Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ReGdoyoKIQctTqqjmahmnAp-Jbk.roa
File: ReGdoyoKIQctTqqjmahmnAp-Jbk.roa (raw, json)
Hash identifier: GaxyRlEQeBMDbatFGGEWMZKX4zjueHJZSJ4zGNRKKd0=
Subject key identifier: 45:E1:9D:A3:2A:0A:21:07:2D:4E:AA:A3:99:A8:66:9C:0A:7E:25:B9
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191A70F49B147DB8830F5576ED030A6D3BA
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ReGdoyoKIQctTqqjmahmnAp-Jbk.roa
Signing time: Sat 31 Aug 2024 06:11:22 +0000
ROA not before: Sat 31 Aug 2024 06:11:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Sat 31 Aug 2024 07:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a7:0f:49:b1:47:db:88:30:f5:57:6e:d0:30:a6:d3:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 31 06:11:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=45e19da32a0a21072d4eaaa399a8669c0a7e25b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:42:9c:41:6e:79:35:14:d8:a0:f3:35:67:fb:
82:e1:5e:79:33:5a:15:51:9f:50:77:19:7b:10:6b:
32:0a:ec:b8:5e:7d:bc:bd:31:8b:64:0a:00:ac:df:
da:c8:d5:f7:f6:ce:c1:2f:9f:c6:3a:57:3c:03:95:
10:2e:4a:50:3a:7e:46:0c:48:80:01:68:4d:21:bc:
2a:2e:8c:44:de:ae:cc:e6:0e:00:60:35:c2:ea:72:
a6:0a:7e:8c:36:a5:1b:ab:3f:ba:88:62:c8:d0:70:
65:2e:5f:f0:07:37:f2:2c:04:43:30:7b:fd:bd:37:
37:b5:f0:1b:fd:f4:89:96:f0:45:41:28:73:c4:06:
0d:30:4f:21:cb:52:30:09:60:d2:ce:e5:d6:c7:9f:
3c:c3:81:e8:73:02:3a:0e:a1:97:9e:a1:59:b1:47:
9c:b9:b5:33:cc:9f:e3:fd:86:09:bd:72:6a:7d:da:
6d:c9:3b:ca:7d:81:0f:cc:09:66:cc:1f:70:64:4c:
63:93:24:7d:37:79:42:7b:60:da:99:d9:78:6a:f6:
f5:b9:e7:fc:d7:b7:1b:6f:f8:43:29:54:cb:81:09:
11:49:59:6c:ec:e5:47:f1:d8:7f:81:2e:34:11:d8:
64:e3:9a:1d:68:d1:87:37:88:bc:4d:6a:8a:75:82:
dd:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:E1:9D:A3:2A:0A:21:07:2D:4E:AA:A3:99:A8:66:9C:0A:7E:25:B9
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ReGdoyoKIQctTqqjmahmnAp-Jbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
14:5c:56:1c:c5:cc:e5:40:90:07:46:d9:b3:42:d8:ed:9f:5e:
ee:e6:2d:de:ab:e0:25:55:ad:8c:d4:45:b9:87:c6:26:ef:71:
8d:9c:ec:6a:25:3a:ab:08:16:81:96:35:70:39:4e:c9:56:34:
49:30:91:e1:c7:42:f6:a7:74:e4:b0:7e:08:64:14:51:af:33:
f0:9d:af:e1:8f:d3:bb:13:36:bd:bc:75:04:c3:b7:32:36:9a:
48:38:cc:24:53:f0:72:c7:a9:4b:da:2a:51:19:30:67:1b:fe:
3b:2d:0f:24:bd:23:cf:19:6e:c2:74:72:ab:5a:f0:18:f3:6e:
ae:94:d4:69:54:6e:48:90:d4:d3:a0:33:38:46:4f:e7:fc:78:
a8:36:52:74:12:0b:6b:3a:9f:a0:0b:7d:9f:37:e4:45:ef:bf:
14:29:ad:e5:fc:cb:bd:99:1f:47:32:4e:5f:2f:22:ff:3f:76:
5f:be:29:0c:f8:ec:51:5b:2d:3a:d2:42:14:ea:0f:13:c2:36:
55:89:67:cb:d1:fa:25:66:c0:58:bc:a6:3f:1a:33:38:04:aa:
88:fa:03:01:10:6b:a8:02:57:19:b7:f7:b3:2a:5e:2c:1d:de:
58:83:56:7b:e5:2e:e5:e0:58:db:5b:15:6c:94:a0:3a:b7:c9:
ea:df:c3:50
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Aug 31 09:16:37 2024 by rpki-client on console-fra.rpki-client.org