Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/MTy8a4Tv6-9Y73GHdBXeVMcjbRY.roa
File: MTy8a4Tv6-9Y73GHdBXeVMcjbRY.roa (raw, json)
Hash identifier: 3+Z8FgZVcALmhzhxWpPqN5yLYMgIQJzrR8heg/BGo/U=
Subject key identifier: 31:3C:BC:6B:84:EF:EB:EF:58:EF:71:87:74:15:DE:54:C7:23:6D:16
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01915629B5F7059F45A9CA9CB44554404E9D
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/MTy8a4Tv6-9Y73GHdBXeVMcjbRY.roa
Signing time: Thu 15 Aug 2024 13:10:59 +0000
ROA not before: Thu 15 Aug 2024 13:10:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Thu 15 Aug 2024 14:04:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:56:29:b5:f7:05:9f:45:a9:ca:9c:b4:45:54:40:4e:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 15 13:10:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=313cbc6b84efebef58ef71877415de54c7236d16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:cd:41:1e:c5:d4:d9:21:59:f5:9b:89:ea:f9:
8b:c1:9a:00:03:5a:de:d0:4a:48:a6:51:9c:91:90:
81:24:f6:a3:8a:84:a5:ba:b2:0e:07:6e:19:3e:11:
03:17:56:91:1e:93:07:2f:f2:00:28:6b:0f:55:87:
bb:f8:93:ab:04:0c:a5:db:b1:03:83:71:1e:46:b0:
ff:ef:f0:97:6f:70:3c:66:fb:20:a7:f0:e6:2f:4d:
2c:00:36:4b:f5:f1:0c:ae:de:77:59:d3:92:10:5d:
71:ff:44:c4:3a:bf:3b:07:b1:8c:ab:61:13:8f:e8:
8c:f6:8b:d4:27:bf:e0:e7:d0:e7:d8:e6:38:50:b5:
9b:78:1e:52:7d:6e:1a:f4:06:3d:dc:ec:48:4a:fd:
41:2b:63:f8:ae:71:3c:11:b2:b5:44:79:e5:2b:34:
c6:b9:5a:f0:ee:69:e7:1d:cd:22:85:12:b3:3f:21:
5a:3a:6a:3c:d3:38:bc:a6:bb:9c:8a:d3:c4:16:6b:
fc:35:1d:ff:64:1e:b3:ce:12:f7:3c:1a:33:5c:05:
f7:25:c5:ca:0d:fb:00:0b:59:b4:c4:f2:27:bc:7d:
a5:79:9d:6c:3a:aa:b3:5b:b8:8a:19:1b:ae:f6:0a:
9c:0a:41:cc:01:0c:9b:16:9c:29:7b:f1:7c:62:43:
cd:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:3C:BC:6B:84:EF:EB:EF:58:EF:71:87:74:15:DE:54:C7:23:6D:16
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/MTy8a4Tv6-9Y73GHdBXeVMcjbRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
17:47:2f:14:7c:bd:12:75:d8:03:41:79:2c:4e:40:2c:e5:48:
4f:95:a2:37:96:ad:e5:4c:aa:bc:b1:b0:6d:33:88:ea:b0:9f:
95:93:70:0a:ee:bc:b4:5d:96:bb:fd:23:36:b3:38:98:f9:63:
15:23:53:df:98:9a:58:7d:c4:27:21:89:eb:7a:ac:da:95:ab:
af:ed:f9:9f:1d:49:87:3f:d7:e2:16:e1:f7:e8:98:1f:40:3d:
78:f6:2d:02:b6:fc:32:d9:45:3d:ed:ad:f4:3d:1d:bb:e9:32:
38:29:57:51:e8:a7:62:78:80:59:f8:86:d0:88:af:4c:9a:6e:
cc:8b:45:cf:b6:32:72:1b:82:8b:c4:1c:6b:dc:08:f7:23:a0:
18:80:fa:91:63:de:66:38:8c:a4:ce:79:95:9f:5f:9e:56:4c:
2e:6b:5c:fb:db:2f:e7:f2:4a:3e:d2:e9:e4:08:85:b4:f8:b2:
b9:db:bb:6e:30:66:24:6f:1d:15:68:5c:d4:7c:32:20:a0:f9:
b9:70:2f:26:52:c2:fe:27:43:4d:84:7c:9e:cc:0f:2e:9d:72:
72:22:28:5a:94:13:25:43:52:c2:b7:45:ee:5e:2a:57:cd:c0:
2b:6d:80:b2:84:3e:ec:97:64:cf:d2:71:75:b2:50:56:52:e8:
ae:f1:e6:52
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:49:27 2025 by rpki-client