Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/1rnYSRTKNua-XEZkbD_Ase_v8JE.roa
File: 1rnYSRTKNua-XEZkbD_Ase_v8JE.roa (raw, json)
Hash identifier: uVA5yjPdxK5GaCK+D/Rb09SK6d4/HU9SD+Y6nERzBoE=
Subject key identifier: D6:B9:D8:49:14:CA:36:E6:BE:5C:46:64:6C:3F:C0:B1:EF:EF:F0:91
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191130119A544AC95BEF118A07841571B9B
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/1rnYSRTKNua-XEZkbD_Ase_v8JE.roa
Signing time: Fri 02 Aug 2024 12:12:04 +0000
ROA not before: Fri 02 Aug 2024 12:12:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Fri 02 Aug 2024 13:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:13:01:19:a5:44:ac:95:be:f1:18:a0:78:41:57:1b:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 2 12:12:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d6b9d84914ca36e6be5c46646c3fc0b1efeff091
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:60:0f:80:0f:24:15:97:a4:35:4a:64:aa:3c:
f9:8c:9f:94:ff:a0:ed:d4:0e:24:ae:d4:af:57:d7:
56:3f:86:13:dc:20:b5:2a:f0:05:8b:3b:82:a9:80:
62:a7:ea:fb:91:76:24:00:03:8e:69:25:d0:c1:c4:
03:d0:41:7a:e7:58:3a:59:6a:6c:83:1c:5e:aa:cf:
99:dd:a0:f0:02:5a:73:bb:ab:2a:a5:a9:96:e1:41:
f0:a4:fa:54:9b:33:31:d2:f3:4f:d4:c1:96:c4:4d:
3b:c5:62:3e:fb:a7:f8:87:35:4a:89:8c:65:45:bb:
3d:2d:b0:cd:31:fc:59:3f:48:e7:75:7c:0b:41:8c:
25:cb:35:59:f8:6c:fb:7e:f9:88:39:6e:77:fc:16:
c9:f7:04:3e:ea:09:08:09:a9:16:6a:79:24:11:27:
66:29:bb:8e:f0:2b:74:6a:b3:4c:4a:07:a9:a8:c2:
8f:47:13:fd:eb:d4:48:ef:5a:5d:22:c0:cc:f4:91:
9a:14:b0:45:5f:44:95:49:d0:a4:e2:fb:f9:f8:80:
a6:12:73:e8:56:f9:67:aa:16:7a:12:fe:2e:c4:f2:
f2:7f:67:92:6e:f9:58:aa:d9:a5:0b:39:09:62:ac:
97:74:04:9a:04:90:d1:d2:62:c4:3a:42:48:42:d0:
13:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:B9:D8:49:14:CA:36:E6:BE:5C:46:64:6C:3F:C0:B1:EF:EF:F0:91
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/1rnYSRTKNua-XEZkbD_Ase_v8JE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
95:cc:b5:0a:6a:13:9c:5d:42:8e:b4:4b:52:72:df:13:80:16:
0f:4b:0f:2c:cf:af:9f:c8:ea:9e:bd:e8:99:dd:b6:d4:12:18:
6b:68:bc:00:b7:05:f8:13:37:fc:d9:b3:16:c0:0a:66:1b:9a:
7f:c1:84:e6:8c:48:a0:b9:93:d1:c4:9b:29:c0:d1:b7:4c:f3:
27:bf:d2:dc:ce:3a:ec:2b:e1:d9:04:95:2c:29:a5:52:48:50:
35:28:a0:57:e1:85:01:d0:f1:bc:4a:ed:d3:15:c9:81:e3:d0:
f4:26:d3:83:d2:7d:3a:87:73:3b:5d:7f:cc:1e:bc:05:bf:87:
88:b9:99:7d:43:a3:e9:86:66:6c:62:66:d9:df:c4:b9:1f:fd:
6d:74:02:df:1a:3f:20:85:b3:75:11:4a:83:bc:75:56:01:32:
87:db:af:e3:43:2b:e8:ca:28:13:fd:78:36:10:b5:0f:81:65:
b0:56:c0:44:fd:a3:e1:b6:be:99:00:2f:1d:9d:d3:b2:41:e2:
48:12:64:a5:91:b4:ad:12:0f:11:1d:90:58:da:71:44:e2:fa:
ee:d4:b5:af:43:23:ef:ac:ed:ca:2e:6a:85:c5:e3:7d:e6:9f:
49:c6:73:27:4c:78:fc:d6:c2:ad:f3:12:6b:26:bf:4f:b9:29:
87:af:1f:c4
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Aug 2 16:11:33 2024 by rpki-client on console-fra.rpki-client.org