Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/6VkwibWzNtYB9Oeus9Gq8fUYenM.roa
File: 6VkwibWzNtYB9Oeus9Gq8fUYenM.roa (raw, json)
Hash identifier: 17U3uaTA6Z4R4InTGZqDzsnKQuT9Tus7tLxdO8/+iYg=
Subject key identifier: E9:59:30:89:B5:B3:36:D6:01:F4:E7:AE:B3:D1:AA:F1:F5:18:7A:73
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191AA7D482E865688ACFE1F6009AE519FD3
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/6VkwibWzNtYB9Oeus9Gq8fUYenM.roa
Signing time: Sat 31 Aug 2024 22:10:22 +0000
ROA not before: Sat 31 Aug 2024 22:10:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Sat 31 Aug 2024 23:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:aa:7d:48:2e:86:56:88:ac:fe:1f:60:09:ae:51:9f:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 31 22:10:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e9593089b5b336d601f4e7aeb3d1aaf1f5187a73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:80:5e:b7:92:71:60:cf:bc:91:85:4f:c3:a9:
3e:04:d8:43:62:25:e7:c6:5f:6e:1e:82:04:e0:12:
ab:29:66:3c:4e:60:0c:78:bd:69:27:7c:50:a7:83:
c2:8c:2a:26:52:61:6b:19:e5:b8:b6:08:39:9e:b1:
03:d6:4b:fc:f8:5c:f7:3e:ba:52:87:43:03:4c:a7:
87:4a:f1:93:2c:34:2d:a0:31:7e:3d:f3:bc:e7:7e:
b9:6a:2e:92:8a:1b:95:d1:d9:26:ba:8d:d1:ad:c7:
1f:22:fd:c6:fe:cf:ed:ab:8b:4c:65:49:8f:2d:3d:
9a:22:db:fe:46:c4:e8:e0:ed:cc:69:c1:7e:32:30:
eb:fc:05:f3:eb:5c:4d:67:f0:31:c3:20:e7:2b:50:
59:a1:75:21:33:19:b1:0e:47:9d:35:27:45:95:bb:
c0:09:3b:f7:5c:ba:7b:a3:86:12:a7:77:9f:20:15:
d8:97:2c:44:61:a2:b2:39:43:34:76:e5:7c:a4:38:
a4:8d:6e:c5:b0:a6:44:18:fe:45:21:5c:5e:64:ae:
bb:9e:59:7a:82:85:c0:68:71:c3:2c:0b:73:fd:aa:
84:53:00:a7:f6:e8:fe:82:92:46:3b:98:f6:bf:38:
1c:eb:5d:a4:a7:6c:0d:57:15:7f:e6:9d:d4:13:9a:
fc:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:59:30:89:B5:B3:36:D6:01:F4:E7:AE:B3:D1:AA:F1:F5:18:7A:73
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/6VkwibWzNtYB9Oeus9Gq8fUYenM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
2f:bf:c9:04:d4:83:e5:ce:47:5e:70:91:01:75:72:18:ca:5e:
84:79:d4:2d:7a:92:33:50:52:33:57:1d:fe:5c:fc:14:a4:91:
e6:f5:87:5d:90:52:39:0f:f8:84:ca:a4:c2:69:ee:11:3a:d0:
29:26:75:07:f3:57:4c:80:51:fe:30:77:81:fb:87:d0:96:66:
4c:b7:66:18:17:0f:51:fb:a8:30:5a:d0:bf:f5:63:69:f5:cd:
49:39:ce:9a:3a:0e:5c:68:17:87:ef:e4:63:d7:86:4e:6f:f6:
79:81:c4:9d:38:42:46:90:30:57:d7:e8:b0:9c:f8:b9:cb:06:
a0:a8:2e:23:10:64:89:2a:8d:8b:8e:e4:2b:95:64:07:99:a3:
8b:47:cc:db:e6:52:bf:21:35:90:7f:02:f1:81:3b:2f:5a:2b:
21:e5:5f:6b:cf:73:70:66:16:0d:bb:43:51:74:d7:bb:1f:b2:
34:52:4b:bc:1c:d9:a1:12:6c:6a:95:60:54:de:01:2f:a2:a2:
5e:5d:fd:c0:e5:0a:f8:d4:0d:c0:7e:a6:48:dd:9a:a6:7d:65:
7e:d9:0c:47:64:2e:96:a1:9c:a6:05:71:97:de:ad:c7:da:f3:
55:7b:3c:7e:8b:93:24:0f:03:fb:94:6b:b4:fe:af:ca:71:96:
4a:c7:4a:5e
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgISAZGqfUguhlaIrP4fYAmuUZ/TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwODMxMjIxMDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOTU5MzA4OWI1YjMzNmQ2MDFmNGU3YWViM2QxYWFmMWY1MTg3YTczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp4Bet5JxYM+8kYVPw6k+BNhDYiXn
xl9uHoIE4BKrKWY8TmAMeL1pJ3xQp4PCjComUmFrGeW4tgg5nrED1kv8+Fz3PrpS
h0MDTKeHSvGTLDQtoDF+PfO85365ai6SihuV0dkmuo3RrccfIv3G/s/tq4tMZUmP
LT2aItv+RsTo4O3MacF+MjDr/AXz61xNZ/AxwyDnK1BZoXUhMxmxDkedNSdFlbvA
CTv3XLp7o4YSp3efIBXYlyxEYaKyOUM0duV8pDikjW7FsKZEGP5FIVxeZK67nll6
goXAaHHDLAtz/aqEUwCn9uj+gpJGO5j2vzgc612kp2wNVxV/5p3UE5r8XQIDAQAB
o4ICFjCCAhIwHQYDVR0OBBYEFOlZMIm1szbWAfTnrrPRqvH1GHpzMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvNlZrd2liV3pOdFlCOU9ldXM5R3E4ZlVZZW5NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAAjATAxEAIAEGfABk
//8AAAGQ/fLzAjANBgkqhkiG9w0BAQsFAAOCAQEAL7/JBNSD5c5HXnCRAXVyGMpe
hHnULXqSM1BSM1cd/lz8FKSR5vWHXZBSOQ/4hMqkwmnuETrQKSZ1B/NXTIBR/jB3
gfuH0JZmTLdmGBcPUfuoMFrQv/VjafXNSTnOmjoOXGgXh+/kY9eGTm/2eYHEnThC
RpAwV9fosJz4ucsGoKguIxBkiSqNi47kK5VkB5mji0fM2+ZSvyE1kH8C8YE7L1or
IeVfa89zcGYWDbtDUXTXux+yNFJLvBzZoRJsapVgVN4BL6KiXl39wOUK+NQNwH6m
SN2apn1lftkMR2QulqGcpgVxl96tx9rzVXs8fouTJA8D+5RrtP6vynGWSsdKXg==
Generated at Sun Sep 1 00:30:42 2024 by rpki-client on console-fra.rpki-client.org