Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/8dywgcE5CRlMwQTcO7ADHD9pav0.roa
File: 8dywgcE5CRlMwQTcO7ADHD9pav0.roa (raw, json)
Hash identifier: NbOuwm9rcTNNU5H8whl+Wm/Bs48cL2VBES2YZkTkxOY=
Subject key identifier: F1:DC:B0:81:C1:39:09:19:4C:C1:04:DC:3B:B0:03:1C:3F:69:6A:FD
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019243AD774EB1DB61CAC122240236B60859
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/8dywgcE5CRlMwQTcO7ADHD9pav0.roa
Signing time: Mon 30 Sep 2024 16:04:54 +0000
ROA not before: Mon 30 Sep 2024 16:04:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:192:43ac:fb84/128 maxlen: 128
Validation: Failed, certificate revoked on Mon 30 Sep 2024 16:09:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:43:ad:77:4e:b1:db:61:ca:c1:22:24:02:36:b6:08:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Sep 30 16:04:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f1dcb081c13909194cc104dc3bb0031c3f696afd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9c:18:95:f2:ba:28:5c:16:23:b6:33:7b:dd:
9c:69:1e:13:f1:f9:22:76:30:47:a6:66:c1:f5:97:
89:d2:eb:01:3f:f9:5b:de:13:e4:96:b8:80:77:b1:
56:40:3f:3b:46:9d:f1:5f:63:74:93:1a:dd:44:55:
56:5b:78:3b:4a:8b:df:08:76:37:c5:a8:8b:b0:c6:
78:56:d5:7d:d9:e1:71:41:d1:77:00:e9:d0:a5:12:
ac:b0:99:61:cc:45:87:a7:92:f5:e9:21:94:a8:bd:
21:80:09:cb:a3:5c:48:14:c3:f8:8a:f4:50:8c:57:
1f:22:5d:f5:87:02:df:82:8b:e9:27:b6:58:23:41:
3b:0b:d8:cc:bd:b9:82:8e:38:28:9c:4e:df:45:ea:
3f:30:ef:d0:a2:dd:cd:0a:8b:43:d4:45:69:13:bf:
7c:af:74:0e:8b:e8:21:42:a5:5c:a9:9c:e4:a6:5e:
b0:93:6a:ca:f2:e4:6d:97:70:fd:d8:85:8b:db:11:
df:8e:8c:cb:b2:ca:77:75:fb:49:17:e4:e2:c3:3c:
06:b1:40:76:b2:88:76:55:ef:7c:f1:5c:ba:bb:30:
83:ec:b9:2f:7a:03:08:51:94:cd:e1:a8:1c:a7:89:
59:1f:f0:cd:c3:f6:7d:3a:dd:2c:29:a8:c7:34:6b:
bb:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:DC:B0:81:C1:39:09:19:4C:C1:04:DC:3B:B0:03:1C:3F:69:6A:FD
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/8dywgcE5CRlMwQTcO7ADHD9pav0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:192:43ac:fb84/128
Signature Algorithm: sha256WithRSAEncryption
5e:15:03:b8:6a:69:35:63:3d:ed:d9:a2:5a:52:83:b3:e6:c3:
4e:90:cc:f4:58:b3:33:76:e2:5f:70:d5:21:a1:e7:f1:dd:d6:
e4:5a:7e:1e:24:e5:2f:8e:46:f2:90:d6:27:7a:a2:9a:43:a7:
71:1f:95:59:33:de:f6:0b:a5:f5:d6:75:4f:3c:84:9e:59:b0:
df:15:c6:47:8d:a8:b6:d7:46:ec:01:ae:99:d8:82:d3:07:0b:
78:84:01:b0:b2:cb:45:f3:e2:4b:9d:da:25:de:1f:d5:3b:37:
b7:3d:5d:4b:2b:a5:09:93:00:53:73:11:10:96:fd:f2:74:6b:
7a:68:23:7b:17:9f:b5:2a:53:db:8b:3a:4d:b1:fb:3e:1f:b4:
9c:f0:98:67:81:96:0a:87:4a:8d:fb:80:99:47:0d:84:e2:04:
57:d9:64:e7:16:02:ea:f8:7f:70:aa:e0:75:7e:08:7c:8e:72:
a7:41:4e:bb:c3:58:07:a7:ae:fc:90:57:40:f9:91:03:39:42:
3a:81:11:8d:fe:e9:2f:ae:12:bb:16:7c:e9:02:de:32:7b:a2:
4a:34:d7:d6:d8:9d:24:fb:33:f0:33:0f:8a:23:36:06:f9:9a:
a5:9d:9b:84:ee:81:87:24:be:dd:49:74:52:28:e2:38:84:52:
eb:a6:f6:9d
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:35 2025 by rpki-client