Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/eCrN0rvUbShgAb3IQxTnbVoHCl4.roa
File: eCrN0rvUbShgAb3IQxTnbVoHCl4.roa (raw, json)
Hash identifier: mIHHhxTawV/vwcRV7+gzia6ZH4OJKoHX0QQMwHOZ5ac=
Subject key identifier: 78:2A:CD:D2:BB:D4:6D:28:60:01:BD:C8:43:14:E7:6D:5A:07:0A:5E
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019072B4A0925D749DC64D4D339597026B44
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/eCrN0rvUbShgAb3IQxTnbVoHCl4.roa
Signing time: Tue 02 Jul 2024 09:09:18 +0000
ROA not before: Tue 02 Jul 2024 09:09:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jul 2024 10:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:72:b4:a0:92:5d:74:9d:c6:4d:4d:33:95:97:02:6b:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 2 09:09:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=782acdd2bbd46d286001bdc84314e76d5a070a5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:88:77:ca:36:bf:77:81:ff:01:d8:09:c5:52:
5a:4a:ae:aa:a3:3d:b8:05:81:49:f8:c0:c8:66:98:
d4:ea:ab:80:1b:8a:df:fe:b7:61:45:ce:13:fe:28:
7c:bd:99:d2:2c:bb:d1:be:81:5b:16:0b:c4:b5:fe:
0e:ed:63:9f:94:dc:d1:7d:00:eb:02:72:7a:82:35:
a6:42:de:2f:48:04:0d:60:4f:b2:5c:a8:5e:d6:8d:
fe:16:37:55:ba:2e:7b:8d:c8:3f:db:ea:be:55:bb:
20:a0:12:59:90:52:22:db:9a:70:07:e0:27:2e:20:
15:c3:1e:0b:79:3c:28:1d:93:4e:93:b2:c0:c3:ed:
50:28:4b:2e:6b:e1:ce:b3:71:34:55:df:1c:a6:9d:
23:62:c7:03:2e:fc:e3:1c:60:71:fe:50:50:3b:33:
32:23:11:e4:8b:86:e1:b6:37:35:64:84:2a:8f:22:
73:64:f8:3b:18:a4:9e:56:55:a4:6b:ba:ba:eb:66:
5d:15:5f:6b:ee:a8:26:e0:08:ab:ad:dd:ea:a3:0c:
4c:61:6a:c1:b2:c4:5e:a1:84:db:a8:a8:63:94:e9:
d6:c9:82:ec:3b:e9:21:bd:f9:9e:27:1d:24:75:3c:
a9:81:ac:3a:89:df:9e:06:2a:fa:1d:46:4c:41:1f:
f1:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:2A:CD:D2:BB:D4:6D:28:60:01:BD:C8:43:14:E7:6D:5A:07:0A:5E
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/eCrN0rvUbShgAb3IQxTnbVoHCl4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
68:3e:5b:ec:53:4f:e3:c2:76:ba:ed:03:80:cf:19:30:22:8d:
bc:ca:0a:22:4f:2f:d0:6c:cc:dc:9e:22:9d:6d:4c:76:71:50:
1a:31:5a:ad:32:0a:2b:64:30:f6:e1:9a:60:9d:27:a5:ed:b5:
e9:ce:72:5b:47:bc:6e:c9:13:c0:f4:95:44:56:b9:02:b8:ae:
15:39:ab:9f:4b:1c:1a:9c:a3:e3:48:ec:8c:2c:12:e1:77:6e:
13:47:8e:72:cb:eb:5d:f6:5d:5c:a6:44:65:78:ec:27:20:4f:
62:5e:6f:bd:63:e4:dd:20:1b:fa:3f:7e:b0:35:c0:fb:33:29:
42:41:e5:bc:7e:06:ab:6d:b5:ae:a7:8b:00:d8:39:50:45:31:
32:4c:33:09:fb:c4:7b:33:ca:7e:24:87:1b:80:5e:10:db:ae:
cc:f2:16:85:82:22:98:5c:b0:af:70:f8:e8:2d:0a:dc:f2:82:
2c:bf:5f:e6:cf:d9:45:0b:53:f4:22:06:b8:6c:7e:57:32:fe:
a7:af:b0:31:a5:4f:2d:36:16:d8:99:13:7b:28:c6:b5:a9:ed:
01:73:ad:39:b4:d7:14:46:0d:20:dd:ec:ae:ec:82:07:30:c8:
a7:d1:20:81:69:f6:98:f4:bd:06:2b:d5:2b:b7:88:61:f9:a4:
37:39:5f:1a
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZBytKCSXXSdxk1NM5WXAmtEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNzAyMDkwOTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ODJhY2RkMmJiZDQ2ZDI4NjAwMWJkYzg0MzE0ZTc2ZDVhMDcwYTVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt4h3yja/d4H/AdgJxVJaSq6qoz24
BYFJ+MDIZpjU6quAG4rf/rdhRc4T/ih8vZnSLLvRvoFbFgvEtf4O7WOflNzRfQDr
AnJ6gjWmQt4vSAQNYE+yXKhe1o3+FjdVui57jcg/2+q+VbsgoBJZkFIi25pwB+An
LiAVwx4LeTwoHZNOk7LAw+1QKEsua+HOs3E0Vd8cpp0jYscDLvzjHGBx/lBQOzMy
IxHki4bhtjc1ZIQqjyJzZPg7GKSeVlWka7q662ZdFV9r7qgm4Airrd3qowxMYWrB
ssReoYTbqKhjlOnWyYLsO+khvfmeJx0kdTypgaw6id+eBir6HUZMQR/xkQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFHgqzdK71G0oYAG9yEMU521aBwpeMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvZUNyTjBydlViU2hnQWIzSVF4VG5iVm9IQ2w0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAGg+W+xTT+PCdrrtA4DP
GTAijbzKCiJPL9BszNyeIp1tTHZxUBoxWq0yCitkMPbhmmCdJ6XttenOcltHvG7J
E8D0lURWuQK4rhU5q59LHBqco+NI7IwsEuF3bhNHjnLL6132XVymRGV47CcgT2Je
b71j5N0gG/o/frA1wPszKUJB5bx+Bqttta6niwDYOVBFMTJMMwn7xHszyn4khxuA
XhDbrszyFoWCIphcsK9w+OgtCtzygiy/X+bP2UULU/QiBrhsflcy/qevsDGlTy02
FtiZE3soxrWp7QFzrTm01xRGDSDd7K7sggcwyKfRIIFp9pj0vQYr1Su3iGH5pDc5
Xxo=
-----END CERTIFICATE-----
Generated at Tue Jul 2 11:42:57 2024 by rpki-client on console-fra.rpki-client.org