Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/2kE-WoBJEFV4X7SCc54QGZJht0g.roa
File: 2kE-WoBJEFV4X7SCc54QGZJht0g.roa (raw, json)
Hash identifier: bh1jgz8y/PSeArjjEh1Pjnr72eWraC2WxV40zwkb5B8=
Subject key identifier: DA:41:3E:5A:80:49:10:55:78:5F:B4:82:73:9E:10:19:92:61:B7:48
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190F1137E90D172BC2D381E19AFFAB2DCFC
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/2kE-WoBJEFV4X7SCc54QGZJht0g.roa
Signing time: Fri 26 Jul 2024 22:05:04 +0000
ROA not before: Fri 26 Jul 2024 22:05:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:f112:d0f1/128 maxlen: 128
Validation: Failed, certificate revoked on Fri 26 Jul 2024 22:09:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:f1:13:7e:90:d1:72:bc:2d:38:1e:19:af:fa:b2:dc:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 26 22:05:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=da413e5a80491055785fb482739e10199261b748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:53:a7:91:38:fe:82:8f:c9:5e:f9:66:ec:44:
17:11:b4:53:9c:4f:73:59:cb:6c:4c:0e:e9:64:f2:
11:99:a4:b1:ae:a8:04:c5:9c:32:a6:fe:dd:21:a1:
07:4a:88:48:e2:6f:83:71:7e:0f:fc:d6:b3:40:ba:
d1:27:49:5b:b6:90:50:2c:93:0d:17:0d:8c:8c:0e:
e2:3d:3e:38:af:af:af:e8:1d:e8:8a:75:e2:3e:25:
37:be:cf:03:fd:da:bd:2d:ab:d9:f5:62:ee:e1:72:
99:7d:bc:39:01:19:4e:9c:c9:7e:19:f4:14:a7:cb:
a4:93:f6:75:02:1b:48:53:41:04:78:ba:0e:e8:4d:
e1:34:4b:aa:18:e1:f0:f8:fc:24:59:f7:1a:83:ea:
c4:a6:e0:ac:a7:b1:c9:ee:1c:63:47:d2:f1:49:b0:
3d:ad:4d:fc:f8:f6:4e:05:f0:db:b5:3d:89:d2:3f:
db:24:bc:d0:68:43:c3:86:f5:7a:7d:c3:b8:ef:f9:
b3:5a:3a:41:61:b5:92:a3:2c:3f:97:1d:a7:ad:78:
23:8f:8e:6b:a4:eb:27:87:a0:a9:e0:be:5a:c8:18:
c7:e8:03:09:51:ea:f1:96:bc:fb:9a:83:b2:0b:b9:
3a:95:28:03:96:7d:59:88:0c:96:52:b2:89:cb:ab:
69:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:41:3E:5A:80:49:10:55:78:5F:B4:82:73:9E:10:19:92:61:B7:48
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/2kE-WoBJEFV4X7SCc54QGZJht0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:f112:d0f1/128
Signature Algorithm: sha256WithRSAEncryption
26:0b:82:ad:1c:c2:32:29:45:8c:02:b6:78:6d:ae:fe:81:98:
7d:80:84:b0:e7:3a:2e:9b:ee:3e:0a:03:a4:78:3e:1a:a8:4b:
6a:a0:5f:6d:a5:b8:dd:bd:8d:c7:92:9e:75:a4:7f:18:5b:af:
51:6b:3d:a8:04:32:82:71:92:cf:6d:b1:ae:58:c2:c2:98:c2:
ce:3f:1e:c4:dd:84:3a:dc:fd:2a:c3:c3:25:f7:04:03:d6:fe:
46:b3:12:4e:8c:c7:61:5c:e7:de:55:37:d4:c6:89:96:3e:39:
01:d8:1a:66:0d:fc:de:e2:bb:46:3b:5b:a6:91:ae:4b:51:72:
37:6d:90:cf:ca:04:01:4f:f5:02:e3:06:e7:a6:dd:03:af:cc:
79:60:a0:c6:5e:75:d6:2d:af:44:eb:52:57:f2:15:cd:85:12:
c3:ba:00:ed:71:25:4c:d6:cf:cf:b7:38:98:27:ea:32:c8:cf:
1d:9f:35:c5:a3:89:56:3d:bc:73:29:2c:4b:ec:bf:9e:4c:36:
ab:f0:a4:41:68:fe:2a:80:d1:a6:f7:0e:75:c6:a6:e3:35:b3:
cf:02:9f:e7:70:d4:fd:73:71:57:36:30:fc:a6:5d:6e:8d:8a:
6f:b5:f0:36:ce:66:68:5c:52:71:fe:89:d7:d1:07:0d:d6:1b:
b8:27:e0:64
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:46 2025 by rpki-client