Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/fVDe73e_QjKxLf4fbCjrHVUtBpI.roa
File: fVDe73e_QjKxLf4fbCjrHVUtBpI.roa (raw, json)
Hash identifier: DmcOGqkQ8IsLVNE+g2BU5QEwTHXpRSIbXfPzOzM7hNE=
Subject key identifier: 7D:50:DE:EF:77:BF:42:32:B1:2D:FE:1F:6C:28:EB:1D:55:2D:06:92
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191535F98ECC915CCD423EC3E28CE5C6AC8
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/fVDe73e_QjKxLf4fbCjrHVUtBpI.roa
Signing time: Thu 15 Aug 2024 00:10:59 +0000
ROA not before: Thu 15 Aug 2024 00:10:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Thu 15 Aug 2024 01:04:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:53:5f:98:ec:c9:15:cc:d4:23:ec:3e:28:ce:5c:6a:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 15 00:10:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7d50deef77bf4232b12dfe1f6c28eb1d552d0692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5d:df:fe:6d:fc:b1:7b:7b:82:db:0a:18:86:
eb:6c:5f:cb:a8:bd:bc:e8:c8:70:07:6d:96:ba:c9:
f5:12:af:25:c7:3b:72:26:89:81:91:57:fe:21:a4:
f9:aa:47:82:fb:dd:88:b5:e4:19:73:8d:17:82:66:
75:9e:50:44:17:37:c9:7d:27:0c:2d:94:c9:d2:29:
31:d0:4b:77:39:82:be:9b:e7:e9:4d:6e:2b:f9:37:
1a:79:22:b9:2f:5d:3b:0f:d6:90:aa:e9:2b:00:b8:
5f:85:69:3a:a8:05:80:c9:64:6e:ff:83:2b:c8:8a:
e2:34:d4:8c:2a:b3:6c:1a:85:6d:eb:8d:cf:78:90:
53:f0:08:81:39:4b:55:a3:69:d0:5b:2c:b4:02:70:
14:2a:58:c0:7d:e2:7f:22:c0:bf:48:e2:d3:28:17:
f3:01:75:0f:5c:1c:da:bc:bd:f6:1b:0f:00:2e:eb:
b8:c0:42:ed:8d:41:e4:96:81:50:5c:14:be:c8:70:
38:42:b5:e1:61:17:b8:c0:f8:1c:71:9e:00:df:33:
e0:49:2a:0d:91:d6:e4:fd:78:2a:01:bd:6b:6f:28:
e8:11:c0:d1:c5:90:a9:ab:85:d0:83:78:15:50:d5:
13:82:e5:81:fb:07:5d:e6:68:83:b0:e1:9a:29:d9:
1b:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:50:DE:EF:77:BF:42:32:B1:2D:FE:1F:6C:28:EB:1D:55:2D:06:92
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/fVDe73e_QjKxLf4fbCjrHVUtBpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
56:74:f1:d5:7c:1c:06:b0:01:6c:4f:5d:81:81:80:27:e2:42:
3e:8f:4c:45:c3:4b:64:de:da:e6:03:40:88:46:a2:35:1e:54:
70:9f:3b:c2:10:3c:44:2f:5d:75:9c:52:b7:cc:90:52:e7:91:
b7:a5:39:09:e1:c4:4d:ce:e6:65:ed:d5:71:fc:48:50:19:f8:
d3:d0:d2:4b:4a:fd:f3:f3:a1:57:22:0f:08:11:09:c2:32:8c:
8f:fa:e9:e2:d4:6d:09:45:1d:6d:75:3a:48:77:6c:d0:eb:90:
88:74:a1:7d:1d:26:0e:42:da:44:aa:b1:cd:25:90:07:28:c7:
f9:de:7a:67:48:ed:17:36:89:f2:fb:da:8b:7e:32:c7:5d:de:
23:de:4d:b7:a3:4d:22:df:0e:54:6d:04:09:09:6e:62:c9:37:
97:f9:0b:08:d8:4e:f1:6e:0b:88:ee:7f:92:c0:5e:ad:83:f6:
01:70:60:7e:28:32:dd:cf:6e:28:58:71:05:cc:33:de:8e:06:
7c:af:dd:bf:13:6c:c8:cf:71:41:e7:57:82:95:90:7e:46:5f:
42:f0:0a:48:a6:14:a1:d4:ad:6f:c4:81:7f:d8:24:60:79:5b:
93:70:c1:b2:26:3c:97:02:3c:4b:09:6e:4b:a7:31:0d:0c:28:
04:7b:58:81
-----BEGIN CERTIFICATE-----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==
Generated at Thu Aug 15 06:11:47 2024 by rpki-client on console-fra.rpki-client.org