Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/3gmTWz9nSILoby_syOG5zZg_OrU.roa
File: 3gmTWz9nSILoby_syOG5zZg_OrU.roa (raw, json)
Hash identifier: 7t44mGVTTeAZla23uOBt2DQxFzNmN4QCmgts3urSXLg=
Subject key identifier: DE:09:93:5B:3F:67:48:82:E8:6F:2F:EC:C8:E1:B9:CD:98:3F:3A:B5
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019167C385A31980111448DC611A1E65491C
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/3gmTWz9nSILoby_syOG5zZg_OrU.roa
Signing time: Sun 18 Aug 2024 23:12:32 +0000
ROA not before: Sun 18 Aug 2024 23:12:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Mon 19 Aug 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:67:c3:85:a3:19:80:11:14:48:dc:61:1a:1e:65:49:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 18 23:12:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=de09935b3f674882e86f2fecc8e1b9cd983f3ab5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:be:06:05:5d:e7:1c:a3:ad:18:dd:85:ed:5b:
0f:df:29:eb:d7:57:6f:70:08:e6:99:1f:72:f0:da:
80:e4:6f:fd:0e:65:f8:ad:ad:ba:ec:56:6d:c3:bf:
b6:16:29:f6:9b:3c:ee:7b:2a:c2:07:2f:c6:cb:4b:
97:68:bf:2a:ad:40:5c:c0:69:58:c1:de:af:4e:65:
42:80:56:03:ae:8e:de:c8:43:a4:9b:39:bf:c3:99:
e9:8f:ad:dc:82:3f:59:6e:a0:1b:46:6f:6b:68:42:
09:35:1f:0a:57:42:91:e9:cc:3f:0b:c7:9b:4c:65:
63:e1:79:32:6c:c6:81:af:cd:1b:de:d4:01:ab:3d:
8b:6e:d1:fa:4b:5e:ac:49:d8:4b:3b:03:a2:1d:2b:
22:72:75:f5:1c:c7:3d:f2:3d:6f:32:16:e0:a6:6e:
5f:42:7f:35:b6:f6:a3:00:f8:3a:88:9e:4a:7c:02:
30:99:e8:c8:0a:56:3b:5a:da:af:24:49:cb:fe:84:
d6:4c:e7:1a:87:c5:d2:a4:51:c9:4e:56:fe:8b:74:
d7:04:4d:9a:72:2f:cc:81:98:9b:36:cc:60:61:77:
01:bf:e1:48:b0:c6:c1:3c:c6:55:e8:69:92:51:a3:
86:d6:0f:7c:b2:5c:cc:cd:62:2f:19:b8:55:64:cd:
86:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:09:93:5B:3F:67:48:82:E8:6F:2F:EC:C8:E1:B9:CD:98:3F:3A:B5
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/3gmTWz9nSILoby_syOG5zZg_OrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
12:2a:ad:8f:c2:90:1e:ad:fa:b9:a8:c5:75:95:64:43:75:ba:
1b:16:f1:ae:fa:74:dc:f0:a8:00:b0:a3:ed:90:6b:7d:73:b1:
13:19:64:7b:4f:63:62:c9:1a:88:63:f4:ae:5c:32:39:a8:7e:
82:ed:bf:f6:92:ad:7f:d7:e9:ff:68:59:51:78:47:29:15:aa:
d9:c7:70:09:f0:dd:a6:1d:83:dc:eb:b4:69:ad:86:37:93:13:
a4:d9:17:6f:d6:cd:f3:49:02:61:ea:9a:ef:38:56:d0:22:fb:
95:3d:3b:47:e6:e3:5b:c4:97:66:9b:ad:d8:7a:01:d5:e7:4e:
91:61:8f:39:79:70:09:68:b7:d5:5f:53:9f:ae:92:bf:8f:e1:
f5:1c:51:08:75:21:e6:0f:7c:58:fc:ca:2a:85:10:6e:5a:00:
e9:0f:7d:c0:60:eb:8f:70:17:87:63:82:99:1a:4a:d0:b4:74:
d8:2b:53:9e:45:67:89:8f:47:b0:8b:cf:20:2c:d6:1d:e3:e6:
8d:cb:00:3e:5c:f3:fd:c0:10:20:4b:e2:0f:c8:6c:98:6d:18:
1c:e8:5f:80:8c:5c:28:b8:a8:e9:ca:b0:51:ae:b1:0b:90:7c:
69:75:38:9c:bf:8d:36:ba:3f:a6:7b:53:84:d8:bf:e5:04:14:
b8:e7:5e:54
-----BEGIN CERTIFICATE-----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==
Generated at Mon Aug 19 05:25:49 2024 by rpki-client on console-fra.rpki-client.org