Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/3bvldETq6iaxfb70TwI6tptTEc8.roa
File: 3bvldETq6iaxfb70TwI6tptTEc8.roa (raw, json)
Hash identifier: vRR0iLOzPNUCN70ywI+TJn2emQcYSsPa8Xk8naN74p8=
Subject key identifier: DD:BB:E5:74:44:EA:EA:26:B1:7D:BE:F4:4F:02:3A:B6:9B:53:11:CF
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019105E959F85ECF4E110F9EF2D7AEBB5741
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/3bvldETq6iaxfb70TwI6tptTEc8.roa
Signing time: Tue 30 Jul 2024 23:11:04 +0000
ROA not before: Tue 30 Jul 2024 23:11:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Wed 31 Jul 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:05:e9:59:f8:5e:cf:4e:11:0f:9e:f2:d7:ae:bb:57:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 30 23:11:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ddbbe57444eaea26b17dbef44f023ab69b5311cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:cf:de:16:43:89:b5:2d:ac:f3:8c:2a:4e:41:
68:c9:3f:5a:e8:b5:5d:d2:04:dc:a3:c2:73:4e:ee:
04:7a:79:86:f8:08:83:83:d2:49:84:f2:ce:4d:dd:
5a:26:be:ea:cd:cd:b6:a1:28:0c:80:65:9e:5a:d7:
6f:74:53:7e:91:40:d3:95:b6:d5:27:d0:11:66:18:
b4:ea:a9:4d:06:65:c3:6c:5a:74:1e:b4:85:3c:9d:
a0:75:dd:4a:29:26:f9:88:25:cf:4b:48:bb:d7:11:
24:33:f7:5e:6d:08:62:67:16:2a:18:00:b7:74:1d:
97:0a:30:bf:a9:4d:ed:64:ec:ae:eb:d3:85:e3:29:
b5:7b:8f:6f:90:46:9c:2b:3b:c7:66:60:2b:2f:f9:
9a:27:93:4c:f0:11:c4:fd:2f:8e:a1:e4:71:fd:6e:
a4:c1:33:cb:74:38:cf:e8:d7:c5:06:e0:be:ef:c7:
65:18:f1:f6:8d:77:68:42:cf:b3:0d:4e:5b:20:82:
cb:17:76:d3:ba:36:52:42:69:5c:6d:02:b8:ad:16:
e6:b3:1e:ac:0c:14:cb:7f:b1:84:76:7b:ef:73:f7:
c0:a7:be:89:1b:5e:ae:f3:b5:ba:39:bd:5d:da:6c:
4f:74:bc:94:78:86:97:29:56:25:38:ef:72:74:e1:
92:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:BB:E5:74:44:EA:EA:26:B1:7D:BE:F4:4F:02:3A:B6:9B:53:11:CF
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/3bvldETq6iaxfb70TwI6tptTEc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
92:e2:e7:65:b8:65:7f:01:88:26:66:16:1e:c0:63:d8:c3:37:
1a:4d:2f:d6:ca:45:dc:aa:c1:c5:4c:33:ae:d5:a8:45:26:ed:
c9:93:8f:ae:76:3a:87:f1:3c:9a:8b:30:a9:dc:c6:fd:08:b1:
e3:20:94:fd:4b:98:96:8c:13:c2:aa:81:05:04:98:16:80:a5:
a8:57:79:db:ef:0f:09:ba:a7:32:61:f0:b7:9f:89:0e:a5:da:
29:9f:2d:bc:29:05:ae:7a:2c:af:22:80:79:5a:aa:67:e0:0c:
f2:33:6a:d4:49:55:17:83:11:20:8c:7c:ac:65:9a:ef:2d:60:
9c:23:dc:69:9c:58:ef:98:cc:bb:11:1f:7a:40:12:cc:d5:d6:
b1:bd:c7:51:29:89:83:c9:50:cd:19:e6:24:8f:a6:1e:45:7e:
e5:7d:34:98:69:66:0f:e3:e0:34:bc:9a:91:d5:c4:1a:db:4b:
5d:f6:49:65:6a:99:6e:cb:91:75:7e:9c:18:64:99:95:29:1f:
69:2a:09:93:20:42:82:bc:cc:2b:b6:22:9a:a7:19:b0:2f:d2:
80:96:90:bb:d7:65:b5:e3:35:a8:c1:8e:7b:53:a7:8f:d7:6f:
d3:59:5c:76:5c:8b:72:9d:66:53:8c:a7:9b:a9:60:10:c2:05:
5a:3c:4b:0a
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgISAZEF6Vn4Xs9OEQ+e8teuu1dBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNzMwMjMxMTA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZGJiZTU3NDQ0ZWFlYTI2YjE3ZGJlZjQ0ZjAyM2FiNjliNTMxMWNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxM/eFkOJtS2s84wqTkFoyT9a6LVd
0gTco8JzTu4EenmG+AiDg9JJhPLOTd1aJr7qzc22oSgMgGWeWtdvdFN+kUDTlbbV
J9ARZhi06qlNBmXDbFp0HrSFPJ2gdd1KKSb5iCXPS0i71xEkM/debQhiZxYqGAC3
dB2XCjC/qU3tZOyu69OF4ym1e49vkEacKzvHZmArL/maJ5NM8BHE/S+OoeRx/W6k
wTPLdDjP6NfFBuC+78dlGPH2jXdoQs+zDU5bIILLF3bTujZSQmlcbQK4rRbmsx6s
DBTLf7GEdnvvc/fAp76JG16u87W6Ob1d2mxPdLyUeIaXKVYlOO9ydOGSIwIDAQAB
o4ICFjCCAhIwHQYDVR0OBBYEFN275XRE6uomsX2+9E8COrabUxHPMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvM2J2bGRFVHE2aWF4ZmI3MFR3STZ0cHRURWM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAAjATAxEAIAEGfABk
//8AAAGQ/fLzAjANBgkqhkiG9w0BAQsFAAOCAQEAkuLnZbhlfwGIJmYWHsBj2MM3
Gk0v1spF3KrBxUwzrtWoRSbtyZOPrnY6h/E8moswqdzG/Qix4yCU/UuYlowTwqqB
BQSYFoClqFd52+8PCbqnMmHwt5+JDqXaKZ8tvCkFrnosryKAeVqqZ+AM8jNq1ElV
F4MRIIx8rGWa7y1gnCPcaZxY75jMuxEfekASzNXWsb3HUSmJg8lQzRnmJI+mHkV+
5X00mGlmD+PgNLyakdXEGttLXfZJZWqZbsuRdX6cGGSZlSkfaSoJkyBCgrzMK7Yi
mqcZsC/SgJaQu9dlteM1qMGOe1Onj9dv01lcdlyLcp1mU4ynm6lgEMIFWjxLCg==
-----END CERTIFICATE-----
Generated at Wed Jul 31 03:15:27 2024 by rpki-client on console-fra.rpki-client.org