Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/2Vy7YjWMI1mPAmVNjXTEUqj2aIc.roa
File: 2Vy7YjWMI1mPAmVNjXTEUqj2aIc.roa (raw, json)
Hash identifier: IhaxH+4KCidrvpsBg3dlvta2hhvTcaEUjPQu1vEw7Bw=
Subject key identifier: D9:5C:BB:62:35:8C:23:59:8F:02:65:4D:8D:74:C4:52:A8:F6:68:87
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191D37B353BFA0A3FB9B4154F8527D4257D
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/2Vy7YjWMI1mPAmVNjXTEUqj2aIc.roa
Signing time: Sun 08 Sep 2024 21:12:32 +0000
ROA not before: Sun 08 Sep 2024 21:12:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Sun 08 Sep 2024 22:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d3:7b:35:3b:fa:0a:3f:b9:b4:15:4f:85:27:d4:25:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Sep 8 21:12:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d95cbb62358c23598f02654d8d74c452a8f66887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:1a:a1:89:89:11:bf:94:02:5e:22:d0:d5:34:
e9:76:a6:78:ab:88:b2:3c:38:b9:bd:6e:a5:6b:31:
c8:b1:fe:c4:9a:da:24:ee:ac:1c:9f:66:83:a6:91:
da:51:c4:cf:9a:df:92:e6:9b:a7:ed:14:e8:89:73:
2b:1b:f3:60:bb:51:85:83:32:1b:a7:ab:6b:36:4a:
70:ed:f4:87:96:fa:c6:91:f3:8f:f3:24:26:1b:3b:
a8:3c:eb:15:56:ea:a8:45:28:6e:69:4c:3a:d8:fb:
2f:fb:11:32:d4:40:cb:bc:b5:ee:73:6d:2a:cd:45:
6f:c3:54:75:8a:b5:67:17:29:8f:da:e0:d1:d9:e4:
07:f1:2b:bd:f4:bc:ff:ef:36:d2:18:1a:82:20:c4:
bb:d2:a5:01:46:5e:0e:ea:30:ac:54:e3:8f:e8:a8:
6a:0e:c7:04:fe:8d:db:30:44:96:c0:d4:44:45:09:
74:91:cb:08:da:f6:f1:5f:6e:cb:8a:0d:ec:e4:19:
6e:9d:11:04:ff:d5:9c:8a:e1:fc:33:65:9c:8b:da:
59:0e:f1:79:dd:46:5d:4f:67:d8:77:4d:30:56:d6:
2d:88:72:fb:3b:ff:e7:5f:2b:3f:fb:e1:99:31:6e:
34:4b:5a:ba:00:57:2c:11:73:f1:e4:22:3a:43:e4:
f9:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:5C:BB:62:35:8C:23:59:8F:02:65:4D:8D:74:C4:52:A8:F6:68:87
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/2Vy7YjWMI1mPAmVNjXTEUqj2aIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
57:b3:bc:7f:4c:a3:80:be:b3:65:b3:2b:b0:2a:fa:82:20:27:
bd:82:25:2d:cc:b4:ac:26:c6:5e:6c:fd:2b:96:42:c3:5a:98:
df:d0:c8:2d:41:cc:be:1e:70:7d:ba:d5:09:17:4b:c3:ef:65:
c2:3c:ce:6a:1c:1f:db:a8:03:f7:89:e2:1a:3a:8d:1e:78:a4:
9d:7d:64:bd:07:80:61:98:23:36:87:74:61:d3:8b:e4:cd:f9:
7b:da:ba:5d:df:06:da:67:7c:33:44:a2:0e:75:f1:71:a7:4f:
61:72:c3:6b:22:88:fa:f0:c5:6c:62:20:33:96:d8:5e:d4:f1:
7b:62:45:35:f0:fe:8c:1d:61:29:de:3b:cf:b2:12:1b:85:48:
eb:17:31:62:70:36:e3:de:62:44:53:2c:47:60:0c:91:7d:cc:
f3:b6:6e:3e:94:cd:b2:bf:5b:a9:ed:e7:9b:7a:fe:fb:aa:37:
02:6f:a9:27:9d:d4:5f:bf:14:18:f0:6a:db:59:ac:20:7e:e7:
48:9c:9b:ab:1f:f3:ad:65:c8:60:c9:38:1f:0e:0a:3e:6c:33:
2f:de:c9:a3:eb:03:e5:a4:81:a1:dc:15:25:1c:b3:ab:39:a4:
c8:4e:52:7a:47:56:b2:65:37:97:74:c6:08:56:64:5b:fc:e7:
2c:c2:eb:29
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:42:07 2025 by rpki-client