Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/b0zxTQrx-0uuceY8lfIRPZ7TM2I.roa
File: b0zxTQrx-0uuceY8lfIRPZ7TM2I.roa (raw, json)
Hash identifier: J+TQRLw26JSeo7IsqgPdeU2AZ28kGshgby1/Be1+42k=
Subject key identifier: 6F:4C:F1:4D:0A:F1:FB:4B:AE:71:E6:3C:95:F2:11:3D:9E:D3:33:62
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019117BA828E9545D1FD60B3AA9D99D78AB9
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/b0zxTQrx-0uuceY8lfIRPZ7TM2I.roa
Signing time: Sat 03 Aug 2024 10:13:04 +0000
ROA not before: Sat 03 Aug 2024 10:13:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Sat 03 Aug 2024 11:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:17:ba:82:8e:95:45:d1:fd:60:b3:aa:9d:99:d7:8a:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 3 10:13:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6f4cf14d0af1fb4bae71e63c95f2113d9ed33362
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:68:86:7b:97:22:61:7e:33:00:a9:e4:4a:47:
98:0e:30:f1:66:93:d8:f3:a2:94:a9:da:aa:c1:96:
25:d7:6b:92:71:36:2b:1a:18:9b:91:29:a2:36:53:
39:69:b5:2a:ed:e0:43:19:0e:5a:98:ad:15:46:55:
8c:2f:09:f4:20:bb:1a:d9:cc:79:80:0e:cd:bd:7e:
b8:9c:68:75:11:da:6a:56:69:ce:2d:8a:e2:63:75:
c0:00:7f:06:77:3b:32:19:45:d7:46:a4:eb:b1:32:
d0:55:7a:59:03:73:04:d0:5d:7e:8d:f8:5d:3d:36:
ed:c7:87:7b:6c:67:2e:f2:b1:32:8a:36:b0:c3:1b:
fa:01:38:fd:9d:9c:0a:b8:77:e0:55:b8:e3:b0:f8:
16:ab:1b:c0:2b:63:d0:c3:0d:fd:20:4a:01:c3:5e:
53:7f:0c:1f:b5:0a:22:25:00:5d:3e:36:8e:fc:7c:
f7:64:13:a9:8d:36:57:ae:91:67:11:ca:3e:06:a3:
27:9c:e0:0c:57:3b:fb:07:c9:e2:1b:5c:9e:43:e8:
19:ac:cc:d3:2d:de:2c:19:28:58:00:95:d3:d5:6e:
d5:60:3b:83:d4:07:a5:5a:f9:d1:ce:06:0f:a3:61:
3e:d5:28:9e:1f:5f:87:61:fa:3b:73:1d:ce:9f:04:
e6:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:4C:F1:4D:0A:F1:FB:4B:AE:71:E6:3C:95:F2:11:3D:9E:D3:33:62
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/b0zxTQrx-0uuceY8lfIRPZ7TM2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
40:7c:b6:d3:6c:6f:47:a8:49:c3:70:ed:ca:86:89:e2:64:58:
57:c0:0d:23:1e:95:58:28:e8:d0:0c:40:8b:cf:18:86:46:c4:
3d:e4:65:f1:7e:35:7d:bb:8f:f2:3b:16:32:48:a7:c0:40:08:
cc:85:93:27:02:2f:11:b8:33:0c:b0:43:0a:d5:e3:ca:d7:40:
4a:b2:57:1a:e7:77:33:fc:20:64:1c:fe:3a:7c:70:f0:71:44:
73:1d:a1:0e:4c:57:06:d1:16:26:8f:1b:2d:e7:10:9f:44:ea:
56:93:37:49:78:fc:9c:47:78:05:f1:83:7d:96:9d:8b:05:24:
10:32:0f:e3:aa:4c:d5:83:10:66:0f:f7:70:72:d4:7a:3c:b0:
b7:b5:a0:8a:b6:1d:c7:e1:b9:70:e6:9b:7b:66:45:c6:f4:fc:
2a:02:b1:73:d7:56:a7:93:9d:21:7b:48:77:95:bb:a7:13:e7:
28:16:fb:41:9e:b4:5d:94:60:71:44:f8:a1:22:0b:5f:c7:1b:
e5:8a:0c:14:41:ed:19:3f:44:9c:11:b5:f3:a3:ff:62:44:08:
94:62:3f:78:58:b6:7b:ac:58:f1:88:64:64:9c:85:77:55:74:
4f:16:61:4e:8c:91:8d:dd:ef:33:b4:d9:23:0b:fb:64:8f:89:
11:7a:76:1a
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:51:45 2025 by rpki-client