Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/u7FvwN_esxq9AVe9YjnosL7otHk.roa
File: u7FvwN_esxq9AVe9YjnosL7otHk.roa (raw, json)
Hash identifier: O5QvRLGXZqteGEwUwGs2WhM/ZaR7o4W9PiITrK9bLGo=
Subject key identifier: BB:B1:6F:C0:DF:DE:B3:1A:BD:01:57:BD:62:39:E8:B0:BE:E8:B4:79
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190912CEB7C3F9AE158B2B9B34ED4693842
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/u7FvwN_esxq9AVe9YjnosL7otHk.roa
Signing time: Mon 08 Jul 2024 07:09:18 +0000
ROA not before: Mon 08 Jul 2024 07:09:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 08 Jul 2024 08:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:91:2c:eb:7c:3f:9a:e1:58:b2:b9:b3:4e:d4:69:38:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 8 07:09:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bbb16fc0dfdeb31abd0157bd6239e8b0bee8b479
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:5c:32:48:95:98:93:c3:a3:cf:e9:b2:e2:4b:
8c:b1:9b:ba:80:e5:d7:17:2b:eb:13:c2:d3:87:da:
4b:c7:6a:29:45:ba:ad:3a:d8:89:42:22:e9:ed:d7:
2b:52:ab:ad:bb:33:cc:20:16:d5:6a:91:00:d8:d6:
34:b0:fb:c7:e7:62:de:26:5d:5a:22:eb:db:4c:b1:
96:29:e5:2e:4c:da:35:f5:40:96:bd:e3:bf:9b:83:
f7:42:75:a3:53:e5:37:d1:20:ca:e1:0d:b6:fe:bd:
28:62:ea:f3:be:e6:1e:ae:86:5e:f2:e2:66:fa:e1:
44:ef:93:c4:46:e0:58:2f:d9:46:af:7a:f1:91:c4:
bf:4b:af:c0:cd:09:1a:45:dd:f6:5a:74:ec:42:fa:
73:fd:d0:bb:fa:4c:54:eb:a6:d0:c1:0c:37:ba:a3:
41:79:f7:c1:2e:e4:b2:b6:cb:93:1b:88:7e:38:98:
68:e0:2b:57:1c:30:36:c0:27:e5:33:6f:5e:17:30:
45:73:d7:3e:3d:e3:7b:ab:ac:37:35:32:81:ee:32:
c3:63:e0:c5:48:92:07:b0:d9:63:ae:67:fe:a0:44:
1e:bd:7b:17:11:81:e9:c7:40:db:47:38:07:3c:09:
14:f2:a1:b9:4c:9e:48:c8:41:d3:a7:ee:8a:5d:40:
a9:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:B1:6F:C0:DF:DE:B3:1A:BD:01:57:BD:62:39:E8:B0:BE:E8:B4:79
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/u7FvwN_esxq9AVe9YjnosL7otHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
42:7d:b2:72:61:cb:07:b0:a4:af:fa:8c:e1:6e:8f:e3:5f:d0:
f3:45:9f:a8:c6:d5:9a:22:f0:25:1d:de:ab:e8:df:bd:e9:50:
d1:50:d8:0d:98:38:e9:f1:b3:1f:be:90:47:96:a2:14:fe:94:
42:99:0e:34:36:81:d0:12:de:84:67:53:4b:20:eb:a1:1f:31:
ae:16:e8:df:6b:65:47:98:39:0c:84:7b:c7:30:c4:ed:3e:ba:
f1:26:cb:9c:58:df:1a:02:ce:92:cb:db:86:27:f0:c8:d4:f4:
9d:dd:94:80:08:8d:58:21:08:f4:d0:50:0e:4b:52:21:00:cd:
22:68:79:bc:ae:0b:37:f9:71:b2:ef:6b:fe:cb:d4:8e:b3:09:
1c:d5:03:5a:95:30:72:31:89:c8:00:f4:bd:f0:6d:c5:7e:ca:
a0:90:94:bc:17:0c:d0:d0:6b:d5:38:54:81:1b:1a:23:25:a1:
d8:e3:ea:c9:9b:b5:78:1a:72:7f:da:fe:f8:c1:0a:fc:82:3e:
e3:4c:79:c2:43:b8:80:16:76:2f:1e:cd:23:c9:43:8b:99:87:
65:cd:e9:af:7f:c5:d2:d0:ea:a0:85:68:51:29:67:a6:8e:9f:
e3:d2:ae:6e:e4:f7:cb:4b:70:04:b8:a4:3a:88:62:4c:da:10:
ee:5b:a4:c9
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZCRLOt8P5rhWLK5s07UaThCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNzA4MDcwOTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYmIxNmZjMGRmZGViMzFhYmQwMTU3YmQ2MjM5ZThiMGJlZThiNDc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg1wySJWYk8Ojz+my4kuMsZu6gOXX
FyvrE8LTh9pLx2opRbqtOtiJQiLp7dcrUqutuzPMIBbVapEA2NY0sPvH52LeJl1a
IuvbTLGWKeUuTNo19UCWveO/m4P3QnWjU+U30SDK4Q22/r0oYurzvuYeroZe8uJm
+uFE75PERuBYL9lGr3rxkcS/S6/AzQkaRd32WnTsQvpz/dC7+kxU66bQwQw3uqNB
effBLuSytsuTG4h+OJho4CtXHDA2wCflM29eFzBFc9c+PeN7q6w3NTKB7jLDY+DF
SJIHsNljrmf+oEQevXsXEYHpx0DbRzgHPAkU8qG5TJ5IyEHTp+6KXUCpxwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFLuxb8Df3rMavQFXvWI56LC+6LR5MB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvdTdGdndOX2VzeHE5QVZlOVlqbm9zTDdvdEhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAEJ9snJhywewpK/6jOFu
j+Nf0PNFn6jG1Zoi8CUd3qvo373pUNFQ2A2YOOnxsx++kEeWohT+lEKZDjQ2gdAS
3oRnU0sg66EfMa4W6N9rZUeYOQyEe8cwxO0+uvEmy5xY3xoCzpLL24Yn8MjU9J3d
lIAIjVghCPTQUA5LUiEAzSJoebyuCzf5cbLva/7L1I6zCRzVA1qVMHIxicgA9L3w
bcV+yqCQlLwXDNDQa9U4VIEbGiMlodjj6smbtXgacn/a/vjBCvyCPuNMecJDuIAW
di8ezSPJQ4uZh2XN6a9/xdLQ6qCFaFEpZ6aOn+PSrm7k98tLcAS4pDqIYkzaEO5b
pMk=
-----END CERTIFICATE-----
Generated at Mon Jul 8 10:40:49 2024 by rpki-client on console-ams.rpki-client.org