Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/493UR8Fi3521oGe7F4yEVi5VmGw.roa
File: 493UR8Fi3521oGe7F4yEVi5VmGw.roa (raw, json)
Hash identifier: E60eKWBohfhCvlyejSoC7Z2ZElvCcztph35/hMnlP0Y=
Subject key identifier: E3:DD:D4:47:C1:62:DF:9D:B5:A0:67:BB:17:8C:84:56:2E:55:98:6C
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0192C3FEEDF0A12FF19820839E22A0991407
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/493UR8Fi3521oGe7F4yEVi5VmGw.roa
Signing time: Fri 25 Oct 2024 14:05:17 +0000
ROA not before: Fri 25 Oct 2024 14:05:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:192:c3fe:105f/128 maxlen: 128
Validation: Failed, certificate revoked on Fri 25 Oct 2024 14:13:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:c3:fe:ed:f0:a1:2f:f1:98:20:83:9e:22:a0:99:14:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Oct 25 14:05:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e3ddd447c162df9db5a067bb178c84562e55986c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:67:49:83:06:7a:36:ad:57:a1:5d:25:a5:f2:
78:25:c3:33:53:64:c6:64:ff:d8:5c:7c:4b:ca:01:
39:e0:e3:48:4d:fd:de:37:5e:4d:ae:73:29:ee:86:
29:e1:a6:4c:b2:5a:f5:20:fb:6d:86:4e:3a:e4:57:
c2:4d:53:2a:f4:85:19:a1:18:97:e2:4b:88:b2:eb:
5e:42:a3:ee:06:f0:fa:82:66:fa:42:db:65:a9:25:
cb:a5:39:aa:7f:ea:12:32:e9:b5:09:a1:6d:83:70:
cb:d4:fb:1d:87:1f:b2:43:ae:65:5b:da:2d:59:5d:
39:5e:3e:78:e2:20:10:35:0f:22:27:e4:dc:4e:03:
d8:84:a3:06:67:4a:21:ec:33:83:be:81:0c:c4:fd:
64:2e:90:26:bb:82:69:ac:a5:b4:44:1f:d0:2d:20:
45:2a:45:57:17:f6:46:58:39:fd:79:4b:9e:fc:18:
53:08:a8:ba:56:dd:ee:94:67:7b:6f:2f:91:2e:f8:
da:4a:55:fb:4e:c4:d2:66:a3:7a:59:a1:22:ed:f3:
9c:bb:e0:53:2e:57:c3:a8:55:08:4a:5d:e4:40:df:
32:96:21:d3:23:98:b6:9b:42:c4:c4:ee:6c:dc:b0:
d5:6d:56:6e:7b:77:05:01:0f:1b:19:4b:91:25:52:
65:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:DD:D4:47:C1:62:DF:9D:B5:A0:67:BB:17:8C:84:56:2E:55:98:6C
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/493UR8Fi3521oGe7F4yEVi5VmGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:192:c3fe:105f/128
Signature Algorithm: sha256WithRSAEncryption
36:41:19:38:31:b1:f0:ab:f0:a8:5d:7e:74:f3:82:b0:df:74:
ab:7f:eb:e4:a6:0a:a7:cb:0f:34:94:4b:b5:a6:08:2b:f8:84:
3e:e5:93:f1:c7:3a:80:95:5e:2b:2f:93:ca:d8:e9:d7:a6:a4:
9c:aa:bb:fd:f9:35:55:4f:63:93:2e:fe:d2:27:a8:f6:07:1c:
93:08:1f:2f:f5:49:f0:d3:a0:d4:f1:fe:74:6d:0d:42:af:48:
cb:bd:0d:29:c0:ae:f6:4d:0b:ce:54:2c:17:ec:10:c9:dc:e6:
c5:9f:29:df:e0:fc:32:17:b9:a7:cc:0f:a4:2f:50:57:85:6b:
3f:00:f5:d8:06:91:92:5f:21:41:fe:d5:e4:b8:c8:79:3f:fa:
22:03:9e:d9:a8:50:3b:5b:5e:32:d9:54:bf:0e:f9:53:f4:2b:
74:88:41:08:29:a3:07:da:84:d6:95:41:a5:a1:2c:ae:eb:c7:
95:b0:36:c3:e0:84:f4:83:e3:16:f9:9a:4b:22:87:31:bc:96:
88:1d:ae:a1:40:85:2f:85:e5:e8:dd:81:f3:1f:1e:95:10:ff:
f0:76:b4:e0:c3:71:0c:9a:75:3b:b7:c2:29:37:ab:85:81:31:
4b:74:d5:0f:e4:4e:5f:80:6b:81:05:ac:b4:0a:fc:8d:33:cb:
af:62:da:b4
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:36 2025 by rpki-client