Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/5--0tTNquQbGKIi7BUPYipEdXtU.roa
File: 5--0tTNquQbGKIi7BUPYipEdXtU.roa (raw, json)
Hash identifier: 1x0qtuKoIX17vb4Tay2OZ4B++A9FJlU3PNipynY62/A=
Subject key identifier: E7:EF:B4:B5:33:6A:B9:06:C6:28:88:BB:05:43:D8:8A:91:1D:5E:D5
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01917C8D554B9F6DE0805F98A1616C7419D7
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/5--0tTNquQbGKIi7BUPYipEdXtU.roa
Signing time: Fri 23 Aug 2024 00:05:22 +0000
ROA not before: Fri 23 Aug 2024 00:05:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
2001:67c:64:ffff:0:191:7c8c:9c2d/128 maxlen: 128
Validation: Failed, certificate revoked on Fri 23 Aug 2024 00:13:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:7c:8d:55:4b:9f:6d:e0:80:5f:98:a1:61:6c:74:19:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 23 00:05:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7efb4b5336ab906c62888bb0543d88a911d5ed5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d3:6b:9f:d9:91:f1:6a:12:32:22:3c:10:e6:
3c:c1:0c:00:a6:de:0f:21:3c:b7:37:a6:7f:2f:28:
46:b5:54:14:75:6e:c5:78:ac:14:15:13:9c:be:d2:
03:88:ff:86:f1:9d:7a:4b:7a:a8:4b:88:05:0d:b2:
72:80:f4:e1:fb:7b:36:bd:7e:a4:cd:7d:9e:ce:71:
bf:56:fa:52:83:a8:61:a2:db:d6:aa:fe:f9:dd:e6:
c1:9e:b8:01:12:23:89:dc:e5:8d:6e:bb:0b:cf:34:
c0:92:4a:1a:29:8d:f9:d2:ec:87:42:86:6b:30:66:
ab:10:4d:89:43:0d:a7:6b:b9:bf:b0:b4:1d:5b:11:
66:20:85:4c:cf:f3:c7:2c:ee:16:e8:7c:af:92:47:
b1:ed:8f:63:cc:48:0f:46:14:51:0c:a6:a6:d6:56:
1c:fc:26:27:09:2e:4f:7c:b3:6a:10:a1:ae:0c:f9:
db:2b:d2:63:99:4d:6b:14:66:dd:24:be:39:20:ae:
ae:53:05:ae:73:8d:e2:fc:1f:5b:8a:11:dc:4b:f9:
f2:b7:89:c7:f9:d5:65:4e:1e:26:a5:e3:b3:9a:d4:
b3:4c:82:97:12:be:03:90:0a:24:92:b2:36:e6:28:
cf:35:09:8d:b0:62:86:21:ed:61:64:e2:b8:d7:ca:
2a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:EF:B4:B5:33:6A:B9:06:C6:28:88:BB:05:43:D8:8A:91:1D:5E:D5
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/5--0tTNquQbGKIi7BUPYipEdXtU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
2001:67c:64:ffff:0:191:7c8c:9c2d/128
Signature Algorithm: sha256WithRSAEncryption
6d:df:ed:bb:48:99:ad:1a:7a:23:55:cd:0c:f5:98:ca:9f:11:
ab:bd:15:26:ba:e2:bc:33:13:0a:5d:eb:3f:4c:ae:8e:86:e2:
61:90:6c:47:96:06:ee:14:9c:de:38:d1:e0:9c:05:5b:e1:dc:
bd:6d:56:e1:ec:90:fc:ea:8c:a3:cf:9a:17:2e:18:86:4d:53:
69:67:98:c8:07:44:7b:e6:ae:77:c3:72:bf:d0:4b:3e:cb:10:
4b:bf:25:73:e5:9b:28:4f:e5:fc:42:ef:04:f9:eb:1d:1a:3a:
bf:83:03:8d:bd:8f:69:8d:7e:c0:ae:01:6d:7b:df:a6:98:4b:
07:e9:41:af:01:b7:d0:c8:0b:82:c0:17:66:85:09:c1:37:7c:
84:89:f7:3e:c8:77:d4:15:f0:1b:e3:34:73:7c:a3:2b:9e:ca:
37:36:ba:8a:da:ca:b1:62:09:a9:9e:e8:df:11:89:ea:f7:4c:
43:cf:3e:c3:63:e9:ef:ff:6d:eb:e0:a7:70:85:26:74:cb:1a:
c0:fd:ec:a9:b5:8a:b5:c0:bd:80:a1:a2:a5:0a:9a:34:c5:ff:
e6:69:a1:b4:63:1f:ea:2b:1c:51:93:77:08:06:9c:f2:90:ec:
ec:e1:9a:81:6d:7f:f1:6d:54:81:8e:e4:96:e2:55:63:a1:f5:
d3:d2:f3:c1
-----BEGIN CERTIFICATE-----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Generated at Fri Aug 23 05:56:28 2024 by rpki-client on console-fra.rpki-client.org