Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/31xU_c4SuexodDrz_a16Q-XiVPg.roa
File: 31xU_c4SuexodDrz_a16Q-XiVPg.roa (raw, json)
Hash identifier: lA4u/e7WVQh5c9OulJqKVVAH3ctSPjg+GNrgLX+g0u0=
Subject key identifier: DF:5C:54:FD:CE:12:B9:EC:68:74:3A:F3:FD:AD:7A:43:E5:E2:54:F8
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191C2B71011FC9DEBD6A3B7C257B13D2652
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/31xU_c4SuexodDrz_a16Q-XiVPg.roa
Signing time: Thu 05 Sep 2024 15:04:22 +0000
ROA not before: Thu 05 Sep 2024 15:04:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
2001:67c:64:ffff:0:191:c2b6:e0f2/128 maxlen: 128
Validation: Failed, certificate revoked on Thu 05 Sep 2024 15:12:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c2:b7:10:11:fc:9d:eb:d6:a3:b7:c2:57:b1:3d:26:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Sep 5 15:04:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=df5c54fdce12b9ec68743af3fdad7a43e5e254f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:74:e9:e8:8e:6b:7e:3e:a3:30:8a:04:fd:b9:
4d:69:c7:7b:e3:c0:7d:81:e9:29:61:38:58:ca:85:
30:cb:d3:6f:90:d6:2f:4f:bf:ba:14:02:52:01:19:
85:85:fb:18:ec:4d:36:23:d6:05:d5:ce:ae:9e:a7:
b5:75:7a:06:dc:4e:bf:64:59:a6:7f:18:15:95:ed:
0d:0b:5c:3d:56:f4:7c:2d:46:7d:09:1c:df:f6:73:
a5:33:64:b4:59:ed:e5:c8:ba:06:af:36:8b:0b:b4:
14:16:a4:cb:01:1b:e1:d3:8f:55:fe:e9:9e:3b:e3:
cd:6d:2d:e1:6b:fa:39:35:11:03:09:46:3a:1f:0d:
61:88:27:67:6f:0d:67:f5:7d:fe:71:a3:00:f4:98:
d8:ec:6d:6e:e1:c8:73:be:c1:e4:0c:33:60:06:84:
6b:e4:1f:f9:fe:4e:74:6b:32:ea:a0:e6:b5:1e:69:
09:81:e9:e7:c2:66:6c:01:fa:a2:2b:43:89:72:f9:
d1:ee:cd:43:4a:1a:2b:46:03:56:7b:f3:ca:f6:e9:
f7:b0:2a:89:ab:49:a4:eb:e5:83:84:b9:37:05:d1:
91:c2:c4:8a:e9:cf:d0:a5:24:9b:32:a0:eb:a7:ef:
47:ee:c7:2e:0c:a8:de:f7:5c:18:40:7f:69:22:24:
ab:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:5C:54:FD:CE:12:B9:EC:68:74:3A:F3:FD:AD:7A:43:E5:E2:54:F8
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/31xU_c4SuexodDrz_a16Q-XiVPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
2001:67c:64:ffff:0:191:c2b6:e0f2/128
Signature Algorithm: sha256WithRSAEncryption
6f:fc:0d:2a:32:da:06:99:ba:49:a5:35:aa:7c:bc:8d:d8:58:
55:fa:1d:1b:6a:83:e5:68:ed:97:cf:f5:41:8b:68:0a:34:55:
18:ed:95:6c:a4:0f:56:22:a3:a6:99:f6:24:bb:b3:38:73:e9:
47:ce:b0:70:4a:31:b2:be:b1:9f:7c:7f:e1:70:82:75:a3:58:
ab:8c:60:5b:04:1d:16:bd:04:ed:1b:94:12:b7:3b:bb:1d:12:
6c:c3:58:27:7e:32:1a:5d:3c:30:80:e9:12:00:6e:e3:c9:92:
73:91:7b:6a:70:60:f6:83:d6:27:48:41:7e:cb:75:e1:aa:6e:
95:be:07:5e:0a:f7:85:d3:07:a7:cd:e1:e7:3a:e2:0b:37:65:
e1:d7:7e:0e:46:44:0b:a5:1d:f8:5a:a8:e4:72:5f:45:91:91:
12:10:6c:5e:4f:9b:02:07:05:77:e7:10:18:f4:b7:80:0a:fa:
ac:10:8e:11:a7:ea:44:5b:2e:51:88:18:3e:9e:cd:ca:d7:08:
08:cc:14:0c:87:4c:03:1f:69:af:09:ae:ea:9c:6c:c2:05:ae:
12:f0:a4:d4:f1:49:02:90:76:98:15:80:81:43:35:8b:8a:57:
f2:6b:17:a9:18:f6:b1:51:32:2f:3d:d5:57:0d:22:3b:f3:7c:
dc:0a:f8:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:30 2025 by rpki-client