:72:2d:d1:18:7a:ee:4e:b8:
42:df:ca:a3:fa:55:2f:0a:fd:0f:8c:cb:84:f6:8b:
5b:69:04:3c:b0:30:79:70:3b:2e:f1:42:12:05:e9:
a3:1a:f1:35:4c:75:f2:96:1a:a6:4f:6d:ad:29:77:
3e:d7:74:79:3a:0b:d0:3c:53:42:00:57:22:89:03:
d0:35:14:60:71:37:31:77:dc:88:82:c2:53:6a:ae:
b0:12:a8:ce:53:c6:72:49:4d:4c:08:a2:c5:42:47:
9c:df:99:6d:49:77:46:bf:59:96:f4:21:1e:55:01:
f5:89:75:cf:15:e1:da:3a:30:f4:2c:56:0c:33:88:
ff:28:55:53:00:bd:b7:e2:1f:5b:f9:ce:3c:14:54:
3e:c7:58:8f:29:e9:b8:8c:d5:ff:63:44:71:48:77:
19:b6:8e:3e:91:b3:c8:a4:38:06:35:d3:03:54:36:
5d:39:af:be:87:52:c5:2d:f7:b2:b0:e8:fd:01:0a:
c2:6b:32:1a:0d:a2:f6:b6:4e:b6:7e:b6:8a:39:70:
42:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:C4:DF:A6:28:6D:63:3A:29:6B:D5:8C:77:8A:1F:7D:02:6A:50:FE
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/cMTfpihtYzopa9WMd4offQJqUP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
35:bd:80:f1:e7:af:4f:af:94:62:ce:9a:d5:28:05:7f:2c:aa:
af:b4:fc:fc:28:7a:6d:af:c9:87:a4:92:e6:ee:37:76:30:2c:
e4:ad:41:fa:77:83:11:b5:c0:46:de:e8:5c:07:c0:1f:d5:d5:
f9:20:e8:4e:fa:cc:c0:bf:7c:3e:8d:c7:01:3a:ec:7b:11:62:
5d:f6:47:26:8b:a0:c4:da:e8:58:09:7c:58:18:51:d4:47:1d:
58:6d:a3:c7:c4:30:76:3e:69:7a:5e:eb:39:5f:d9:f3:8f:1e:
c1:0b:42:1c:a5:a8:42:1d:0d:35:da:b1:3a:52:2e:7b:cf:d0:
d8:22:0c:0e:1d:92:97:ba:5f:6e:e4:64:08:b2:86:2e:bb:aa:
9e:f5:96:b8:2a:b9:0e:36:30:dc:19:74:03:80:8d:15:67:c6:
5d:6c:b9:2c:fd:5a:04:f6:bc:df:e0:3b:7f:59:fa:3b:92:33:
ab:f5:ee:a3:38:7a:50:f5:28:ce:58:23:11:86:f2:79:cc:46:
48:b8:5e:ce:3a:1d:96:f0:64:19:9d:3c:aa:67:93:63:1f:9c:
2e:e5:8b:68:8d:f3:83:ec:6c:54:06:40:f3:e7:91:23:23:80:
b6:f6:c3:7c:79:54:2c:9a:1a:15:95:f8:b6:de:80:44:19:20:
6e:bc:38:bf
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZB/lIc9qbpPzzl1phNTAvWZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNzA0MjEwOTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MGM0ZGZhNjI4NmQ2MzNhMjk2YmQ1OGM3NzhhMWY3ZDAyNmE1MGZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxuanr7MpCEEgZmyccXqQo6oMKwqL
bIT97pXNV/FkAuxB5wZxo1uqYyL8Y8M83gHxYkICci3RGHruTrhC38qj+lUvCv0P
jMuE9otbaQQ8sDB5cDsu8UISBemjGvE1THXylhqmT22tKXc+13R5OgvQPFNCAFci
iQPQNRRgcTcxd9yIgsJTaq6wEqjOU8ZySU1MCKLFQkec35ltSXdGv1mW9CEeVQH1
iXXPFeHaOjD0LFYMM4j/KFVTAL234h9b+c48FFQ+x1iPKem4jNX/Y0RxSHcZto4+
kbPIpDgGNdMDVDZdOa++h1LFLfeysOj9AQrCazIaDaL2tk62fraKOXBCQwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFHDE36YobWM6KWvVjHeKH30CalD+MB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvY01UZnBpaHRZem9wYTlXTWQ0b2ZmUUpxVVA0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBADW9gPHnr0+vlGLOmtUo
BX8sqq+0/Pwoem2vyYekkubuN3YwLOStQfp3gxG1wEbe6FwHwB/V1fkg6E76zMC/
fD6NxwE67HsRYl32RyaLoMTa6FgJfFgYUdRHHVhto8fEMHY+aXpe6zlf2fOPHsEL
QhylqEIdDTXasTpSLnvP0NgiDA4dkpe6X27kZAiyhi67qp71lrgquQ42MNwZdAOA
jRVnxl1suSz9WgT2vN/gO39Z+juSM6v17qM4elD1KM5YIxGG8nnMRki4Xs46HZbw
ZBmdPKpnk2MfnC7li2iN84PsbFQGQPPnkSMjgLb2w3x5VCyaGhWV+LbegEQZIG68
OL8=
Generated at Thu Jul 4 23:32:53 2024 by rpki-client on console-ams.rpki-client.org