Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/dVcZVCBcixU1t7caqDZrX1oOt1E.roa
File: dVcZVCBcixU1t7caqDZrX1oOt1E.roa (raw, json)
Hash identifier: R6PSSCZK9i3Cth91QDyqRw8Vjna3b11sPl2PIwIoI1c=
Subject key identifier: 75:57:19:54:20:5C:8B:15:35:B7:B7:1A:A8:36:6B:5F:5A:0E:B7:51
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191671BD4028221503438A678F99439AB2E
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/dVcZVCBcixU1t7caqDZrX1oOt1E.roa
Signing time: Sun 18 Aug 2024 20:09:22 +0000
ROA not before: Sun 18 Aug 2024 20:09:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Sun 18 Aug 2024 21:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:67:1b:d4:02:82:21:50:34:38:a6:78:f9:94:39:ab:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 18 20:09:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75571954205c8b1535b7b71aa8366b5f5a0eb751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c0:cf:7b:8f:00:36:a4:d7:eb:ec:5c:b5:f5:
23:d7:1c:35:a7:13:01:2f:b0:76:0a:4c:c5:7e:f0:
0b:00:1d:ed:e7:fb:dc:af:25:46:5c:10:46:f2:ed:
fa:0d:a2:7a:3a:cf:0d:af:d1:71:c1:1b:d1:40:97:
54:3d:bb:a4:c0:eb:b2:ef:cc:26:e4:a6:06:5d:04:
e6:53:ef:8f:46:de:1e:f1:d1:cc:a1:60:12:b1:d5:
1a:d9:e1:56:5e:51:4b:c9:4e:01:19:13:fe:b1:8f:
7c:36:61:d5:d0:bb:e4:4a:28:dc:20:ae:d3:14:9e:
0a:84:c9:af:43:ed:e3:9b:85:4d:4e:8b:80:65:6d:
0f:cd:ac:f5:40:cc:f8:3d:f8:01:4c:46:c4:6c:0e:
c3:de:d0:8a:61:23:10:d3:c9:ad:38:fd:71:84:c7:
8d:cb:e5:38:dc:ee:16:83:52:b9:ae:34:93:47:47:
2a:08:25:bd:19:50:32:1a:29:3f:9d:32:da:20:ea:
2b:43:71:63:99:9a:32:56:6f:53:34:c0:46:ec:da:
7d:6e:c1:57:95:bd:56:1d:f3:d2:99:a8:73:0c:ca:
4a:6b:9a:12:cf:60:d9:ff:88:25:6c:f2:ad:b0:63:
99:0b:42:15:54:35:2b:ed:a9:05:b4:50:28:1b:ee:
7f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:57:19:54:20:5C:8B:15:35:B7:B7:1A:A8:36:6B:5F:5A:0E:B7:51
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/dVcZVCBcixU1t7caqDZrX1oOt1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
7a:96:c7:b9:1f:c9:10:96:02:2b:45:a3:cd:6c:a8:c5:ab:96:
73:18:f1:a6:07:4d:78:59:38:95:e7:eb:2b:0a:80:fb:a2:2b:
c7:47:49:86:30:d5:fc:46:af:3c:7f:a6:00:4f:61:5f:c5:06:
23:44:47:8e:99:7f:5c:e4:28:4e:72:3b:ab:5a:fc:14:3f:63:
a8:cf:11:28:d7:35:20:9a:9f:50:10:d5:38:69:f7:5b:2e:e0:
02:86:70:a8:6a:76:44:c0:59:e7:f6:45:40:31:35:fe:1c:10:
c7:bb:ba:ce:2e:99:bb:0d:94:c1:7e:20:a4:1b:d4:6b:53:0f:
2c:2c:26:93:24:fb:c0:f3:7b:d7:2b:b5:80:33:02:46:f4:c2:
e6:ab:b4:6e:ce:d4:84:14:a0:ae:eb:ce:55:67:24:b8:e0:f0:
28:08:58:22:c4:1d:51:d0:8f:0c:d6:8b:e9:95:de:5d:1e:7a:
0e:b0:e1:8b:3a:ee:90:40:24:e8:75:21:fe:da:4d:76:83:f3:
07:bd:ed:75:d0:d6:b3:f9:69:cf:d9:ff:69:54:c3:dc:40:3f:
73:46:93:31:a8:4a:51:db:35:c1:11:7e:4e:27:7f:f5:9a:fa:
1d:ca:4f:ad:80:9a:0d:4f:a7:95:ad:7e:2c:cd:b0:b5:31:60:
79:9d:41:f0
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Aug 18 23:34:21 2024 by rpki-client on console-fra.rpki-client.org