Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/SOJcfK_wV-wopV0YUhJJ9t4FMok.roa
File: SOJcfK_wV-wopV0YUhJJ9t4FMok.roa (raw, json)
Hash identifier: 6+nP5JLVD5vCMpWLl7VT/XhhoI9pqfXX0uwyW33CICs=
Subject key identifier: 48:E2:5C:7C:AF:F0:57:EC:28:A5:5D:18:52:12:49:F6:DE:05:32:89
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191050DA01435EF63BBD7913B2C2D1E2A4D
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/SOJcfK_wV-wopV0YUhJJ9t4FMok.roa
Signing time: Tue 30 Jul 2024 19:11:04 +0000
ROA not before: Tue 30 Jul 2024 19:11:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Tue 30 Jul 2024 20:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:05:0d:a0:14:35:ef:63:bb:d7:91:3b:2c:2d:1e:2a:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 30 19:11:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=48e25c7caff057ec28a55d18521249f6de053289
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:32:c9:d0:8f:68:95:c4:7c:2b:5e:87:9f:78:
a0:19:fd:a2:3e:6b:37:c0:91:9a:7b:f6:f0:cb:10:
03:be:10:e3:ad:ba:3e:33:89:c8:a9:0d:11:b2:5e:
74:15:26:1f:8a:27:71:09:d4:60:6f:2d:83:d3:37:
cf:94:7d:a6:d2:e0:ce:aa:76:ed:90:1e:69:74:98:
a3:a2:f0:22:bc:a3:a4:b6:07:af:51:57:82:66:a0:
be:8c:94:13:33:54:51:c0:3d:ff:5e:d2:d2:00:ac:
02:f7:7e:9e:d8:e3:33:43:0a:5d:8d:b0:43:99:27:
26:7f:96:25:4b:78:ac:0f:5b:5b:25:a0:78:48:52:
2a:c8:32:d1:a0:97:32:cd:93:44:b4:0c:b8:03:82:
2a:e0:f3:ee:ea:31:d0:73:a2:58:cd:ce:ef:ba:ec:
38:3d:66:bd:48:00:4b:78:a8:5f:7e:a4:9d:2d:9a:
44:ea:83:ed:8c:cf:51:c0:d2:c8:f8:30:96:93:60:
58:10:59:b4:3e:f3:6e:ec:07:e8:cb:b6:eb:33:c1:
a8:eb:90:d5:28:27:50:2a:87:5a:44:20:9c:53:ba:
e1:bb:ff:eb:30:07:a1:35:ef:97:ae:ad:44:f4:03:
b9:7f:8b:7d:a6:ec:96:5d:8f:40:fb:25:ad:73:6c:
99:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:E2:5C:7C:AF:F0:57:EC:28:A5:5D:18:52:12:49:F6:DE:05:32:89
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/SOJcfK_wV-wopV0YUhJJ9t4FMok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
5f:c1:84:f8:89:f8:af:88:a2:50:ee:de:47:93:30:46:b7:2b:
5e:ac:fe:18:fb:ff:dd:e7:30:ae:69:9f:ce:6f:4f:ee:a6:a0:
0e:e1:40:5d:44:de:98:e4:71:ce:86:6a:b3:e3:03:64:f4:ad:
fe:55:72:a2:00:64:88:30:ea:67:99:67:e3:77:cd:5e:0c:40:
cc:06:49:74:bd:08:bc:b5:a7:23:a0:d2:40:90:e6:0a:d9:0d:
05:59:da:68:c3:bb:7a:13:14:e1:a2:95:05:a2:96:a2:27:d6:
90:4e:fd:d5:33:63:0b:21:6b:5a:d6:87:1c:c4:dd:71:b5:d7:
da:b3:49:16:6a:e4:fd:7f:0b:3c:c1:44:e6:21:3f:6c:60:cb:
21:8f:ce:c9:79:9e:51:1b:0e:d1:b7:f3:ea:87:56:45:ad:6d:
6e:ab:48:6a:a8:3e:52:c7:8c:65:11:64:53:2f:d6:88:f2:62:
6f:6f:5e:4e:cc:72:8a:aa:0f:fd:92:95:6c:af:a8:e4:18:7d:
15:d1:ae:94:58:f1:22:a9:e5:9b:96:37:2c:c6:2f:79:6a:46:
86:15:e8:f2:7f:b1:6f:8b:9d:dd:6c:84:cd:84:6f:3d:37:4b:
00:71:24:3f:83:ef:ab:a5:98:c2:5e:d1:4f:7c:b6:8a:81:95:
ff:8c:00:01
-----BEGIN CERTIFICATE-----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==
Generated at Tue Jul 30 22:08:25 2024 by rpki-client on console-fra.rpki-client.org