Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/gRsGq92JRIxeLC_cjp_B5pSmCIE.roa
File: gRsGq92JRIxeLC_cjp_B5pSmCIE.roa (raw, json)
Hash identifier: KROaNx2ERhzUAeZJAIzhAtlMYmRodkNctCGCb2kzNf0=
Subject key identifier: 81:1B:06:AB:DD:89:44:8C:5E:2C:2F:DC:8E:9F:C1:E6:94:A6:08:81
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019118CB55EAF6E4C8F64198500652EFA725
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/gRsGq92JRIxeLC_cjp_B5pSmCIE.roa
Signing time: Sat 03 Aug 2024 15:11:04 +0000
ROA not before: Sat 03 Aug 2024 15:11:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Sat 03 Aug 2024 16:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:18:cb:55:ea:f6:e4:c8:f6:41:98:50:06:52:ef:a7:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 3 15:11:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=811b06abdd89448c5e2c2fdc8e9fc1e694a60881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8b:f7:78:57:00:74:30:c1:b4:c7:24:c8:e3:
b7:54:68:0a:c5:98:47:9f:6c:1d:65:ca:ac:51:50:
6b:7c:6a:eb:5d:4c:55:8f:7f:92:e2:74:2d:c2:1b:
75:b0:9b:35:be:49:a2:f4:c6:8f:27:17:db:7e:06:
9d:80:82:02:be:da:ed:17:92:fd:17:bb:8f:3e:b8:
62:84:70:34:ef:bd:2c:a5:58:a0:b1:70:38:6d:9c:
40:35:7e:05:70:37:0b:fa:6f:06:47:49:b0:dd:2a:
43:09:64:16:0a:6b:88:e2:71:e9:39:b6:5c:fe:e3:
69:d0:23:1c:7d:14:f7:ec:f3:1b:fd:87:9e:c2:56:
52:6e:74:ee:ff:dc:fd:7b:0b:0d:fc:9a:69:02:eb:
6c:22:af:6e:d7:2a:7a:ec:2f:25:ad:a2:be:db:e0:
8c:8a:01:b1:7d:1b:6c:45:2d:5f:59:54:5c:69:cb:
97:fe:81:41:ac:30:ca:4d:59:3f:f1:ac:51:eb:00:
b3:f2:ed:d3:e0:ed:50:4b:58:4b:3b:bc:fa:60:2c:
a3:10:19:db:32:1b:75:fb:99:72:3a:85:6e:ad:b6:
8b:ff:0b:51:ba:a7:0b:1e:d5:bb:15:97:99:b0:2f:
0b:04:be:be:6c:a0:e0:53:e0:55:c6:78:fb:2e:25:
d7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:1B:06:AB:DD:89:44:8C:5E:2C:2F:DC:8E:9F:C1:E6:94:A6:08:81
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/gRsGq92JRIxeLC_cjp_B5pSmCIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
81:52:1c:9b:e5:05:7e:2b:31:7b:f5:1a:8a:14:30:2c:95:5b:
07:dd:61:57:9c:a1:4f:c8:49:81:56:cf:93:b0:1f:ac:21:82:
5b:47:91:88:68:98:22:a5:6d:45:18:09:69:59:84:8a:07:bd:
db:e2:9b:24:e4:ca:01:87:bc:48:ae:1a:e3:21:61:10:0d:3e:
97:af:a7:ee:91:a3:21:eb:af:f1:ad:39:06:bb:00:1d:71:15:
38:76:80:81:cd:7f:52:24:db:83:a0:c3:fb:a6:d7:a5:f6:79:
16:01:d3:ba:9f:17:17:16:25:54:ed:fb:f2:33:79:b5:81:c4:
bd:91:ca:51:52:28:c5:1c:c9:c0:20:d6:24:4f:32:2b:a4:7e:
6e:5d:aa:f8:d4:ae:5f:38:29:af:c9:14:92:c2:6c:c2:40:c7:
27:18:9e:32:83:c0:c5:47:21:32:45:2a:be:33:c2:0e:b0:58:
f0:75:3c:b4:a1:c8:0f:3c:13:6c:0b:43:65:03:5e:eb:f6:aa:
a0:bf:1b:19:5c:82:79:3d:ef:10:dd:8f:a5:27:ee:6d:8f:4c:
92:8c:75:3b:d5:de:50:bb:73:e5:68:40:42:f3:5c:3c:55:f8:
94:6f:0e:fc:0e:e2:ae:d7:25:e6:74:0f:94:1e:d0:2c:34:29:
d0:d7:28:1b
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:28 2025 by rpki-client