Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/tXcjPIxZSDUuxf7uSX38NuK00rs.roa
File: tXcjPIxZSDUuxf7uSX38NuK00rs.roa (raw, json)
Hash identifier: TmVLZ1EUsTw6qsyZB2LHo9BZDqvor01C/9/zrZffJs0=
Subject key identifier: B5:77:23:3C:8C:59:48:35:2E:C5:FE:EE:49:7D:FC:36:E2:B4:D2:BB
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019018967EAB5382DA392E20B60DB4CA1EC1
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/tXcjPIxZSDUuxf7uSX38NuK00rs.roa
Signing time: Fri 14 Jun 2024 21:10:34 +0000
ROA not before: Fri 14 Jun 2024 21:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 14 Jun 2024 22:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:18:96:7e:ab:53:82:da:39:2e:20:b6:0d:b4:ca:1e:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 14 21:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b577233c8c5948352ec5feee497dfc36e2b4d2bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:56:b4:cc:e1:42:21:c8:a1:bb:69:a6:d4:d3:
28:bd:22:fa:c1:e0:b4:f9:b5:5f:e1:8d:4e:dc:87:
46:73:37:9b:56:8a:11:a4:25:67:0b:f1:68:a4:e6:
71:08:7d:94:1e:d4:47:a9:00:97:98:de:4d:05:97:
f7:03:49:da:d5:04:64:e3:dd:cd:9f:23:d3:90:7a:
5c:47:fc:a8:c3:0a:e3:dc:84:af:28:72:5a:ec:05:
18:f6:0d:2f:b9:d9:d0:ce:46:da:82:25:34:63:78:
43:2e:e0:8f:aa:8b:3a:0f:45:e2:fa:ea:60:c8:f2:
77:55:af:bf:96:d9:c3:0f:30:aa:4d:e8:4e:1f:4c:
64:14:9a:3c:02:d7:f6:4d:6e:e9:47:2b:06:ef:da:
57:c4:4f:7d:6b:77:cf:ef:41:f4:28:9f:15:82:32:
bb:45:0d:76:00:ac:18:1f:df:c7:9e:ff:cf:e2:3d:
69:bc:b8:88:e3:2e:87:0a:4f:30:bb:74:96:9e:3c:
6a:75:35:4e:d7:64:85:86:81:bb:d5:be:b6:c8:d7:
28:b8:a1:0c:3c:d4:66:43:71:0b:40:0c:a2:dc:b3:
c1:c3:61:0c:c5:90:63:7f:bd:ba:7a:ec:69:88:b4:
4f:a0:52:a8:77:54:61:64:db:4a:fb:66:6c:1d:a3:
fa:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:77:23:3C:8C:59:48:35:2E:C5:FE:EE:49:7D:FC:36:E2:B4:D2:BB
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/tXcjPIxZSDUuxf7uSX38NuK00rs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
25:50:29:ff:55:45:eb:d9:86:cd:65:f9:4a:a3:a0:c3:c9:1a:
ca:4e:cc:78:e8:41:8f:c8:58:3f:4d:37:36:94:11:60:1a:9b:
a2:47:14:8d:41:ea:6c:a9:03:b9:8f:79:c6:a9:d8:6b:b8:fe:
c8:4a:b4:dd:74:86:f7:5c:02:4c:b1:b6:df:e7:53:df:37:19:
79:92:24:ed:02:11:2b:6f:cb:bf:34:2a:01:8b:8e:7a:54:4a:
f0:ef:87:50:e2:3c:89:cc:8f:a1:09:8e:52:aa:bc:29:f4:6b:
b1:70:3d:9a:77:b8:1d:20:14:71:69:03:ce:96:63:59:31:69:
5c:42:ff:31:b2:be:16:e7:9b:d7:2e:41:5a:49:a5:14:0a:8c:
2a:36:5e:41:b5:62:15:8b:74:2d:19:0e:87:ae:ae:45:3c:0e:
89:ea:94:77:f6:68:4b:c5:72:ea:ae:86:01:e8:8c:b5:9d:59:
cf:10:af:3c:bd:57:45:ae:96:37:32:28:56:bf:7c:9c:78:fa:
aa:61:29:45:43:d0:ed:c4:cc:0d:f7:c3:ed:33:98:ae:05:50:
08:ef:d1:f8:5b:a8:88:b7:cb:38:4c:b0:ee:8c:b7:02:01:28:
2e:50:e1:0e:a5:73:0a:dc:af:0b:25:2b:93:c5:4a:90:83:64:
36:7e:da:d4
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZAYln6rU4LaOS4gtg20yh7BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjE0MjExMDM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNTc3MjMzYzhjNTk0ODM1MmVjNWZlZWU0OTdkZmMzNmUyYjRkMmJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiFa0zOFCIcihu2mm1NMovSL6weC0
+bVf4Y1O3IdGczebVooRpCVnC/FopOZxCH2UHtRHqQCXmN5NBZf3A0na1QRk493N
nyPTkHpcR/yowwrj3ISvKHJa7AUY9g0vudnQzkbagiU0Y3hDLuCPqos6D0Xi+upg
yPJ3Va+/ltnDDzCqTehOH0xkFJo8Atf2TW7pRysG79pXxE99a3fP70H0KJ8VgjK7
RQ12AKwYH9/Hnv/P4j1pvLiI4y6HCk8wu3SWnjxqdTVO12SFhoG71b62yNcouKEM
PNRmQ3ELQAyi3LPBw2EMxZBjf726euxpiLRPoFKod1RhZNtK+2ZsHaP6DwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFLV3IzyMWUg1LsX+7kl9/DbitNK7MB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvdFhjalBJeFpTRFV1eGY3dVNYMzhOdUswMHJzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBACVQKf9VRevZhs1l+Uqj
oMPJGspOzHjoQY/IWD9NNzaUEWAam6JHFI1B6mypA7mPecap2Gu4/shKtN10hvdc
Akyxtt/nU983GXmSJO0CEStvy780KgGLjnpUSvDvh1DiPInMj6EJjlKqvCn0a7Fw
PZp3uB0gFHFpA86WY1kxaVxC/zGyvhbnm9cuQVpJpRQKjCo2XkG1YhWLdC0ZDoeu
rkU8DonqlHf2aEvFcuquhgHojLWdWc8Qrzy9V0WuljcyKFa/fJx4+qphKUVD0O3E
zA33w+0zmK4FUAjv0fhbqIi3yzhMsO6MtwIBKC5Q4Q6lcwrcrwslK5PFSpCDZDZ+
2tQ=
Generated at Fri Jun 14 22:42:33 2024 by rpki-client on console-fra.rpki-client.org