Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/1KeOhegBsU72sd3d8RzZpfRj8DQ.roa
File: 1KeOhegBsU72sd3d8RzZpfRj8DQ.roa (raw, json)
Hash identifier: q6AXOzXg1iEJY7xtsnCuNqZEx8y4FIPnKV5aIZzuMqQ=
Subject key identifier: D4:A7:8E:85:E8:01:B1:4E:F6:B1:DD:DD:F1:1C:D9:A5:F4:63:F0:34
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191155C6DD792EBC1906A344F90F02E881A
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/1KeOhegBsU72sd3d8RzZpfRj8DQ.roa
Signing time: Fri 02 Aug 2024 23:11:04 +0000
ROA not before: Fri 02 Aug 2024 23:11:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Sat 03 Aug 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:15:5c:6d:d7:92:eb:c1:90:6a:34:4f:90:f0:2e:88:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 2 23:11:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d4a78e85e801b14ef6b1ddddf11cd9a5f463f034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e8:83:c1:04:c4:c8:7d:1d:8f:20:84:d5:ad:
43:ba:15:93:61:f1:0a:fd:aa:d3:70:6e:c9:1c:23:
e1:59:9e:c3:27:a4:b4:06:aa:e6:e5:7e:7d:9f:e9:
cd:d5:be:e0:8f:8f:ef:e6:af:78:71:b6:51:6b:2a:
73:85:cc:fa:fc:79:d7:c5:c5:51:c3:89:ec:3a:32:
1d:ed:86:19:ba:0b:89:52:c5:2c:28:c2:6c:16:0d:
bc:a2:39:a4:a0:db:d8:f4:8d:78:92:04:bb:6f:74:
18:c4:cf:81:71:b9:80:2a:13:ca:9f:2c:7f:5f:c2:
e7:e6:4f:a0:17:31:32:b7:2c:b6:d2:e2:28:92:c1:
3d:18:b8:2c:f5:82:ce:52:f5:00:05:bc:2a:c4:fb:
7e:95:5b:5a:f1:ce:b9:4c:20:4a:bc:98:35:71:b9:
de:35:0b:d6:90:68:1f:78:b5:fd:87:c5:74:fd:85:
0e:a7:b3:ac:69:56:ce:ee:6a:31:33:cf:45:a3:fa:
f0:ea:fd:0f:6a:9a:76:56:ac:90:f2:07:e4:e4:a2:
85:2f:ab:e1:98:b7:a7:a9:1c:f2:b1:0d:1d:58:f3:
60:17:2c:fd:93:55:55:05:7f:a3:f7:f4:13:77:34:
49:ab:aa:d5:67:ad:cd:fc:ce:78:f9:b0:1f:c1:bc:
66:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:A7:8E:85:E8:01:B1:4E:F6:B1:DD:DD:F1:1C:D9:A5:F4:63:F0:34
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/1KeOhegBsU72sd3d8RzZpfRj8DQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
1f:83:5d:a0:9a:7d:24:85:31:58:1d:56:38:66:cd:f3:79:aa:
bc:36:5a:32:90:ae:25:24:55:ae:39:6a:ba:14:50:f5:26:dd:
93:02:ad:d7:90:63:56:a2:63:c9:82:33:6c:fe:ca:78:a8:3d:
da:7e:d0:e2:0b:af:1e:0a:04:86:9d:19:f1:09:30:56:94:39:
a4:b1:7d:2b:b3:e5:fc:80:a9:ea:d7:0b:3e:33:99:fa:11:20:
18:75:c8:07:99:89:8b:12:0c:ee:b8:62:70:ee:2b:f8:7a:bf:
4f:e3:47:fc:d2:1f:c9:75:3b:0e:12:ea:ce:6f:7b:ff:a5:85:
ba:bc:d3:73:47:89:fd:3c:ea:8d:4e:d8:d5:66:fd:c1:72:36:
ba:cb:aa:8d:b3:e4:5d:0d:c3:81:82:b7:b0:89:18:fa:0c:43:
e0:92:24:53:f5:8c:1f:4c:8e:da:88:e4:7d:e8:e6:6a:97:f5:
0c:9f:6b:b4:b6:91:6d:79:3a:19:a3:bb:89:a4:46:2f:24:8a:
c5:a3:88:ca:9f:97:31:39:2a:ce:bf:ff:dd:4d:cd:7a:2b:c7:
7c:83:e9:c9:b0:d3:d7:ff:2d:ce:0b:25:69:eb:cf:2c:48:34:
48:b7:cb:e9:4f:18:69:b3:e0:d4:a9:35:bc:4f:08:dd:77:76:
71:19:f4:77
-----BEGIN CERTIFICATE-----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==
Generated at Sat Aug 3 03:22:51 2024 by rpki-client on console-fra.rpki-client.org