Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/cv-_839bXcvu5f8Gpy-jGe722w0.roa
File: cv-_839bXcvu5f8Gpy-jGe722w0.roa (raw, json)
Hash identifier: 50B/Mwl1PCoQybGmwZj/hkt1eYhuhQD3vG0w29QDLZs=
Subject key identifier: 72:FF:BF:F3:7F:5B:5D:CB:EE:E5:FF:06:A7:2F:A3:19:EE:F6:DB:0D
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01919B78105E07870B06369F2CF4609F5CC0
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/cv-_839bXcvu5f8Gpy-jGe722w0.roa
Signing time: Thu 29 Aug 2024 00:10:22 +0000
ROA not before: Thu 29 Aug 2024 00:10:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Thu 29 Aug 2024 01:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9b:78:10:5e:07:87:0b:06:36:9f:2c:f4:60:9f:5c:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 29 00:10:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=72ffbff37f5b5dcbeee5ff06a72fa319eef6db0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1e:db:8f:41:29:49:db:e1:c4:3b:be:84:c1:
f9:8e:e6:da:e0:8d:9e:7a:ea:66:63:3e:bb:3c:05:
0e:1e:6d:b4:d1:fc:d6:3f:b8:80:5b:80:a7:40:82:
cc:3b:4d:38:62:a4:2e:32:07:3d:48:12:2f:1e:c1:
dd:9b:03:a2:73:60:5a:1c:de:33:62:19:82:13:2f:
16:5b:03:19:ef:44:a8:e5:15:a9:74:7a:cf:72:d1:
be:55:5d:36:47:21:b1:5d:55:52:67:81:58:c2:e9:
b3:ab:94:f4:9e:d3:1d:0f:69:fe:93:17:09:aa:b6:
4e:06:60:f2:82:dc:cd:ae:e2:7f:19:91:f5:91:0d:
6f:13:da:16:7b:c8:6e:c8:3d:3b:06:2b:23:6b:88:
67:93:13:64:98:99:ca:b3:64:35:4b:8b:a0:70:50:
c0:83:47:91:eb:b7:62:bb:7b:44:60:91:14:ce:b4:
90:fd:18:d5:5e:94:9e:6b:c3:4e:02:88:1c:94:9d:
9b:0d:72:c4:f0:18:0d:3b:4b:35:03:74:cb:76:a3:
cc:ab:9b:bc:8f:02:2d:02:1d:69:38:6e:48:ee:68:
28:20:0e:69:b3:e9:c7:d5:5e:db:45:00:62:c8:88:
26:22:5c:8d:81:c5:10:e4:5a:0f:8e:38:8e:8b:b4:
9a:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:FF:BF:F3:7F:5B:5D:CB:EE:E5:FF:06:A7:2F:A3:19:EE:F6:DB:0D
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/cv-_839bXcvu5f8Gpy-jGe722w0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
60:6e:07:09:a5:8c:5a:fb:96:ef:4d:65:ac:48:a0:72:be:9c:
ae:4a:06:b8:ef:43:e8:73:e2:4a:c6:47:90:8f:a6:a8:f4:04:
dc:9e:e8:5a:2b:24:b7:06:7e:d3:02:99:60:05:07:4c:9b:74:
58:6c:30:b4:b8:52:e8:4f:c9:fa:35:48:c8:2b:8d:ac:88:db:
8f:01:a8:f1:10:f5:32:e9:60:0c:b8:27:a8:8b:66:90:85:06:
05:f8:57:9c:9b:84:31:06:49:e5:68:20:7d:e9:de:78:dc:e7:
39:fa:24:84:38:03:83:03:c3:d3:ec:9c:52:da:2f:0b:9b:c3:
c3:60:d9:4d:dc:f0:6c:e6:85:72:c0:c3:48:12:a5:50:dd:00:
e8:e5:54:25:5e:8f:2b:92:23:47:b5:8b:b1:27:36:35:d7:92:
25:dd:18:b0:d7:33:4b:fc:d3:f8:33:21:f1:67:13:54:99:58:
16:47:bc:99:53:ef:26:5c:f9:22:b4:7d:8d:4a:37:53:56:b6:
0d:7c:5f:fa:56:9f:a3:f9:85:22:7e:65:3c:95:9f:c4:f5:a5:
b5:4b:7f:eb:23:7a:5b:1f:b1:a6:f8:63:fd:e9:74:c1:38:a7:
83:38:09:4f:9a:db:10:93:c3:f8:eb:02:7d:1b:c4:e6:e1:29:
ea:7a:55:b8
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:15 2025 by rpki-client