Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/cXGRhRple-hRojtz3LLMgQ-SVOc.roa
File: cXGRhRple-hRojtz3LLMgQ-SVOc.roa (raw, json)
Hash identifier: 6x0EeS6aRJcVh7+1RIVOiRlhOcZo7RaC7daXx/AXyQk=
Subject key identifier: 71:71:91:85:1A:65:7B:E8:51:A2:3B:73:DC:B2:CC:81:0F:92:54:E7
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01916596BAE450C41678D32E40BF3CEFCA4E
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/cXGRhRple-hRojtz3LLMgQ-SVOc.roa
Signing time: Sun 18 Aug 2024 13:04:22 +0000
ROA not before: Sun 18 Aug 2024 13:04:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
2001:67c:64:ffff:0:191:6596:9ba1/128 maxlen: 128
Validation: Failed, certificate revoked on Sun 18 Aug 2024 13:12:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:65:96:ba:e4:50:c4:16:78:d3:2e:40:bf:3c:ef:ca:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 18 13:04:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=717191851a657be851a23b73dcb2cc810f9254e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:47:b5:a8:ff:38:45:fa:09:78:72:17:51:bf:
b3:26:ed:62:29:21:30:7d:06:ee:a0:7e:30:2e:2f:
94:a8:a1:ab:03:d8:64:e6:9b:d6:d8:88:17:c1:38:
b3:71:32:3d:12:a1:87:2a:84:59:30:d3:f2:4c:d4:
b0:ab:ff:7f:62:a2:c4:3e:f0:7d:f0:64:59:e3:c5:
72:69:6c:96:4e:4d:94:bf:f6:bc:34:74:45:85:be:
ab:3f:67:9a:4e:9e:dd:62:ca:96:76:c9:ee:c9:6e:
d4:82:bc:41:79:e7:09:03:98:8c:58:97:15:72:34:
ae:18:51:6a:17:b6:cf:dd:50:57:e6:38:f3:5c:95:
a3:ef:5b:ae:c7:30:0f:eb:1c:5d:6c:02:f1:fe:90:
0c:8f:df:34:19:cf:0f:e8:93:a3:fc:97:e6:cc:18:
4e:a6:d3:80:70:de:b9:1b:d2:e2:4e:91:e4:47:a7:
37:4d:88:42:74:ca:c1:98:8f:de:36:1d:11:69:39:
75:cd:dd:09:d4:4f:1b:c2:5c:13:52:37:2b:bb:fd:
8f:d7:1f:9f:89:a2:fa:05:53:09:38:48:ca:62:48:
89:dd:d7:c5:03:f3:e4:ff:7d:63:3d:9f:ea:ce:ba:
d0:74:73:5f:4f:d5:81:41:d0:7d:2c:9a:66:c3:85:
ef:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:71:91:85:1A:65:7B:E8:51:A2:3B:73:DC:B2:CC:81:0F:92:54:E7
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/cXGRhRple-hRojtz3LLMgQ-SVOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
2001:67c:64:ffff:0:191:6596:9ba1/128
Signature Algorithm: sha256WithRSAEncryption
5d:6a:25:ca:5d:41:c2:08:55:8c:b5:24:10:52:d0:44:d5:06:
6e:5d:42:b0:74:f9:dc:56:40:d9:2a:d6:8b:5a:08:5b:21:f3:
46:9f:f1:58:55:e3:ea:9f:aa:6f:af:f4:75:24:7d:d0:ce:43:
e4:47:84:9f:7e:26:62:b7:d3:ec:ad:90:d0:d7:86:43:55:b8:
c0:a9:5d:8e:b8:47:eb:96:3c:0e:7f:a2:26:86:89:e4:9e:6a:
3f:c3:2e:8d:7e:25:2d:0b:4a:e2:b9:63:25:80:42:8c:08:a3:
92:91:86:b0:19:ad:68:72:7f:82:35:83:b4:83:5d:cb:4a:0d:
e8:5b:f5:2d:d7:58:e0:64:de:29:53:82:92:75:d3:01:5f:5b:
ee:83:64:40:36:ca:3d:15:97:b0:ad:0c:26:2e:5a:8b:47:42:
d6:38:be:f6:ba:6d:b9:27:91:41:86:2f:0d:2d:bc:89:85:60:
ab:e0:cb:36:91:2f:1b:f1:48:27:46:48:7e:ed:97:ee:c4:21:
d8:1b:5e:d4:e5:c9:eb:3c:00:ab:39:28:47:e0:8e:82:0b:25:
c4:74:42:ab:22:9c:70:01:7d:56:cb:0d:65:c1:bd:66:5a:c6:
13:fb:78:75:67:f4:64:c8:89:1f:f5:86:d9:3e:df:5a:6e:5b:
b4:f1:a0:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 18 17:27:30 2024 by rpki-client on console-fra.rpki-client.org