Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/N17VE66WKZzSJuC3QZGPyiq7mFA.roa
File: N17VE66WKZzSJuC3QZGPyiq7mFA.roa (raw, json)
Hash identifier: 5H4ykzbbF0pd9+dc92iaKONM8Bv8AFEa9t6ZzkRwKpw=
Subject key identifier: 37:5E:D5:13:AE:96:29:9C:D2:26:E0:B7:41:91:8F:CA:2A:BB:98:50
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01916F0F8AF19BE9D561D150F29F1701550D
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/N17VE66WKZzSJuC3QZGPyiq7mFA.roa
Signing time: Tue 20 Aug 2024 09:12:55 +0000
ROA not before: Tue 20 Aug 2024 09:12:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Tue 20 Aug 2024 10:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6f:0f:8a:f1:9b:e9:d5:61:d1:50:f2:9f:17:01:55:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 20 09:12:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=375ed513ae96299cd226e0b741918fca2abb9850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b9:0e:1c:8f:07:f6:4b:42:93:0a:a4:53:eb:
1d:34:d6:4a:c0:bb:d6:39:41:6e:15:31:64:a2:94:
48:5b:74:dd:88:14:7e:07:ac:66:74:92:13:a2:d6:
15:d2:a0:b8:4b:6c:58:9b:28:ce:9a:cb:1f:51:66:
8b:31:ad:94:fc:d9:99:c4:c2:e5:17:ee:16:d9:96:
32:3b:1c:58:f2:99:01:78:ab:26:e7:5a:cd:6a:92:
76:00:00:70:21:08:24:1a:7a:32:0b:ae:84:00:8d:
82:32:4f:ae:04:8e:eb:4c:96:fb:cf:92:a0:f2:58:
a4:e9:e1:a0:e5:0e:52:23:12:4a:1b:bb:7b:47:89:
43:8e:f1:7d:ce:f8:44:e6:9f:f5:d4:c6:4a:fd:36:
c7:e2:b9:6b:76:11:45:ef:00:c0:c7:8e:c0:b6:9b:
41:88:1f:3f:f2:3f:9a:8f:8c:43:d1:e0:71:c0:36:
a4:bb:5e:65:85:f4:ec:a2:7e:ec:78:fe:1b:f1:f8:
1f:81:87:29:ba:bc:40:af:81:3c:1e:09:70:27:e7:
0f:b3:87:5a:76:b8:38:90:71:cd:69:48:ff:f2:d6:
00:30:be:59:fd:51:f5:48:1e:5c:c4:ca:2d:8c:ce:
34:5a:dc:69:e4:af:a0:f5:65:a0:98:8c:da:88:39:
5b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:5E:D5:13:AE:96:29:9C:D2:26:E0:B7:41:91:8F:CA:2A:BB:98:50
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/N17VE66WKZzSJuC3QZGPyiq7mFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
7a:aa:4e:07:0b:42:5e:db:1d:dd:5e:7d:66:48:11:89:61:f5:
ae:30:5c:fd:2e:a3:c3:af:31:37:75:e2:8b:b6:ef:ec:b8:46:
05:fc:39:6f:a6:42:92:7e:9f:f5:33:ab:95:2d:a8:3d:89:c7:
88:ac:0b:00:9d:c4:88:7d:65:b4:c7:6e:ab:dc:f1:ed:f6:c1:
0f:04:0f:bb:e1:14:c1:4b:92:9e:42:79:1d:91:50:7d:a2:7d:
9c:2e:c5:90:92:95:86:15:88:17:59:74:66:fe:09:fb:fc:1d:
15:9d:e5:c6:4f:fb:80:e2:df:8f:d5:7e:58:88:d0:fb:0f:d8:
a1:ce:06:75:a9:f9:37:43:1b:93:11:4a:25:e2:06:73:6a:c6:
09:6b:41:74:e0:5f:2b:1b:6f:a3:34:4e:8f:78:44:a9:32:ea:
3e:e0:e0:31:52:87:5a:ff:cb:95:18:ff:d4:07:08:ec:51:a1:
d7:56:db:af:c0:b7:6a:e7:5e:c1:08:0c:d8:dd:a4:f5:ea:34:
5d:66:de:85:79:c7:1c:21:58:06:5e:ff:35:ae:9d:97:ea:fa:
94:fd:fa:49:0a:78:dd:05:c7:4a:98:f5:c8:2e:d4:a7:85:78:
f7:64:c7:41:00:4f:03:6b:36:bf:e4:7a:10:21:bb:cb:5a:84:
37:00:43:96
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Aug 20 14:37:36 2024 by rpki-client on console-fra.rpki-client.org