Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/EvCztygpoltnRxQepFF0z7hN21E.roa
File: EvCztygpoltnRxQepFF0z7hN21E.roa (raw, json)
Hash identifier: sJOa/izA55icp4rJixrP3MDaGdE4YgyEod90Hpx8Iio=
Subject key identifier: 12:F0:B3:B7:28:29:A2:5B:67:47:14:1E:A4:51:74:CF:B8:4D:DB:51
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01913E8EB1313B31DD7D602E4F56D8A048F6
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/EvCztygpoltnRxQepFF0z7hN21E.roa
Signing time: Sat 10 Aug 2024 23:10:24 +0000
ROA not before: Sat 10 Aug 2024 23:10:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Sun 11 Aug 2024 00:04:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:3e:8e:b1:31:3b:31:dd:7d:60:2e:4f:56:d8:a0:48:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 10 23:10:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=12f0b3b72829a25b6747141ea45174cfb84ddb51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f8:3b:37:31:d6:03:fe:69:c3:f4:27:7c:0f:
eb:a7:c7:db:c6:d6:4f:34:c1:22:a1:45:7a:5b:1e:
c5:b8:4d:6a:85:c8:fa:41:e3:bd:90:28:f4:64:be:
d5:44:8f:8d:3d:5b:a3:04:0d:a4:2b:ee:20:b2:d3:
e3:d9:cc:17:da:a6:df:d3:e3:4a:b2:74:ad:53:fb:
ae:23:2a:cc:7f:7b:43:e1:e2:08:5b:98:2f:31:93:
d8:c3:e3:c2:ea:6d:1a:7e:3b:97:eb:64:60:c6:a2:
13:34:6c:23:39:7c:a3:06:2b:b8:51:09:ed:78:40:
89:52:9d:d2:b6:4f:dc:c8:bc:a6:a3:ef:cc:c6:75:
4d:af:e4:38:84:20:95:78:2c:09:8c:2a:5c:56:8b:
37:31:4a:ba:2c:a6:dd:62:a0:09:d9:0b:52:52:5b:
be:cf:8a:72:bf:ab:0a:b1:90:6e:71:94:99:21:c5:
8a:99:ce:ba:ee:fc:55:22:66:da:35:05:62:70:16:
5b:ed:d0:75:73:35:da:9a:c5:76:d5:aa:9c:f2:93:
8a:d5:ce:74:06:4a:a1:ee:90:00:88:d0:f0:ce:fe:
92:c9:33:10:76:b2:2a:db:27:a5:42:4f:01:9d:75:
da:68:41:6b:8a:74:18:fe:ae:d0:b1:69:63:c4:b6:
08:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:F0:B3:B7:28:29:A2:5B:67:47:14:1E:A4:51:74:CF:B8:4D:DB:51
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/EvCztygpoltnRxQepFF0z7hN21E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
95:75:38:30:33:af:3b:87:af:4d:99:e5:06:61:d6:31:55:9d:
a0:ca:38:0d:90:1e:75:49:46:5c:cd:e8:37:03:a8:e2:06:18:
d1:99:9e:1b:cb:26:b3:68:24:3e:28:9d:7f:1d:6f:ac:ff:a7:
18:b8:ca:4a:15:9b:91:a8:1f:72:b3:66:af:ea:27:f3:d8:01:
ce:42:15:8a:c9:49:f5:dc:2e:f7:0b:2c:12:d9:95:2b:8c:cf:
b7:9e:ee:05:f6:b7:a4:5f:44:ef:58:2d:00:22:05:6d:48:5b:
d8:a0:a0:dc:8e:25:ed:43:30:15:13:ef:8e:69:6f:75:6e:06:
5f:15:72:b6:a9:3d:fe:90:8c:cf:fe:ad:82:89:ce:88:71:dd:
8d:1b:ec:d9:32:b8:aa:8b:7d:bd:41:d3:03:cb:ce:1b:f4:74:
77:7f:32:ff:2d:c4:60:46:f9:1c:6a:85:bd:07:13:56:ef:53:
d6:8b:dc:10:54:07:c0:f4:52:75:96:38:7c:bf:8f:fa:e1:4e:
ce:47:29:15:7c:06:e3:66:cc:fc:5c:e4:79:f4:e4:a7:9a:75:
3a:5d:8c:ca:09:45:7c:2e:1a:c5:c7:74:15:2d:c3:ae:5b:a9:
da:56:fb:bc:34:a6:f4:22:20:ef:e3:f7:74:bc:2d:41:5d:2f:
10:24:8e:70
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Aug 11 02:42:00 2024 by rpki-client on console-ams.rpki-client.org