Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/83g65Fwe-G7DHF_pSrd69a-VLOI.roa
File: 83g65Fwe-G7DHF_pSrd69a-VLOI.roa (raw, json)
Hash identifier: rLsZfkpuUgV0AZpqOJM8TGI3LmW7mbWsF3Ig7c5MgL4=
Subject key identifier: F3:78:3A:E4:5C:1E:F8:6E:C3:1C:5F:E9:4A:B7:7A:F5:AF:95:2C:E2
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191CCD2572464091AB1FDD014C21585CD12
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/83g65Fwe-G7DHF_pSrd69a-VLOI.roa
Signing time: Sat 07 Sep 2024 14:10:22 +0000
ROA not before: Sat 07 Sep 2024 14:10:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Sat 07 Sep 2024 15:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:cc:d2:57:24:64:09:1a:b1:fd:d0:14:c2:15:85:cd:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Sep 7 14:10:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f3783ae45c1ef86ec31c5fe94ab77af5af952ce2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9e:4b:11:82:90:32:5b:14:ed:2a:2e:e7:ad:
f1:84:fe:20:1c:3d:a1:f1:f6:33:e7:65:a8:08:83:
6b:dc:8f:db:5b:1e:c0:18:0a:24:46:1f:75:ef:da:
ef:a2:b4:27:e6:e3:9a:e1:9a:ad:97:f5:88:5b:3c:
aa:de:10:de:f5:ba:7b:18:64:8b:f0:68:e0:67:ac:
28:5f:25:17:89:cb:36:ad:74:40:02:88:dd:0d:77:
15:0f:3e:ab:7b:c9:02:c5:cf:f9:cc:0f:d9:2f:d2:
e1:9d:6f:06:f5:d1:17:b3:0e:eb:21:9a:0b:46:e4:
1b:94:70:d7:e2:10:54:95:2a:20:aa:02:28:d7:e6:
db:10:0c:b0:cf:e8:19:01:28:70:00:a0:ba:95:cf:
ce:b2:c5:ea:07:c8:9b:aa:c8:b0:c5:13:86:71:ea:
37:33:35:73:6b:88:54:b9:24:11:01:8d:5b:d1:e5:
9c:f8:7d:0a:8e:3f:5b:78:2f:72:c3:54:5f:47:d6:
e8:d3:00:d3:98:36:31:c7:0f:c2:26:13:45:43:96:
87:73:7a:a1:0c:2e:25:5a:ba:d8:22:c6:23:6d:48:
11:d5:75:da:f8:b9:6f:65:9b:65:6f:fe:92:48:f9:
26:25:83:ab:a7:c1:1e:db:52:47:92:0e:39:76:b2:
f7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:78:3A:E4:5C:1E:F8:6E:C3:1C:5F:E9:4A:B7:7A:F5:AF:95:2C:E2
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/83g65Fwe-G7DHF_pSrd69a-VLOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
7d:60:3b:09:a8:11:af:43:b9:b3:f9:a2:76:e0:17:45:ce:7d:
af:e1:b6:67:2f:02:c9:87:bd:1f:8a:74:c4:52:bb:b9:09:29:
9e:56:1a:75:86:a2:7a:8f:1f:ce:fc:b9:76:1a:72:fd:de:2f:
e1:8b:42:fd:8b:1e:06:37:3c:18:a2:ff:ae:ad:b4:e9:f6:fb:
0a:83:1a:25:f2:89:34:d8:75:7f:b3:ff:bc:8c:3b:d4:f4:1f:
60:41:14:62:5e:83:a0:5f:05:68:6a:ba:ea:23:4e:28:c6:7b:
79:62:ea:29:09:69:04:1a:59:74:4c:d2:44:f1:81:cc:2c:df:
87:ea:54:43:0b:3e:7a:1f:e8:03:1e:64:fd:4e:db:1b:e0:98:
53:a3:a1:6f:e2:46:74:ec:ef:fb:ff:c1:4a:cc:d6:2d:bc:70:
19:61:aa:02:09:d2:f6:24:a6:53:1f:bb:36:f1:3b:f7:cc:c7:
3a:29:55:ce:c8:d1:7a:b7:d4:24:ca:90:02:a7:b2:ac:24:96:
6a:cd:d9:ac:a5:65:9b:e9:7c:ba:6c:8a:25:df:85:75:6c:f8:
ca:5f:4a:db:39:c4:33:01:4b:68:5e:9e:83:93:8c:4a:53:fc:
9a:3f:20:cf:d8:46:57:a8:6c:63:8b:0f:c5:e3:3e:a1:32:dc:
4d:60:05:c7
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgISAZHM0lckZAkasf3QFMIVhc0SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwOTA3MTQxMDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMzc4M2FlNDVjMWVmODZlYzMxYzVmZTk0YWI3N2FmNWFmOTUyY2UyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJ5LEYKQMlsU7Sou563xhP4gHD2h
8fYz52WoCINr3I/bWx7AGAokRh9179rvorQn5uOa4Zqtl/WIWzyq3hDe9bp7GGSL
8GjgZ6woXyUXics2rXRAAojdDXcVDz6re8kCxc/5zA/ZL9LhnW8G9dEXsw7rIZoL
RuQblHDX4hBUlSogqgIo1+bbEAywz+gZAShwAKC6lc/OssXqB8ibqsiwxROGceo3
MzVza4hUuSQRAY1b0eWc+H0Kjj9beC9yw1RfR9bo0wDTmDYxxw/CJhNFQ5aHc3qh
DC4lWrrYIsYjbUgR1XXa+LlvZZtlb/6SSPkmJYOrp8Ee21JHkg45drL3JQIDAQAB
o4ICFjCCAhIwHQYDVR0OBBYEFPN4OuRcHvhuwxxf6Uq3evWvlSziMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvODNnNjVGd2UtRzdESEZfcFNyZDY5YS1WTE9JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAAjATAxEAIAEGfABk
//8AAAGQ/fLzAjANBgkqhkiG9w0BAQsFAAOCAQEAfWA7CagRr0O5s/miduAXRc59
r+G2Zy8CyYe9H4p0xFK7uQkpnlYadYaieo8fzvy5dhpy/d4v4YtC/YseBjc8GKL/
rq206fb7CoMaJfKJNNh1f7P/vIw71PQfYEEUYl6DoF8FaGq66iNOKMZ7eWLqKQlp
BBpZdEzSRPGBzCzfh+pUQws+eh/oAx5k/U7bG+CYU6Ohb+JGdOzv+//BSszWLbxw
GWGqAgnS9iSmUx+7NvE798zHOilVzsjRerfUJMqQAqeyrCSWas3ZrKVlm+l8umyK
Jd+FdWz4yl9K2znEMwFLaF6eg5OMSlP8mj8gz9hGV6hsY4sPxeM+oTLcTWAFxw==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:42:46 2025 by rpki-client