Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/eqfQhoSS_nnZlDbZ_nuQYAkls-8.roa
File: eqfQhoSS_nnZlDbZ_nuQYAkls-8.roa (raw, json)
Hash identifier: TN98D8oV2vvgOXvN+q11zMpUcwRGciNmettMAT7xjPA=
Subject key identifier: 7A:A7:D0:86:84:92:FE:79:D9:94:36:D9:FE:7B:90:60:09:25:B3:EF
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191BA5F228D0E5B5C12D516EFB06A507A63
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/eqfQhoSS_nnZlDbZ_nuQYAkls-8.roa
Signing time: Wed 04 Sep 2024 00:11:22 +0000
ROA not before: Wed 04 Sep 2024 00:11:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Wed 04 Sep 2024 01:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ba:5f:22:8d:0e:5b:5c:12:d5:16:ef:b0:6a:50:7a:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Sep 4 00:11:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7aa7d0868492fe79d99436d9fe7b90600925b3ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:94:34:17:87:97:13:5b:33:99:e1:c4:31:4e:
ad:27:36:7d:df:06:e1:0d:7e:38:79:6f:35:09:03:
07:57:54:5c:b2:a9:e1:a3:3b:2d:58:b7:cc:56:a7:
28:bd:9f:39:54:c9:47:c1:f9:73:d9:3c:d4:47:f4:
c4:34:26:76:6d:68:07:5b:16:c8:55:49:fd:65:74:
32:97:cf:3c:de:f7:05:b2:e2:65:cb:a8:db:a7:25:
b3:1d:13:02:a1:00:52:dd:81:dc:26:a2:a2:5b:fc:
23:47:54:4c:a3:79:13:ef:67:f4:b6:df:98:16:84:
94:3c:c2:3d:44:31:c2:51:fc:fc:bc:49:80:96:51:
73:f4:60:ea:82:1a:2f:ac:6e:1c:a5:8d:08:c9:b8:
19:c2:b8:bf:aa:fe:03:72:a5:41:e8:9c:e2:18:92:
50:5e:ec:15:88:88:d1:92:b2:66:db:f8:8e:00:24:
9b:41:d9:ff:27:36:41:49:10:42:63:84:2f:d3:df:
cd:2a:0e:66:d1:bb:80:1d:3f:0b:95:1b:1a:e7:0c:
9b:2d:b3:3e:ad:fa:68:e4:9d:42:6a:cc:32:20:53:
83:8a:69:fa:44:75:01:04:7e:ea:2f:1b:c0:e6:8b:
ce:9e:53:d0:ce:1a:34:b0:a2:f6:b2:d3:1d:0a:ec:
7f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:A7:D0:86:84:92:FE:79:D9:94:36:D9:FE:7B:90:60:09:25:B3:EF
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/eqfQhoSS_nnZlDbZ_nuQYAkls-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
97:0e:7a:8e:5b:6c:cc:3b:6c:66:b4:7a:8e:5a:36:38:b3:e7:
43:bc:8e:bf:ff:da:ea:ff:3b:a3:d4:ad:0c:0b:d4:9b:6b:7c:
3c:fd:68:16:06:8c:3c:15:0b:13:14:b5:8e:e5:8f:87:d1:f2:
5e:d4:c6:06:85:24:81:4f:64:a2:f9:21:d2:d0:a5:8e:df:79:
59:4f:ce:6a:29:23:b5:ce:1f:49:90:a2:63:2e:f4:39:56:a9:
e6:7e:33:c3:39:f5:3b:37:98:a5:af:81:f9:3e:29:4a:0d:fc:
8f:a5:41:96:97:3e:4f:51:a8:bf:52:9a:fb:a3:a0:39:31:8e:
66:2c:c3:b7:64:19:65:fb:ec:82:7b:ad:76:d9:f4:1a:fc:eb:
35:f9:d8:30:f6:11:96:d2:6b:38:c8:bc:62:5f:6d:f7:b8:72:
05:e5:de:8f:89:5a:6d:e8:2d:4b:a6:2c:58:25:9d:3c:ae:84:
1f:82:d7:e5:99:39:04:ef:3e:cb:15:43:3f:b3:7b:7c:86:f9:
90:7a:01:02:72:f1:92:f5:06:f7:62:94:ea:fa:80:36:b8:20:
88:1e:fa:b2:9a:ff:10:19:e0:30:e7:b0:d8:07:87:c1:10:1e:
79:72:b6:04:fe:2a:d4:6b:31:9d:8f:7b:5b:dc:9c:42:57:bf:
6c:fc:b7:bb
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:20 2025 by rpki-client