Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/EG319NzGgbs8bnowzK-qGOfgp3w.roa
File: EG319NzGgbs8bnowzK-qGOfgp3w.roa (raw, json)
Hash identifier: LszhhHE9V7/HOEIGb/KoJZ5e+TJkfhhA+pDDa0nPZWc=
Subject key identifier: 10:6D:F5:F4:DC:C6:81:BB:3C:6E:7A:30:CC:AF:AA:18:E7:E0:A7:7C
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01915BBF69A9F7E797653EE3504A1D607B36
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/EG319NzGgbs8bnowzK-qGOfgp3w.roa
Signing time: Fri 16 Aug 2024 15:12:36 +0000
ROA not before: Fri 16 Aug 2024 15:12:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Fri 16 Aug 2024 16:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5b:bf:69:a9:f7:e7:97:65:3e:e3:50:4a:1d:60:7b:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 16 15:12:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=106df5f4dcc681bb3c6e7a30ccafaa18e7e0a77c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:52:7d:e3:aa:72:79:58:92:7c:7d:a4:8f:6d:
d3:30:27:80:f1:25:f4:3a:8d:1f:97:f7:31:3b:6c:
13:a7:41:10:ec:cd:d2:c3:2d:aa:2f:75:49:c0:1c:
1c:e6:cd:be:6b:4f:dd:47:7b:fa:89:cb:22:87:a2:
00:18:ac:ae:6d:5e:2e:ff:71:5a:cd:d1:f1:3d:65:
2d:0c:3f:17:61:76:34:1d:45:8b:6c:fe:d0:10:80:
e4:dc:2c:f7:0c:0d:ab:be:0d:ca:d1:38:60:b8:11:
d6:e4:66:50:8e:ec:f6:8d:6b:6c:d4:d7:00:e1:c2:
a7:cb:a5:11:c6:ba:fe:3b:ac:83:86:18:9d:2d:1c:
1c:1b:b7:7b:68:c4:f0:74:88:60:5c:61:f6:54:96:
96:e2:d5:68:46:30:b4:fb:94:47:9f:89:db:10:6a:
bf:20:6a:07:23:c0:96:85:21:a9:47:12:51:3d:6b:
66:77:cc:5f:96:4e:20:0f:05:9c:06:9e:e8:4e:e8:
a7:9f:c9:1c:ae:05:60:68:aa:f0:8b:36:02:5c:7e:
1a:f5:bf:12:fc:2f:67:56:5c:f5:a4:31:12:9a:7d:
00:64:0f:92:d2:86:2c:00:35:49:1c:61:b6:02:a8:
e8:f8:9d:da:1d:e0:e4:11:02:4d:51:60:4b:b4:ae:
89:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:6D:F5:F4:DC:C6:81:BB:3C:6E:7A:30:CC:AF:AA:18:E7:E0:A7:7C
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/EG319NzGgbs8bnowzK-qGOfgp3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
5d:44:7d:9a:ae:4b:35:91:2e:75:35:16:dd:b1:90:74:1c:8d:
22:5b:95:77:24:cc:7d:e1:e1:a8:74:74:eb:87:e6:70:05:2d:
67:99:19:e5:a6:39:b8:4e:8a:46:cc:fe:ee:49:ec:99:65:ea:
b1:98:7f:e2:4e:a0:d4:dd:8c:ea:3e:3a:6b:1d:a2:6d:f5:4a:
a9:42:40:04:25:cf:d7:6a:44:83:07:c6:cf:d1:ab:b3:0a:6e:
c3:92:38:78:87:30:06:02:d5:a6:a1:2a:db:7e:4b:45:ae:93:
32:99:1d:7c:81:8a:9c:4c:87:d5:a9:f6:06:cd:15:b3:2c:43:
45:5c:24:53:70:2f:d2:f5:73:cf:60:78:5c:82:b3:5f:e4:21:
c3:c2:85:b6:91:29:d2:37:8d:ea:9f:29:cc:3b:8b:79:3e:73:
01:44:e0:b6:d1:e3:2f:e7:f8:dd:bb:d7:3a:59:fb:5b:cc:46:
02:1c:c0:69:20:5f:bb:b1:bf:09:51:4a:2b:3b:26:42:04:22:
fb:8e:87:ed:c0:7b:ee:bb:3a:c2:c4:84:21:0a:b5:0f:04:6f:
13:a2:94:61:f5:d3:bd:e1:7d:d5:4b:89:76:3a:64:c9:7c:22:
66:56:45:00:16:b8:cf:b6:17:c2:74:8f:7e:44:f9:91:b1:ae:
1f:7d:a3:d4
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:46:51 2025 by rpki-client