Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/EYaI8wnc6CR1Upvy_54_hilNzb8.roa
File: EYaI8wnc6CR1Upvy_54_hilNzb8.roa (raw, json)
Hash identifier: EMFO/OhyB07pEM6Wm4PoBCCMbj+F+W0ebtpA3dNiU0E=
Subject key identifier: 11:86:88:F3:09:DC:E8:24:75:52:9B:F2:FF:9E:3F:86:29:4D:CD:BF
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01916D57F27F132A59DA2CB80382CB231B55
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/EYaI8wnc6CR1Upvy_54_hilNzb8.roa
Signing time: Tue 20 Aug 2024 01:12:45 +0000
ROA not before: Tue 20 Aug 2024 01:12:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Tue 20 Aug 2024 02:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6d:57:f2:7f:13:2a:59:da:2c:b8:03:82:cb:23:1b:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 20 01:12:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=118688f309dce82475529bf2ff9e3f86294dcdbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:04:36:55:e5:ad:c4:a6:5d:2c:c1:29:d9:b1:
51:f8:dd:9a:1b:0c:41:4c:1c:3d:1f:fe:a0:ba:17:
05:28:1e:5a:c3:bc:c7:81:0c:03:43:e0:c6:6b:f6:
f1:ab:af:24:c8:c6:d3:a5:33:8a:4b:af:44:12:29:
88:a1:e5:9a:91:b8:68:31:27:91:c0:89:bf:24:d4:
7d:4f:bd:00:a0:ae:05:d6:31:b0:59:11:24:f0:18:
6c:1c:45:2e:23:7d:16:22:b5:23:18:dc:3a:13:31:
53:cb:2f:b7:79:80:8f:fb:c6:1e:46:41:8b:f1:79:
18:11:5b:33:01:c8:d8:76:ee:a4:cb:e0:41:85:90:
45:c8:96:bd:7d:a5:dd:80:d4:91:c9:a4:ba:4f:a4:
1d:ce:aa:50:5f:32:0e:16:8d:11:9b:67:96:ec:00:
d1:ba:50:42:a6:77:6b:9b:e9:2d:73:9b:2c:4d:df:
1e:ef:42:f4:42:ec:4f:6d:e6:fd:bf:66:71:bf:99:
fe:c1:9a:bc:6e:32:92:09:c7:7d:62:f9:45:92:37:
07:f4:2b:0c:11:bb:0b:44:e7:15:53:03:03:4c:c4:
93:c1:8e:0a:97:84:73:4c:fa:e3:0c:e1:95:5f:3e:
cd:03:40:ca:c4:57:77:ea:c2:e9:e9:17:aa:87:4c:
ff:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:86:88:F3:09:DC:E8:24:75:52:9B:F2:FF:9E:3F:86:29:4D:CD:BF
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/EYaI8wnc6CR1Upvy_54_hilNzb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
1e:49:db:d3:5c:7e:23:16:10:38:2b:da:eb:20:05:08:29:31:
69:37:e7:20:df:e3:11:4e:8b:f8:ae:91:1c:46:a5:03:b0:87:
84:d7:e9:c4:b9:cc:05:db:c6:a1:7f:fa:1a:86:14:cf:40:c3:
ef:81:2e:2b:18:63:7b:ed:52:ae:26:77:0f:96:a9:ff:90:1c:
6d:2c:6d:75:57:1f:a4:f9:bd:1f:0c:20:5b:ed:50:c8:f2:79:
0c:3e:c0:17:09:68:13:ea:94:78:3b:22:8f:3a:08:cd:ef:71:
e9:1e:33:c5:39:ca:bb:ba:dd:0d:fc:f8:ba:f1:16:43:6a:81:
8d:6a:58:24:3e:a6:76:f3:69:7d:be:83:03:4c:c5:f4:2c:11:
57:d4:a7:1a:ea:a9:1c:a3:30:51:b5:46:16:68:c2:20:b9:63:
e7:71:9b:4c:63:1a:24:7d:04:e1:4a:44:ea:7f:97:1f:b7:3c:
44:5f:91:3b:87:22:fc:c2:e6:5b:8c:18:43:15:58:f9:19:c0:
26:77:ce:0b:2d:53:24:91:84:d2:31:7a:df:29:b3:0e:bb:76:
2f:b2:d8:0c:ed:92:c7:e6:19:99:da:36:fa:d8:c4:3a:b1:ff:
b9:67:07:1c:6f:78:09:03:18:25:b8:1f:c5:0a:07:f4:fd:cf:
74:48:12:34
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:37 2025 by rpki-client