Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/hleing5CRt7Iv00AQ0d_74SYYUs.roa
File: hleing5CRt7Iv00AQ0d_74SYYUs.roa (raw, json)
Hash identifier: XTbVESi7E8NLSbi6ZtEx2Kdw3Jgk/J2/OzZkSeSLZWE=
Subject key identifier: 86:57:A2:9E:0E:42:46:DE:C8:BF:4D:00:43:47:7F:EF:84:98:61:4B
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01915A3F3DB4FE7996573A70065B4989F2FC
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/hleing5CRt7Iv00AQ0d_74SYYUs.roa
Signing time: Fri 16 Aug 2024 08:12:59 +0000
ROA not before: Fri 16 Aug 2024 08:12:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Fri 16 Aug 2024 09:15:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5a:3f:3d:b4:fe:79:96:57:3a:70:06:5b:49:89:f2:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 16 08:12:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8657a29e0e4246dec8bf4d0043477fef8498614b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8a:a1:10:61:03:18:42:b7:09:25:5a:96:11:
a0:94:9f:74:62:29:35:14:af:8e:ab:49:e8:15:39:
65:b4:99:f4:37:92:d5:38:3c:1f:b9:5e:13:9e:d5:
b3:f5:4f:3b:8c:a0:c8:11:50:9e:18:6a:b8:63:60:
51:8e:92:f2:0a:0b:d6:53:61:71:e9:76:d5:02:56:
3a:ff:a2:d4:c3:a9:e6:7b:d2:f0:d6:a2:e9:32:46:
bc:99:9e:cf:ae:06:e4:15:da:31:06:ef:e8:ea:b5:
9c:ec:59:39:dd:e4:13:7a:04:be:8f:11:9e:2c:9e:
7e:84:90:9a:ac:f1:9d:66:8e:46:1e:ad:11:8a:f8:
6c:e2:32:35:b4:93:50:03:19:ed:84:fa:55:d6:cb:
4b:d7:8a:a0:a8:4c:f2:24:77:8c:a0:8b:ec:18:1b:
28:0f:d7:f2:e3:14:26:d9:0a:8d:c6:3a:19:3a:04:
c7:7d:a3:fc:81:e0:c9:85:92:c0:6f:a0:a8:8e:b7:
38:ed:5b:26:3c:ba:41:d2:59:81:56:2a:70:47:76:
b9:44:52:7a:e8:75:6e:47:90:55:d2:ff:d8:09:f2:
2d:55:ab:8a:49:ce:25:e3:c3:3d:81:68:64:70:a1:
c4:70:ee:e8:b2:05:fd:54:bc:60:19:51:5c:a1:16:
ad:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:57:A2:9E:0E:42:46:DE:C8:BF:4D:00:43:47:7F:EF:84:98:61:4B
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/hleing5CRt7Iv00AQ0d_74SYYUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
96:87:99:f1:4b:8b:23:f2:56:c0:c5:22:05:37:b4:8b:03:ef:
ac:4d:6b:06:73:65:b5:b5:1b:f3:2f:c2:28:dd:3e:1d:4a:8a:
14:76:fd:21:7f:12:07:76:41:a3:1e:ac:62:0b:4f:18:c9:7d:
5b:2d:da:88:d8:9c:31:f8:b0:1b:0c:1c:64:ba:62:9e:14:9e:
af:8b:b7:cd:02:56:aa:cf:92:ce:e9:2c:1a:7e:21:3b:4a:63:
ca:5e:a1:a2:02:cc:a7:3f:43:82:2a:49:d9:bf:96:a9:a4:c3:
20:0b:f4:85:18:a2:0b:6c:0c:c0:fb:13:2e:17:2a:62:d8:76:
ba:44:01:b8:79:48:0c:df:36:98:2d:6a:4d:1e:ca:c9:48:fd:
74:b7:3f:96:a3:18:4b:df:d0:a2:e8:39:b0:f7:43:df:d0:ef:
2e:cf:c7:63:3b:81:05:89:9a:29:2a:35:b6:51:1e:9e:6d:1c:
1b:2b:5d:11:15:d5:a7:3e:99:50:b6:29:e6:b8:14:7e:85:f6:
54:70:93:ae:17:f8:a7:ce:62:69:9f:45:2f:05:2a:a4:6b:ad:
70:63:df:c9:53:1b:e7:4f:49:5c:6e:74:2b:55:a4:fa:76:03:
93:0f:82:29:12:89:3f:f5:9e:56:d3:38:0a:dc:98:7f:79:de:
a4:8d:6a:35
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Aug 16 13:13:21 2024 by rpki-client on console-ams.rpki-client.org