Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/5zrBbW_np9LUinZzOr5zn7WtGrU.roa
File: 5zrBbW_np9LUinZzOr5zn7WtGrU.roa (raw, json)
Hash identifier: 3g95FsPElyFxccy5Sh4i+WuJ+aHsNuKdMBBFILlU3n4=
Subject key identifier: E7:3A:C1:6D:6F:E7:A7:D2:D4:8A:76:73:3A:BE:73:9F:B5:AD:1A:B5
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019109C5359BC2D968074E844261F97D671A
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/5zrBbW_np9LUinZzOr5zn7WtGrU.roa
Signing time: Wed 31 Jul 2024 17:10:04 +0000
ROA not before: Wed 31 Jul 2024 17:10:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Wed 31 Jul 2024 18:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:09:c5:35:9b:c2:d9:68:07:4e:84:42:61:f9:7d:67:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 31 17:10:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e73ac16d6fe7a7d2d48a76733abe739fb5ad1ab5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:96:a4:ab:88:b9:b7:fa:3b:9f:9c:a2:b5:96:
25:9a:8a:f0:7c:b0:6c:45:9a:72:7d:6a:c2:1c:5d:
36:71:6b:28:a6:80:c6:0f:bc:c6:54:c9:ce:9d:0d:
19:b6:6d:91:db:3a:9c:06:f9:60:e2:43:08:cd:83:
c1:b4:ec:46:87:b8:cc:05:d8:82:23:85:d1:f1:ac:
6f:b4:1b:9b:ef:87:1b:04:61:e9:2f:a8:06:9c:af:
93:ac:63:be:ff:5f:de:16:4d:1b:7f:6e:b6:24:3f:
7e:55:d1:c7:ac:f5:6c:8b:4d:45:b8:85:19:a9:00:
0a:6d:67:ab:65:59:82:26:f2:0f:71:87:bc:a9:ec:
30:b8:43:d4:34:96:b0:5e:c5:1f:ed:2d:29:6b:a7:
62:76:46:0d:06:c6:25:df:b0:d6:0e:94:e6:71:13:
43:87:4c:2d:86:4c:0a:f2:5f:22:6f:8c:b9:36:9f:
88:1b:70:87:fb:92:ed:fb:7a:fa:04:0e:44:52:7e:
6a:d3:91:ba:8f:de:b3:3f:3b:a4:15:76:b6:c9:5d:
fa:9b:40:dc:7f:a9:7a:4e:3a:07:88:70:26:cd:b4:
7b:69:08:37:82:a6:4d:d8:07:02:f5:f8:87:cd:cf:
02:f8:75:88:b4:3f:c6:89:df:ab:86:b4:93:58:f4:
2c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:3A:C1:6D:6F:E7:A7:D2:D4:8A:76:73:3A:BE:73:9F:B5:AD:1A:B5
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/5zrBbW_np9LUinZzOr5zn7WtGrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
36:b4:6d:ca:2d:eb:99:79:6d:2f:c6:f4:8b:3f:83:f4:8b:63:
dd:62:49:0e:ad:aa:8d:13:9e:ab:e7:ea:30:63:00:90:04:15:
08:7e:de:d3:28:4e:0e:a1:26:a9:f7:a1:6c:97:5b:30:3b:ef:
3a:9d:91:c6:df:f6:08:b1:b6:ed:15:b5:cc:12:92:33:e9:42:
41:58:68:47:31:b4:9f:57:f3:bd:f7:02:08:08:49:21:27:67:
a0:9e:c7:60:7a:63:38:a3:7f:bf:35:b6:ef:c2:d6:c9:8f:57:
54:29:d1:39:e3:70:8d:01:1b:30:26:89:11:43:36:91:97:ea:
a2:75:48:2a:08:ff:0a:e5:1c:1c:55:f5:ad:57:dd:e5:74:62:
0a:be:c7:0e:67:3a:3c:09:25:36:c2:73:3c:41:c2:d8:37:47:
95:cf:e0:24:0d:a4:4d:c3:80:1d:03:72:ad:43:81:fb:81:a1:
4b:46:72:7b:2e:88:4b:69:e0:bd:c3:ed:93:57:35:ef:e7:7e:
75:03:69:e7:e6:8b:a2:d5:40:9c:1b:36:7d:b3:a5:77:b2:34:
d3:d5:77:92:76:7e:52:4f:55:3e:3d:58:ed:c1:c4:c4:4a:8b:
7b:5d:f4:2f:d4:06:6d:5c:16:fa:53:3f:14:4b:a9:7c:75:a0:
ed:81:ff:50
-----BEGIN CERTIFICATE-----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==
Generated at Wed Jul 31 19:41:23 2024 by rpki-client on console-fra.rpki-client.org