Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/_4ulZAWpKRU1XWPTFrcd8WsN9K4.roa
File: _4ulZAWpKRU1XWPTFrcd8WsN9K4.roa (raw, json)
Hash identifier: ORtAcrd7iSBBpvjQdd3heTnZPTBzX8fcYZY10OktoC8=
Subject key identifier: FF:8B:A5:64:05:A9:29:15:35:5D:63:D3:16:B7:1D:F1:6B:0D:F4:AE
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191874D67C469ACD99E2791C8FDCC29AD41
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/_4ulZAWpKRU1XWPTFrcd8WsN9K4.roa
Signing time: Sun 25 Aug 2024 02:11:22 +0000
ROA not before: Sun 25 Aug 2024 02:11:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Sun 25 Aug 2024 03:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:87:4d:67:c4:69:ac:d9:9e:27:91:c8:fd:cc:29:ad:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 25 02:11:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ff8ba56405a92915355d63d316b71df16b0df4ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e7:7d:05:db:31:da:ab:06:37:42:d1:b5:7b:
bf:17:74:59:12:09:6d:4e:c0:22:44:75:00:a5:6e:
19:55:b8:bc:c5:6c:49:50:84:b8:08:ab:91:60:a5:
18:93:c2:6f:c2:3b:92:4f:73:df:81:3f:f1:90:5c:
d3:19:bb:47:08:e3:62:a1:d8:c5:5f:cc:20:fd:03:
42:3f:8a:e7:c3:cf:f7:1f:e5:6e:55:9c:ae:a0:72:
14:52:30:31:be:66:87:13:f6:ec:23:21:48:6a:7a:
07:f2:08:0e:f2:c3:ca:56:0f:2f:49:b5:54:54:59:
00:bb:6e:11:fe:f3:b3:1e:50:d3:ff:6f:99:0a:3f:
20:04:1b:82:4c:d9:80:77:13:47:70:a8:ae:61:b1:
7a:78:02:8f:a3:1e:d3:13:1e:6e:d5:03:b7:f1:e3:
99:a7:ce:cd:9f:76:32:b0:cb:0f:95:09:ff:48:07:
a8:76:14:f9:44:4e:28:ea:2b:fe:4a:b8:bc:8d:30:
bd:0d:ea:c7:21:64:1c:aa:d1:1f:b4:31:e4:1c:1e:
bb:ed:82:1e:e6:43:70:1b:cf:aa:c5:ef:f6:21:a4:
0e:0f:14:fc:70:9d:f3:72:d0:25:7d:15:d6:1d:fa:
e0:fc:b4:5f:61:65:a4:94:cd:ac:eb:17:89:66:a0:
e6:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:8B:A5:64:05:A9:29:15:35:5D:63:D3:16:B7:1D:F1:6B:0D:F4:AE
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/_4ulZAWpKRU1XWPTFrcd8WsN9K4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
20:39:f9:fc:1c:b6:cd:a5:32:0e:2e:09:6c:27:4f:ac:66:22:
8f:f3:6f:3b:ff:8d:25:a9:97:3c:0a:ec:ac:ca:1f:18:49:57:
1b:64:36:09:ff:a8:17:10:8d:e7:4f:40:69:1c:dd:a7:75:35:
fe:75:b0:ef:10:43:b6:53:48:69:11:07:c9:e5:27:cd:d4:46:
f0:dc:e5:a2:db:f1:ec:02:80:0d:4d:fa:5d:1a:48:d3:e4:c3:
dc:d2:ac:86:c4:2e:b1:29:e2:ab:d6:e2:ce:bd:c5:22:bc:58:
d9:e8:00:2f:2c:07:59:05:6b:ff:4a:d4:f8:14:49:0d:0c:99:
15:7f:fc:62:60:11:9e:94:f2:68:e0:98:a8:36:16:8d:a8:14:
24:3a:b9:54:0a:9f:39:7b:c1:81:de:e6:58:67:31:bb:74:6c:
3b:76:1f:f2:91:72:a2:dd:6d:aa:88:67:eb:ae:b0:f6:f7:1e:
d2:90:3a:2a:5e:7c:ab:b7:65:3b:c9:21:1f:7a:71:0d:9f:37:
4f:39:69:73:81:d7:52:7b:6e:c5:0d:81:42:a0:4c:ae:14:75:
de:e9:97:7a:59:00:28:b8:db:cf:88:a4:d6:8a:3b:a8:7d:fa:
be:cd:58:b3:a7:c4:6d:ba:28:cf:3b:12:57:c2:a6:69:7b:3f:
90:26:45:75
-----BEGIN CERTIFICATE-----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==
Generated at Sun Aug 25 05:48:13 2024 by rpki-client on console-fra.rpki-client.org