Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/LC_O8wtb2E-JM-u4W8gQhEee8-Q.roa
File: LC_O8wtb2E-JM-u4W8gQhEee8-Q.roa (raw, json)
Hash identifier: 2fngiZt0BZiPt40l6SLwFD/LiEcon2pTcj87WiwqRsk=
Subject key identifier: 2C:2F:CE:F3:0B:5B:D8:4F:89:33:EB:B8:5B:C8:10:84:47:9E:F3:E4
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191AFA48D7534289BCA88674960815E1A86
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/LC_O8wtb2E-JM-u4W8gQhEee8-Q.roa
Signing time: Sun 01 Sep 2024 22:11:22 +0000
ROA not before: Sun 01 Sep 2024 22:11:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Sun 01 Sep 2024 23:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:af:a4:8d:75:34:28:9b:ca:88:67:49:60:81:5e:1a:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Sep 1 22:11:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2c2fcef30b5bd84f8933ebb85bc81084479ef3e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f5:a4:0c:d2:24:b0:2b:0b:a9:f1:b5:46:68:
5f:36:79:dc:b2:09:fb:81:1b:09:2d:dc:c8:88:b3:
d2:9a:08:bf:a9:b6:a0:25:28:f5:b8:98:62:c2:3d:
cb:b0:35:1d:4d:ac:68:ad:c5:3c:96:6f:d0:af:29:
e9:64:8e:89:ee:b0:ce:2f:87:b8:d1:b5:27:1d:37:
d1:63:64:b1:e3:72:da:15:f2:0d:cd:a5:c3:31:52:
12:9c:b5:89:24:8d:0f:af:d2:70:b0:8a:63:09:0f:
b8:cf:71:01:8b:2d:64:62:f2:59:c2:bd:1d:47:63:
14:b5:d8:ee:e5:5c:9c:a9:d9:96:53:5c:9e:f1:d9:
e1:5d:cf:58:b4:d3:65:d7:79:bf:bd:65:75:ad:4a:
fe:bf:31:ff:06:e4:56:af:cb:3b:02:93:f7:15:af:
c7:93:b1:97:7e:13:b7:81:0c:5f:6c:1e:2d:d9:01:
48:a0:6f:8d:79:b3:52:67:1c:40:1d:44:9f:fd:c8:
a8:48:7e:60:d2:7f:01:05:c9:e7:25:24:b5:75:a6:
c6:14:50:7e:c9:19:45:e4:34:3e:b8:26:6a:1d:5a:
b6:21:31:a0:cf:f3:9b:92:7e:5c:d8:d3:95:b5:bf:
76:a5:a1:65:e0:b9:2f:67:1d:a4:3d:b4:9b:4e:99:
b1:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:2F:CE:F3:0B:5B:D8:4F:89:33:EB:B8:5B:C8:10:84:47:9E:F3:E4
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/LC_O8wtb2E-JM-u4W8gQhEee8-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
7c:1d:74:c4:a0:ab:c2:1e:a2:75:4e:3d:c6:1a:32:e2:31:ee:
d2:b0:c8:c5:37:ea:c9:83:29:d9:58:88:dd:f7:84:96:ae:95:
9e:1c:19:be:7a:08:09:3e:ad:02:50:e2:68:41:50:78:34:e9:
67:5e:72:7d:b6:b3:e8:7b:05:39:32:77:57:cd:9e:a6:23:12:
39:0f:a1:6e:70:98:92:98:07:8f:5b:03:25:aa:12:42:38:d2:
55:36:ad:50:4d:38:d4:ab:21:aa:69:c5:75:6e:21:d3:c6:d8:
71:0e:1c:81:f8:ec:e4:45:88:56:da:4b:7c:cf:ca:e4:1e:ec:
7c:7c:48:dc:36:b6:c8:77:9d:d2:d9:57:c1:d3:37:4d:75:e0:
38:e9:ad:ea:ea:93:c6:14:f8:4f:f8:a6:06:cf:17:b3:c1:db:
90:69:96:9d:de:c3:10:55:22:42:c3:5b:7c:b8:f1:5e:d4:d0:
c3:5e:ff:d6:4b:41:78:f9:36:ba:18:2c:cd:6b:17:5e:10:c3:
57:98:5e:56:3d:dd:c8:e2:11:d3:72:44:b2:d5:b2:de:a0:c0:
11:76:50:ee:01:09:27:c6:0d:51:f3:eb:99:48:9c:89:5a:42:
fb:4b:f7:fd:b8:7f:52:e6:de:4f:1d:b2:1b:a5:cd:0b:59:e9:
ac:8c:d6:53
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:10 2025 by rpki-client