Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/kINIRVZ7JygebQCgFcvy8FelEYw.roa
File: kINIRVZ7JygebQCgFcvy8FelEYw.roa (raw, json)
Hash identifier: Fg0guLOfbkQ5AKvH2GSef43Oo/wmsAnLycpqsxs+Ahk=
Subject key identifier: 90:83:48:45:56:7B:27:28:1E:6D:00:A0:15:CB:F2:F0:57:A5:11:8C
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191A28ED66B585F07A4D68E73578F6CC5DB
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/kINIRVZ7JygebQCgFcvy8FelEYw.roa
Signing time: Fri 30 Aug 2024 09:12:35 +0000
ROA not before: Fri 30 Aug 2024 09:12:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Fri 30 Aug 2024 10:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a2:8e:d6:6b:58:5f:07:a4:d6:8e:73:57:8f:6c:c5:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 30 09:12:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=90834845567b27281e6d00a015cbf2f057a5118c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:12:bc:f8:d5:c5:84:d0:46:1d:b4:74:4b:6d:
82:72:e7:91:9f:86:7c:7c:71:c5:fa:ab:fd:fb:73:
4e:55:fe:69:e0:3b:f5:ed:b7:95:9a:86:39:b1:ee:
fd:2d:47:3c:78:05:0a:c0:10:8a:c3:1d:16:1b:83:
9c:a6:3a:2b:59:9b:98:8c:12:84:3e:ae:ba:e5:f4:
d3:c3:6b:c2:a6:85:9f:a8:5b:e9:75:14:ce:64:6b:
56:e4:16:b6:73:ca:ed:5a:9e:00:4e:9b:d7:04:2b:
c6:b7:bb:01:2a:0b:08:55:b2:9b:79:d3:e4:d0:3b:
9e:ec:c0:87:67:fd:6b:1e:67:7f:c6:91:27:38:88:
1d:af:25:0c:8b:bb:c7:23:b7:26:5d:2c:d7:94:3f:
f7:e8:ae:24:c7:51:6b:a3:62:1e:70:46:a2:5b:b1:
7c:d4:ae:42:08:ed:86:6d:90:b3:fc:1c:8b:f9:73:
0a:3f:54:7d:6c:ab:88:47:bf:d8:9d:95:9d:05:99:
f0:a3:e1:73:fc:4f:4f:9c:2b:c9:cf:a4:ef:72:97:
8c:79:c8:ff:90:0f:a6:66:d3:1a:53:fe:31:35:84:
d0:17:8b:91:2c:6f:2d:c9:99:fd:48:49:f7:ff:e0:
53:85:34:7a:5b:ea:4c:aa:61:21:d5:e3:4a:ca:08:
e7:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:83:48:45:56:7B:27:28:1E:6D:00:A0:15:CB:F2:F0:57:A5:11:8C
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/kINIRVZ7JygebQCgFcvy8FelEYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
2a:57:82:ad:07:b9:38:61:bc:57:00:1d:aa:22:2a:8a:1b:af:
61:76:b5:88:4e:9a:4b:c7:83:72:5d:dd:12:6f:af:35:e6:fe:
da:5a:b9:71:f0:af:c2:d9:52:de:22:f7:b9:da:8c:04:4e:d1:
63:11:0b:32:be:d9:29:31:47:67:50:a0:56:de:78:01:16:c5:
a8:52:cc:e0:25:4b:99:69:4a:aa:ed:22:3f:0a:49:51:bf:c9:
6e:64:e8:02:c0:45:90:ab:62:8e:91:5d:20:38:17:a7:3b:55:
bb:90:ec:53:8f:42:70:d6:96:72:fb:0b:6e:77:94:0d:9f:5c:
57:d6:a8:f5:1b:1b:25:67:83:75:6f:9d:ba:c8:50:bc:c2:38:
9f:c5:84:0d:c1:b4:49:07:38:79:51:2c:c1:d2:35:43:2e:0f:
be:c1:3b:08:f1:b1:85:bb:e9:83:f8:fa:2d:1b:92:4c:54:aa:
1a:d2:52:93:b2:a8:cc:e6:31:90:78:f6:61:14:01:37:8f:04:
cb:c9:db:ba:97:66:b9:6f:be:d7:af:ea:86:74:3b:1a:c4:3b:
83:fe:df:45:3a:a2:a0:45:30:71:12:26:0f:d8:00:e4:16:6f:
2d:7c:c9:6c:5d:13:b1:d3:69:05:3b:08:a9:5b:a1:38:72:10:
3a:12:b4:1a
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgISAZGijtZrWF8HpNaOc1ePbMXbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwODMwMDkxMjM1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MDgzNDg0NTU2N2IyNzI4MWU2ZDAwYTAxNWNiZjJmMDU3YTUxMThjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0xK8+NXFhNBGHbR0S22CcueRn4Z8
fHHF+qv9+3NOVf5p4Dv17beVmoY5se79LUc8eAUKwBCKwx0WG4OcpjorWZuYjBKE
Pq665fTTw2vCpoWfqFvpdRTOZGtW5Ba2c8rtWp4ATpvXBCvGt7sBKgsIVbKbedPk
0Due7MCHZ/1rHmd/xpEnOIgdryUMi7vHI7cmXSzXlD/36K4kx1Fro2IecEaiW7F8
1K5CCO2GbZCz/ByL+XMKP1R9bKuIR7/YnZWdBZnwo+Fz/E9PnCvJz6TvcpeMecj/
kA+mZtMaU/4xNYTQF4uRLG8tyZn9SEn3/+BThTR6W+pMqmEh1eNKygjnMwIDAQAB
o4ICFjCCAhIwHQYDVR0OBBYEFJCDSEVWeycoHm0AoBXL8vBXpRGMMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEva0lOSVJWWjdKeWdlYlFDZ0Zjdnk4RmVsRVl3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAAjATAxEAIAEGfABk
//8AAAGQ/fLzAjANBgkqhkiG9w0BAQsFAAOCAQEAKleCrQe5OGG8VwAdqiIqihuv
YXa1iE6aS8eDcl3dEm+vNeb+2lq5cfCvwtlS3iL3udqMBE7RYxELMr7ZKTFHZ1Cg
Vt54ARbFqFLM4CVLmWlKqu0iPwpJUb/JbmToAsBFkKtijpFdIDgXpztVu5DsU49C
cNaWcvsLbneUDZ9cV9ao9RsbJWeDdW+dushQvMI4n8WEDcG0SQc4eVEswdI1Qy4P
vsE7CPGxhbvpg/j6LRuSTFSqGtJSk7KozOYxkHj2YRQBN48Ey8nbupdmuW++16/q
hnQ7GsQ7g/7fRTqioEUwcRImD9gA5BZvLXzJbF0TsdNpBTsIqVuhOHIQOhK0Gg==
-----END CERTIFICATE-----
Generated at Fri Aug 30 13:00:13 2024 by rpki-client on console-ams.rpki-client.org