Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/RSFeDL21uPEhfhWPTzW1hsDWQ0w.roa
File: RSFeDL21uPEhfhWPTzW1hsDWQ0w.roa (raw, json)
Hash identifier: zxT73V/95ZeM45WeYsEPRsA6R7YVIaDSb6jXvAtLAow=
Subject key identifier: 45:21:5E:0C:BD:B5:B8:F1:21:7E:15:8F:4F:35:B5:86:C0:D6:43:4C
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019180A795CE9619B083AE2E43716365454B
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/RSFeDL21uPEhfhWPTzW1hsDWQ0w.roa
Signing time: Fri 23 Aug 2024 19:12:32 +0000
ROA not before: Fri 23 Aug 2024 19:12:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Fri 23 Aug 2024 20:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:80:a7:95:ce:96:19:b0:83:ae:2e:43:71:63:65:45:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 23 19:12:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=45215e0cbdb5b8f1217e158f4f35b586c0d6434c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f9:0f:81:0d:41:d1:bf:c4:c9:f6:60:96:27:
26:96:a0:3e:f4:c8:b3:ea:36:7c:9f:2e:d3:cf:f8:
e5:5b:b4:0a:61:19:6e:46:56:b4:3c:a6:06:f6:ff:
e0:d8:28:2f:4f:06:22:93:10:d2:eb:66:82:41:f7:
f5:34:97:f7:2c:3d:b3:3c:ae:15:20:0f:71:99:a6:
f2:05:f2:51:99:fe:bc:95:dc:60:e2:be:b5:fc:da:
41:b3:8c:6e:91:f5:cc:75:84:ca:32:47:48:c7:4a:
17:4a:0d:9e:77:3b:5c:7c:b3:48:33:d8:f4:1c:b4:
54:8e:d7:e9:f9:61:40:af:e3:e6:d1:7c:5b:c2:74:
91:0e:61:a6:c5:79:c5:16:75:66:cd:37:0b:91:65:
9a:26:3f:80:58:02:6d:12:51:37:74:36:cb:2d:c1:
a6:e2:5a:1b:10:a3:b2:ff:ee:38:fe:df:1a:e4:38:
8e:11:af:cd:8f:8c:81:4c:c8:83:5d:7d:5d:bc:6f:
4a:4b:28:04:50:70:42:00:fd:2a:10:b7:f8:cd:19:
90:c7:8e:9c:19:81:44:22:aa:f2:27:2e:6d:59:e3:
dd:4d:eb:d5:ba:a9:17:74:b1:ee:84:e8:dc:72:aa:
5a:4c:2c:61:2e:92:81:55:a3:f0:37:55:86:5f:76:
36:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:21:5E:0C:BD:B5:B8:F1:21:7E:15:8F:4F:35:B5:86:C0:D6:43:4C
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/RSFeDL21uPEhfhWPTzW1hsDWQ0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
0a:a0:a6:e9:ff:52:04:72:c3:ea:e6:4b:24:35:60:61:9c:73:
25:40:23:a7:70:5e:35:1d:57:5c:c6:3a:4f:a6:a9:e7:7b:6b:
08:e3:51:17:ff:fd:4f:ac:df:fc:ce:0f:4e:c6:53:2a:af:e0:
37:dd:cc:fa:e8:3b:81:21:bb:29:72:eb:1f:8e:08:00:a7:1b:
d8:a6:b2:88:75:7f:f5:a8:f3:34:bd:c4:f4:57:9e:50:42:db:
17:2b:ec:fe:0d:d1:29:76:80:c3:cb:02:f8:65:ca:c8:51:95:
1c:1a:a3:af:e2:41:f7:a1:ea:a0:2a:a6:44:56:cf:49:5e:98:
8a:cb:63:6e:c1:cb:f7:a4:65:03:44:b0:84:36:d9:83:9a:c6:
8d:f4:5f:12:f8:c1:a8:d2:83:fb:f5:92:07:9d:93:82:a3:c6:
3d:a1:21:b5:28:c2:04:5b:be:85:18:bc:d8:f8:76:cc:a5:97:
81:ce:5a:4e:d8:1b:24:d9:47:43:e9:83:9c:38:ee:15:5d:5b:
9a:a2:61:a7:33:a5:fc:2e:88:54:a0:53:79:07:45:ce:ed:86:
31:34:35:c6:dd:e8:52:b0:11:7c:96:74:49:bd:0c:ec:44:ff:
85:23:4c:a6:a8:1b:b1:0c:9f:d6:05:49:0d:7a:0b:95:04:df:
ea:4e:e9:2c
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Aug 24 00:08:27 2024 by rpki-client on console-fra.rpki-client.org