Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/F-G-IH_yJTBQUyEt7-35_wgo3To.roa
File: F-G-IH_yJTBQUyEt7-35_wgo3To.roa (raw, json)
Hash identifier: jWcTo5OCmPABgWCDxBrwreoOqSk5SdKecneiW9gfi8U=
Subject key identifier: 17:E1:BE:20:7F:F2:25:30:50:53:21:2D:EF:ED:F9:FF:08:28:DD:3A
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01915F6335808DE9AC8BA8FC80C8CBAE1EC6
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/F-G-IH_yJTBQUyEt7-35_wgo3To.roa
Signing time: Sat 17 Aug 2024 08:10:22 +0000
ROA not before: Sat 17 Aug 2024 08:10:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Sat 17 Aug 2024 09:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5f:63:35:80:8d:e9:ac:8b:a8:fc:80:c8:cb:ae:1e:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 17 08:10:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=17e1be207ff225305053212defedf9ff0828dd3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:62:32:12:82:40:75:a3:c5:83:dd:28:ef:ef:
cf:67:d6:0d:8a:13:6f:fb:40:e6:f2:7b:c9:db:81:
98:fe:e7:33:3f:dc:b8:f9:d3:97:b4:e6:6c:0b:4a:
a0:94:7e:cf:c6:41:60:cc:06:56:e9:56:03:0b:3a:
a4:91:c7:2e:38:98:b7:68:cc:9f:9d:a2:65:35:1e:
e2:cc:ec:06:a9:06:08:6b:3c:2b:b6:c3:bc:e8:87:
22:0a:74:b4:5b:5a:ff:a7:c1:71:8c:75:8a:9b:1b:
07:f2:9e:48:91:4a:e3:ce:e9:e5:dd:c7:2b:8c:8c:
1b:a4:76:68:14:a7:cf:0e:0f:31:89:6f:18:2a:9c:
85:3c:3b:0d:fc:64:0f:54:e8:7a:b3:8d:8e:42:84:
fe:fc:01:b3:cd:d7:07:d9:73:2d:a4:fe:59:a8:a5:
70:55:57:cf:b7:58:e9:5f:3c:8d:8c:20:bd:32:ee:
3e:ca:17:80:44:c7:bc:ce:4d:98:1d:91:11:1d:0b:
9e:b9:96:93:50:fe:32:32:e5:57:2f:c5:15:5f:8c:
37:07:d5:17:a0:ec:2c:07:00:42:55:23:e5:a3:56:
65:03:40:1b:74:7e:a8:2c:06:9b:a9:71:ae:35:58:
31:15:86:49:11:a1:0c:cb:0f:ea:bc:70:6a:84:a1:
1e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:E1:BE:20:7F:F2:25:30:50:53:21:2D:EF:ED:F9:FF:08:28:DD:3A
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/F-G-IH_yJTBQUyEt7-35_wgo3To.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
41:0f:fb:89:c0:8f:70:ed:bd:28:0b:91:8d:9d:65:0e:c4:1d:
40:04:77:0c:35:5b:b2:92:ea:b7:47:59:37:4a:7d:da:82:ba:
76:f6:6b:d5:a7:76:c3:26:7d:23:32:9f:63:6d:bc:90:0d:25:
fb:cd:84:f5:3e:11:83:d9:4f:42:7f:bd:f9:87:46:75:9b:9a:
82:1a:cf:94:06:17:98:16:8e:2e:dd:95:b3:b1:5f:1c:94:bd:
14:ae:0c:11:d2:cd:5c:1b:4f:c9:6e:65:76:1d:86:60:fb:66:
df:7c:5e:71:2a:a9:55:c7:ae:bf:43:b0:20:44:1c:b8:e7:19:
65:58:a8:3c:3c:4c:dd:40:39:d1:01:93:3e:e3:fd:b5:42:c0:
d2:e8:d8:47:54:23:3d:7c:f0:7d:c2:6e:2e:36:5b:00:36:2c:
9e:fc:06:22:3b:d9:38:ac:3f:da:3f:6b:03:85:18:20:62:42:
09:71:f8:d0:e2:82:bb:51:f7:71:95:05:a8:61:54:bc:f0:4c:
e6:ce:d7:2a:d7:c2:58:d9:8e:52:b5:94:05:3a:6a:21:c8:b5:
98:02:0a:e7:72:91:9b:bd:bd:e9:0b:df:14:30:15:59:dd:1c:
ab:23:98:8c:70:c2:6d:02:7c:c0:86:38:51:97:0f:01:90:a8:
b0:af:09:d1
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:14 2025 by rpki-client