Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/uMZiz0hW7xTr07oKnL4PEL8pSJo.roa
File: uMZiz0hW7xTr07oKnL4PEL8pSJo.roa (raw, json)
Hash identifier: Igne190jr4hPVxTZRS8ymOqEi1qzz1YvPw/3sGIB2ns=
Subject key identifier: B8:C6:62:CF:48:56:EF:14:EB:D3:BA:0A:9C:BE:0F:10:BF:29:48:9A
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FF865BB57A0A1A3CC6B8F861279D47C6E
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/uMZiz0hW7xTr07oKnL4PEL8pSJo.roa
Signing time: Sat 08 Jun 2024 15:09:27 +0000
ROA not before: Sat 08 Jun 2024 15:09:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 08 Jun 2024 16:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f8:65:bb:57:a0:a1:a3:cc:6b:8f:86:12:79:d4:7c:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 8 15:09:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b8c662cf4856ef14ebd3ba0a9cbe0f10bf29489a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:34:d0:fa:9a:6c:d8:77:66:6e:fb:78:fa:0c:
e9:2a:89:88:41:4b:d2:d9:9d:9e:3f:d0:35:4c:48:
2d:80:e1:2b:33:ff:42:30:8e:19:bd:d0:53:39:ec:
69:8e:d1:f0:57:2f:3a:8c:4b:d6:33:9c:a6:59:9a:
da:1c:6c:5f:1a:46:64:07:5c:a6:b8:3f:52:a0:10:
c7:bd:a7:ae:e4:0e:d3:a3:68:25:de:48:ba:87:6a:
09:62:83:fc:eb:da:b2:00:fd:42:25:f6:04:58:50:
f1:c3:31:dd:78:fb:82:1d:e4:83:dc:ce:af:a7:19:
10:b9:9e:3e:28:a8:31:c6:9e:61:0a:6c:d6:3f:98:
b2:48:f6:39:ed:56:c9:b3:77:a4:67:63:37:b2:41:
63:f0:bc:99:95:92:b4:1a:19:22:88:34:96:c3:bd:
b5:50:04:5d:23:57:ff:b6:75:d8:c0:50:07:9f:a1:
03:34:13:a7:d6:27:25:58:21:58:8e:d1:b5:51:39:
d0:cd:d3:82:79:ca:6b:39:41:96:99:77:de:c0:f4:
f0:d0:df:50:cc:27:96:c6:44:36:47:19:bf:2f:ba:
b6:5f:52:24:39:18:57:bd:e4:7a:f8:c4:37:dd:f0:
80:6a:1d:e1:30:a3:27:24:85:30:92:01:82:bd:95:
5b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:C6:62:CF:48:56:EF:14:EB:D3:BA:0A:9C:BE:0F:10:BF:29:48:9A
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/uMZiz0hW7xTr07oKnL4PEL8pSJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
00:b1:e2:b6:62:01:8f:50:5e:be:08:97:90:f0:c5:32:7c:3f:
42:18:f2:e2:91:3d:bd:93:97:7e:50:2c:da:e0:46:d4:df:09:
4a:cd:1c:11:d4:df:ac:47:34:b7:1f:ad:f2:f3:0b:57:1c:43:
12:27:74:c1:77:5b:35:c6:fa:fc:a7:98:c5:5a:46:27:65:08:
45:8c:ea:ee:66:73:b5:73:d1:c6:98:db:f5:cc:de:3e:a4:89:
80:16:c1:1a:a4:db:b4:23:b7:09:6a:1a:43:40:e9:82:af:8c:
5c:65:51:c8:92:9b:5d:44:d0:17:20:e1:6b:da:d6:2f:49:d2:
ef:2f:7b:0f:09:6d:32:c5:65:a3:ec:51:be:6c:de:89:c0:d2:
f7:54:3d:e6:f1:f8:0d:ea:20:59:53:f4:c7:c3:58:8c:da:ed:
d5:79:36:0b:b3:20:bb:bd:28:44:37:14:fb:4d:2b:02:51:90:
b0:b6:28:93:cb:b2:71:92:c0:ea:15:e7:d6:cf:dc:c7:be:1c:
1f:a4:f1:05:98:34:e8:45:ae:f9:24:ac:77:3f:5b:6b:5e:67:
e2:7e:a8:e7:87:5b:f9:f7:3c:ca:6d:0a:be:5b:82:9b:7f:28:
7a:e0:c7:41:1f:a0:6d:31:60:1a:de:86:d8:e2:97:6a:4a:fe:
9d:0e:ae:46
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY/4ZbtXoKGjzGuPhhJ51HxuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjA4MTUwOTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOGM2NjJjZjQ4NTZlZjE0ZWJkM2JhMGE5Y2JlMGYxMGJmMjk0ODlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsDTQ+pps2Hdmbvt4+gzpKomIQUvS
2Z2eP9A1TEgtgOErM/9CMI4ZvdBTOexpjtHwVy86jEvWM5ymWZraHGxfGkZkB1ym
uD9SoBDHvaeu5A7To2gl3ki6h2oJYoP869qyAP1CJfYEWFDxwzHdePuCHeSD3M6v
pxkQuZ4+KKgxxp5hCmzWP5iySPY57VbJs3ekZ2M3skFj8LyZlZK0GhkiiDSWw721
UARdI1f/tnXYwFAHn6EDNBOn1iclWCFYjtG1UTnQzdOCecprOUGWmXfewPTw0N9Q
zCeWxkQ2Rxm/L7q2X1IkORhXveR6+MQ33fCAah3hMKMnJIUwkgGCvZVbBwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFLjGYs9IVu8U69O6Cpy+DxC/KUiaMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvdU1aaXowaFc3eFRyMDdvS25MNFBFTDhwU0pvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAACx4rZiAY9QXr4Il5Dw
xTJ8P0IY8uKRPb2Tl35QLNrgRtTfCUrNHBHU36xHNLcfrfLzC1ccQxIndMF3WzXG
+vynmMVaRidlCEWM6u5mc7Vz0caY2/XM3j6kiYAWwRqk27QjtwlqGkNA6YKvjFxl
UciSm11E0Bcg4Wva1i9J0u8vew8JbTLFZaPsUb5s3onA0vdUPebx+A3qIFlT9MfD
WIza7dV5NguzILu9KEQ3FPtNKwJRkLC2KJPLsnGSwOoV59bP3Me+HB+k8QWYNOhF
rvkkrHc/W2teZ+J+qOeHW/n3PMptCr5bgpt/KHrgx0EfoG0xYBrehtjil2pK/p0O
rkY=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:52 2025 by rpki-client