Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/vcsTUrXux_opAei9tp_sPOFXbmo.roa
File: vcsTUrXux_opAei9tp_sPOFXbmo.roa (raw, json)
Hash identifier: sq0AmzUmaR+xWcriwyHJDWYiPl5Rw6jYN1Y+wjDOn44=
Subject key identifier: BD:CB:13:52:B5:EE:C7:FA:29:01:E8:BD:B6:9F:EC:3C:E1:57:6E:6A
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019083A924354FF812A56DB202C35E9180AF
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/vcsTUrXux_opAei9tp_sPOFXbmo.roa
Signing time: Fri 05 Jul 2024 16:10:18 +0000
ROA not before: Fri 05 Jul 2024 16:10:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 05 Jul 2024 17:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:83:a9:24:35:4f:f8:12:a5:6d:b2:02:c3:5e:91:80:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 5 16:10:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bdcb1352b5eec7fa2901e8bdb69fec3ce1576e6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:00:ed:2f:bc:ad:cd:b2:73:d3:44:cc:40:00:
50:1f:2b:b4:f4:0f:8d:d3:08:4c:4e:85:f4:33:c1:
04:5d:30:39:c6:e6:a5:da:ca:9e:be:5d:c6:d5:4c:
b3:b3:a0:11:d6:51:a0:99:28:a3:ba:8b:5c:31:5d:
77:80:b5:81:14:1e:3a:78:ed:3e:de:6f:9e:43:86:
05:40:6b:71:c5:ae:0f:c9:97:fe:d8:7f:d6:4a:a6:
b9:0a:57:3b:81:d4:79:5b:7a:9c:62:a3:fa:89:b1:
ac:f9:58:6f:9d:e0:ca:24:42:d3:18:40:f2:35:64:
a7:db:1c:fd:02:61:31:ce:f6:57:f3:0a:76:15:73:
09:44:ae:39:9e:d1:b9:90:14:0b:53:60:88:a3:15:
43:ae:38:c1:82:64:52:b7:f6:95:0e:9b:5a:69:6e:
32:c3:f2:65:10:23:e9:d2:13:e8:50:5a:8c:34:d0:
16:ba:6a:87:bd:79:bb:e2:2b:93:6d:93:55:5d:86:
cb:28:ef:2f:52:f7:83:5a:f5:4d:2e:ef:e5:73:52:
23:7b:b0:cf:cd:34:4f:ab:6b:27:e5:59:72:86:09:
2e:17:8e:c0:78:f5:d2:34:7a:97:0c:99:b2:a0:3d:
41:96:6e:e5:06:72:c3:e6:23:73:c4:ac:8f:27:49:
02:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:CB:13:52:B5:EE:C7:FA:29:01:E8:BD:B6:9F:EC:3C:E1:57:6E:6A
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/vcsTUrXux_opAei9tp_sPOFXbmo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
91:35:55:6c:1a:90:ea:58:37:63:35:8a:81:a3:27:92:30:4d:
8f:fc:33:2f:73:96:62:66:46:0a:89:a5:8e:72:93:41:b8:f3:
de:d8:ad:09:3e:39:39:54:21:25:ae:76:95:4e:c0:37:17:38:
c0:1a:18:e8:08:a0:66:b6:2c:53:0d:8e:28:e8:f9:bf:02:6b:
26:f2:b8:37:de:6a:ae:63:8a:90:1f:66:f6:17:b1:c7:b0:d8:
89:a4:c2:96:a5:76:51:b5:b3:46:98:09:cc:ed:4c:f2:eb:3e:
f0:50:e1:44:80:bc:01:6f:3c:1b:f4:b9:94:3a:47:7a:37:4e:
78:f1:70:be:09:c6:ff:2f:04:ec:8e:d8:2d:a5:f4:93:36:e3:
05:f3:e9:80:c1:4f:17:2e:e0:85:e8:6a:c6:b3:74:c4:39:78:
69:67:ad:80:1c:19:55:39:68:68:9a:81:a8:e9:25:bb:df:62:
17:60:ab:22:4e:f8:55:e3:a5:83:a4:79:10:e1:52:4b:a4:b5:
ce:d4:cb:13:12:d1:8f:ae:2f:23:c3:46:a9:69:a9:40:d4:c5:
1f:f0:54:b4:e8:3e:e2:b3:e9:b8:19:49:98:50:dc:8e:62:71:
96:39:94:82:25:91:5b:ec:13:96:14:a3:2f:e7:5b:f0:2a:8e:
27:6f:7e:79
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZCDqSQ1T/gSpW2yAsNekYCvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNzA1MTYxMDE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZGNiMTM1MmI1ZWVjN2ZhMjkwMWU4YmRiNjlmZWMzY2UxNTc2ZTZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuQDtL7ytzbJz00TMQABQHyu09A+N
0whMToX0M8EEXTA5xual2sqevl3G1Uyzs6AR1lGgmSijuotcMV13gLWBFB46eO0+
3m+eQ4YFQGtxxa4PyZf+2H/WSqa5Clc7gdR5W3qcYqP6ibGs+VhvneDKJELTGEDy
NWSn2xz9AmExzvZX8wp2FXMJRK45ntG5kBQLU2CIoxVDrjjBgmRSt/aVDptaaW4y
w/JlECPp0hPoUFqMNNAWumqHvXm74iuTbZNVXYbLKO8vUveDWvVNLu/lc1Ije7DP
zTRPq2sn5VlyhgkuF47AePXSNHqXDJmyoD1Blm7lBnLD5iNzxKyPJ0kClwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFL3LE1K17sf6KQHovbaf7DzhV25qMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvdmNzVFVyWHV4X29wQWVpOXRwX3NQT0ZYYm1vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAJE1VWwakOpYN2M1ioGj
J5IwTY/8My9zlmJmRgqJpY5yk0G4897YrQk+OTlUISWudpVOwDcXOMAaGOgIoGa2
LFMNjijo+b8CaybyuDfeaq5jipAfZvYXscew2ImkwpaldlG1s0aYCcztTPLrPvBQ
4USAvAFvPBv0uZQ6R3o3TnjxcL4Jxv8vBOyO2C2l9JM24wXz6YDBTxcu4IXoasaz
dMQ5eGlnrYAcGVU5aGiagajpJbvfYhdgqyJO+FXjpYOkeRDhUkuktc7UyxMS0Y+u
LyPDRqlpqUDUxR/wVLToPuKz6bgZSZhQ3I5icZY5lIIlkVvsE5YUoy/nW/Aqjidv
fnk=
-----END CERTIFICATE-----
Generated at Fri Jul 5 18:41:39 2024 by rpki-client on console-fra.rpki-client.org