Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/2XowwWfoa48gcStIngo0Wa6wnmw.roa
File: 2XowwWfoa48gcStIngo0Wa6wnmw.roa (raw, json)
Hash identifier: hn7zeYxqOFK1xLE6H9sBR7GhNxAOtpP+x/JX/or11Ws=
Subject key identifier: D9:7A:30:C1:67:E8:6B:8F:20:71:2B:48:9E:0A:34:59:AE:B0:9E:6C
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01911D8694EE7179364A203C4A3A697EC2C1
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/2XowwWfoa48gcStIngo0Wa6wnmw.roa
Signing time: Sun 04 Aug 2024 13:14:04 +0000
ROA not before: Sun 04 Aug 2024 13:14:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Sun 04 Aug 2024 14:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:1d:86:94:ee:71:79:36:4a:20:3c:4a:3a:69:7e:c2:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 4 13:14:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d97a30c167e86b8f20712b489e0a3459aeb09e6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:00:97:3e:79:bf:ec:63:19:27:7f:0a:91:c8:
27:01:1d:bc:22:7f:bd:46:d3:e2:77:c9:0e:9d:ee:
39:55:fb:bb:1e:75:6e:90:a4:76:6d:f7:da:29:e5:
e1:43:fa:8a:8f:70:be:ac:2d:3d:54:7d:91:08:f4:
8d:21:f4:26:f7:5c:28:85:1b:63:24:3a:5a:81:7c:
0f:3f:74:08:26:47:8c:7c:7c:7e:9a:98:ca:4e:f0:
52:9f:1f:8c:1b:af:f6:6a:96:af:23:a7:fb:46:33:
25:62:f3:1f:8f:18:2c:fa:e9:6e:07:a0:d3:b8:29:
02:80:fb:39:86:d8:f4:22:5f:88:5b:a0:23:b3:d0:
da:9d:6c:9b:e2:b9:21:d1:d7:6b:ad:fa:68:c0:cb:
9e:09:e1:b5:5a:ed:38:2a:c7:d6:46:76:ae:e1:4b:
5f:8d:d0:65:c9:5b:a4:7d:ef:8f:8e:9e:ec:8b:93:
8f:b8:92:27:d3:95:58:11:25:fc:41:47:9a:e7:7f:
53:0f:65:29:e6:9d:4b:d6:3f:b7:95:ab:54:58:b3:
53:dc:6f:fa:36:57:48:0c:95:f7:c8:b9:27:c6:25:
ab:e5:90:7f:67:17:f8:34:e4:0b:2d:0e:28:fb:a2:
f2:4a:e0:23:12:b5:3d:26:a4:61:ca:79:3e:26:b5:
07:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:7A:30:C1:67:E8:6B:8F:20:71:2B:48:9E:0A:34:59:AE:B0:9E:6C
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/2XowwWfoa48gcStIngo0Wa6wnmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
5c:1c:76:d9:b3:76:a7:dc:85:ff:2a:de:f1:61:44:14:4c:99:
8a:5d:a8:7b:45:9f:98:cf:00:66:40:42:ee:cc:54:d7:07:88:
24:9a:be:a8:dd:87:bf:3c:57:be:a3:af:31:bb:3e:c1:5f:fb:
1a:ec:26:38:82:79:d5:7d:cd:1f:94:87:a8:e1:6d:06:fc:83:
a5:78:31:00:77:1b:80:2a:2a:fe:71:e7:13:d8:dd:00:8d:f2:
58:20:8b:6e:c9:96:be:68:f5:24:81:e9:33:94:56:8f:86:55:
4f:8b:ad:2c:1d:df:8c:9e:6a:63:5b:10:73:9a:1b:39:da:2c:
5a:59:44:87:89:f7:c7:86:8c:38:1d:22:0c:04:c3:dc:91:ba:
86:b4:84:2b:2e:07:62:87:0e:34:45:ad:de:5f:bb:2a:16:51:
17:26:87:76:cf:ad:5f:fb:56:0d:c2:2c:3b:2c:29:9b:43:2f:
9a:70:42:5c:00:cc:03:bc:aa:4a:1a:f7:6f:ce:d7:52:11:dc:
e8:e6:0c:a9:cc:42:2a:10:f9:4e:9e:80:b0:83:2c:80:ac:4c:
a5:6c:47:02:46:f4:ad:17:f9:e6:24:32:f9:57:00:aa:6c:98:
8b:96:fd:0e:ec:85:73:11:70:7b:dd:d7:1f:da:61:08:35:e0:
50:a8:99:42
-----BEGIN CERTIFICATE-----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==
Generated at Sun Aug 4 16:43:14 2024 by rpki-client on console-fra.rpki-client.org