Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7yoadUwOF_7u4oEZQUPf1kheJL8.roa
File: 7yoadUwOF_7u4oEZQUPf1kheJL8.roa (raw, json)
Hash identifier: JlF6mV2lHda3Xh4nkwkDUytuPlQsVmJW7SuVJTQbSlU=
Subject key identifier: EF:2A:1A:75:4C:0E:17:FE:EE:E2:81:19:41:43:DF:D6:48:5E:24:BF
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01933AA804CC91C39701DABD1C93A0FDF0DC
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7yoadUwOF_7u4oEZQUPf1kheJL8.roa
Signing time: Sun 17 Nov 2024 15:05:10 +0000
ROA not before: Sun 17 Nov 2024 15:05:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:193:3aa7:3729/128 maxlen: 128
Validation: Failed, certificate revoked on Sun 17 Nov 2024 15:12:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:3a:a8:04:cc:91:c3:97:01:da:bd:1c:93:a0:fd:f0:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Nov 17 15:05:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef2a1a754c0e17feeee281194143dfd6485e24bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:76:d5:01:f7:32:ce:94:c6:34:87:60:51:c4:
df:68:24:34:75:42:a3:f2:25:1e:30:46:f7:cb:ea:
93:a0:45:c3:24:be:89:86:fc:d2:4f:db:fd:d9:ea:
79:b8:67:09:33:89:e4:8e:dc:0c:ff:8d:c7:f8:d3:
9d:00:8a:3d:48:99:b6:a3:ec:1a:01:a0:3e:b3:4d:
22:e0:cd:b6:e0:72:8d:ef:cc:96:5d:43:2a:b9:a6:
aa:db:ce:da:14:41:07:2e:1a:14:ec:6c:27:c6:ee:
58:0c:d9:a2:a0:40:60:f5:97:a8:a7:c6:eb:1b:cb:
35:e4:83:51:51:e0:c4:b4:60:7b:0d:68:f4:13:52:
c1:a5:51:eb:b6:f0:ec:27:04:e1:57:75:6c:cf:93:
e7:a4:49:58:02:25:a8:14:58:46:f5:67:da:80:5e:
e3:be:30:6b:7a:41:9e:7f:bc:5a:80:75:2f:54:82:
27:34:b5:ff:25:c6:20:4f:ba:96:5f:b8:a1:9f:02:
6c:33:7b:47:95:56:c2:0b:a7:41:5c:9e:16:7d:c9:
61:cf:0b:1f:f8:eb:e9:ec:1d:65:90:2f:df:e6:c0:
15:21:6b:94:7b:e1:c7:5a:05:03:1e:d9:bd:2e:d6:
ce:56:33:58:a1:2f:3c:85:ee:9e:0b:85:d6:b2:95:
09:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:2A:1A:75:4C:0E:17:FE:EE:E2:81:19:41:43:DF:D6:48:5E:24:BF
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7yoadUwOF_7u4oEZQUPf1kheJL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:193:3aa7:3729/128
Signature Algorithm: sha256WithRSAEncryption
4d:ac:df:ad:6d:98:73:34:f0:a3:ae:e6:e0:ae:6f:9e:7e:2c:
61:25:12:bd:71:fa:8e:b0:2b:dc:9b:ec:60:8b:3d:36:5d:12:
7b:29:f6:64:32:93:6c:28:d4:b1:99:cc:38:60:5a:72:dd:a9:
83:30:3f:6f:60:4a:1c:20:36:98:59:63:c8:fd:29:fa:82:ad:
f3:3d:23:3c:76:4e:d1:b1:7d:14:4c:b1:78:66:c8:06:0e:f4:
fa:81:c8:da:08:2e:7f:b0:5c:7c:f0:71:b7:92:b3:69:ee:54:
b6:ed:b8:ec:49:71:6c:99:83:35:26:e0:ee:a4:84:e8:14:81:
4d:8f:6a:b6:b7:d9:2b:21:32:e4:40:9a:1c:19:1f:b6:3c:65:
52:42:0c:5f:db:4a:1d:44:aa:bb:bc:8b:18:76:fa:0d:f1:d0:
47:c3:7c:6f:3d:75:fc:2f:64:15:0e:40:d6:86:68:84:43:d1:
d7:1a:92:5f:06:64:8e:6b:16:a0:81:40:59:eb:70:e7:5e:fb:
1a:0f:4d:08:98:97:ed:d5:a8:c0:98:76:ff:56:f2:dd:49:10:
0b:a1:1f:25:85:67:0e:d9:28:02:0f:73:33:30:a3:3d:0b:6c:
17:dd:3b:19:58:9d:8a:25:2d:8d:b2:13:01:c1:57:9c:a4:b9:
06:9c:63:a3
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:46 2025 by rpki-client