Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/kAIdGXbm0IHhpg4Hn1imADjHdpA.roa
File: kAIdGXbm0IHhpg4Hn1imADjHdpA.roa (raw, json)
Hash identifier: zUbmiaQcyxoKHtsFxW/cnYAiwZ92QY83xlgFD+LQ/sE=
Subject key identifier: 90:02:1D:19:76:E6:D0:81:E1:A6:0E:07:9F:58:A6:00:38:C7:76:90
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191AD79BE8BC466FDE4A31B11141A849970
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/kAIdGXbm0IHhpg4Hn1imADjHdpA.roa
Signing time: Sun 01 Sep 2024 12:05:22 +0000
ROA not before: Sun 01 Sep 2024 12:05:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
2001:67c:64:ffff:0:191:ad78:d65a/128 maxlen: 128
Validation: Failed, certificate revoked on Sun 01 Sep 2024 12:13:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ad:79:be:8b:c4:66:fd:e4:a3:1b:11:14:1a:84:99:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Sep 1 12:05:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=90021d1976e6d081e1a60e079f58a60038c77690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f0:b6:40:5e:02:cb:11:56:67:dd:20:46:02:
b1:51:5a:f8:73:14:fd:e0:c9:a4:88:81:46:a8:b8:
28:e5:ad:98:50:92:ba:fe:39:40:5e:23:81:dd:2d:
fd:b7:70:31:71:ca:e0:d6:66:1c:f1:a7:54:f1:35:
b3:3b:90:1a:3f:a1:2a:8f:6b:a1:19:67:a4:69:59:
ea:8e:dd:0e:c8:4a:6b:1b:cb:29:e8:7f:98:25:5c:
f5:34:f6:f1:6c:54:77:e5:e0:80:ae:8f:95:e0:14:
c1:a8:46:a0:c5:23:b0:ed:6a:64:d3:34:4a:8c:dd:
58:3a:96:26:cf:6c:f8:89:7e:7c:3a:30:6b:df:39:
6b:d6:42:a3:c8:21:e0:33:4b:e7:29:b3:8d:1f:42:
ff:a0:de:c3:46:d8:1b:7f:f5:05:f0:50:ea:16:0f:
8c:04:71:47:c7:f9:60:3b:e3:14:89:44:8d:56:6c:
ab:e6:5d:85:dc:c4:7b:d5:75:00:3d:b6:62:e1:7e:
ce:2b:dc:24:61:a2:d7:9d:49:e5:35:61:d5:40:0f:
76:d4:1e:d8:c1:61:fd:c8:5a:fa:1b:2a:e5:66:06:
4e:8f:a0:73:e0:b2:c1:c4:c9:37:ee:f3:45:41:6a:
f8:21:93:b7:43:85:2f:91:ee:21:76:99:e4:41:6a:
3e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:02:1D:19:76:E6:D0:81:E1:A6:0E:07:9F:58:A6:00:38:C7:76:90
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/kAIdGXbm0IHhpg4Hn1imADjHdpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
2001:67c:64:ffff:0:191:ad78:d65a/128
Signature Algorithm: sha256WithRSAEncryption
0c:16:ec:b4:6a:3d:aa:0a:3b:72:d8:17:da:b2:16:8d:00:36:
af:be:90:24:16:c4:ae:5b:c4:1f:69:c8:91:c6:86:63:ab:a3:
78:41:57:b2:41:9b:fc:00:af:7d:7c:93:ab:bd:28:c6:fa:e0:
cf:b6:12:01:1c:1a:f4:e2:38:44:a4:e7:2a:2f:08:cd:0b:69:
84:a7:35:16:d2:b7:02:df:06:80:d5:d3:08:68:21:6f:72:35:
bd:98:45:93:db:ba:95:8e:ac:86:f1:a8:c2:a1:09:e3:e0:97:
29:7a:13:e2:22:0b:bb:f7:23:46:b0:6d:e7:1d:e8:d2:c0:7f:
b1:22:c2:1c:6c:aa:63:ce:fb:92:36:70:74:8c:d2:92:18:68:
82:64:78:fb:b9:03:e8:59:36:5e:ef:7c:49:17:75:a3:3a:f8:
a2:64:8c:10:b4:61:fb:f7:a0:50:30:60:66:b0:a2:46:b9:ef:
fb:ef:ec:c4:0c:ba:5e:a1:fc:8c:74:83:09:d0:49:d3:27:d8:
76:de:45:ae:25:eb:22:9b:81:60:90:0a:26:7e:a1:23:0b:06:
06:e0:0f:fb:a6:64:77:96:d5:90:d6:28:6a:7b:12:1f:ec:7c:
42:00:59:64:e2:eb:ab:27:b1:2b:2e:4e:22:ea:4c:1b:82:0f:
58:84:6e:bb
-----BEGIN CERTIFICATE-----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Generated at Sun Sep 1 13:55:21 2024 by rpki-client on console-fra.rpki-client.org