Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Jog1_VRIKIdQa5stdRMfeXhAn2A.roa
File: Jog1_VRIKIdQa5stdRMfeXhAn2A.roa (raw, json)
Hash identifier: u6mZhBGu261VlbsYAmLFAFamgOmc5+iZKx2zO5Vp6Ek=
Subject key identifier: 26:88:35:FD:54:48:28:87:50:6B:9B:2D:75:13:1F:79:78:40:9F:60
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191A069CC3ED958357DE0E39E028B1EFD26
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Jog1_VRIKIdQa5stdRMfeXhAn2A.roa
Signing time: Thu 29 Aug 2024 23:12:53 +0000
ROA not before: Thu 29 Aug 2024 23:12:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Fri 30 Aug 2024 00:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a0:69:cc:3e:d9:58:35:7d:e0:e3:9e:02:8b:1e:fd:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 29 23:12:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=268835fd54482887506b9b2d75131f7978409f60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0c:aa:a9:25:cb:24:ce:52:69:96:22:b0:11:
05:26:8e:27:89:b3:79:5d:ad:65:f5:40:fd:dc:7d:
28:fb:97:ab:90:ec:5e:19:be:23:30:24:55:b0:17:
a7:00:1e:13:83:d2:04:6b:9d:de:ec:91:b4:a2:54:
45:c6:56:e7:72:e2:79:f4:42:ba:90:91:16:f2:cc:
6c:52:49:b2:09:ae:ce:36:6c:6a:ce:04:c9:b3:02:
ed:59:3b:ac:d3:3f:8b:9e:c1:ff:25:4e:cf:69:aa:
84:85:af:d3:cd:91:af:88:fb:c7:f5:ca:b2:60:4c:
b5:76:7d:67:2d:9c:82:23:ff:a2:19:19:62:46:f1:
5f:2d:3d:57:e7:94:02:d9:b6:2b:21:24:00:dc:e5:
3e:b2:b5:e1:2b:91:f5:fa:c0:56:64:00:cc:f7:ca:
41:2e:a4:0e:d8:45:45:85:ed:a7:98:44:1b:54:ba:
80:02:9a:ab:9d:b6:09:14:79:6b:fa:84:e9:5a:cc:
e9:04:a6:19:be:ab:3c:5f:29:6b:6d:4d:dc:87:6b:
bd:40:f1:a5:0b:56:4f:fd:75:28:fc:56:52:95:cf:
87:48:58:48:b2:73:00:a7:74:80:77:73:f7:6d:91:
06:bb:8b:41:fa:09:a8:93:57:65:c5:8a:ba:30:34:
be:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:88:35:FD:54:48:28:87:50:6B:9B:2D:75:13:1F:79:78:40:9F:60
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Jog1_VRIKIdQa5stdRMfeXhAn2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
68:a0:02:44:fc:5a:05:44:d6:63:17:32:9f:37:5a:eb:56:82:
e0:04:ae:fd:18:22:91:43:de:29:7f:4e:60:91:31:eb:2c:e4:
bd:cf:80:ec:dd:a4:ea:cc:44:c1:23:03:54:d5:e6:88:7b:45:
98:e1:9a:8b:87:5a:59:6e:67:d9:0d:98:6a:c3:05:15:de:6c:
20:28:e0:83:bd:ce:0c:af:ca:38:1b:d4:3f:31:54:92:2b:83:
c6:05:b8:eb:1f:1c:92:7f:0b:15:7f:7f:5b:b4:df:73:0d:81:
83:bd:2c:19:44:6f:a9:85:70:a3:68:c4:11:d6:e3:1a:db:61:
dd:8e:ce:9a:d6:7c:c9:f4:46:f1:64:96:11:f7:1a:aa:39:f7:
ab:8a:26:fc:43:f0:53:61:7c:9a:fe:6b:16:17:a2:aa:48:77:
2a:11:85:61:48:b9:1a:c0:19:ed:f4:0d:2a:fb:2c:12:e8:99:
1f:34:2e:a5:93:57:16:30:43:92:43:f9:73:d6:3d:11:16:82:
16:4c:7c:89:36:d8:06:cb:f5:4e:fa:d6:1b:5e:0e:2e:52:2a:
57:17:cd:d4:fe:1c:74:63:0d:61:b1:a5:bb:ba:ca:2d:2d:0c:
0c:03:ff:74:ab:55:91:8a:2c:8f:88:28:80:94:9a:e9:da:f0:
c8:dc:22:77
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:41:40 2025 by rpki-client