Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/m-WtsY5gy73ICFE0t0fdVDR47a8.roa
File: m-WtsY5gy73ICFE0t0fdVDR47a8.roa (raw, json)
Hash identifier: m+HzCNo//fARD8ZgDpjMQ+DUYqiEBgwi8XzNtTj09oI=
Subject key identifier: 9B:E5:AD:B1:8E:60:CB:BD:C8:08:51:34:B7:47:DD:54:34:78:ED:AF
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190E433975F1513735CEA1340037A8E1B0B
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/m-WtsY5gy73ICFE0t0fdVDR47a8.roa
Signing time: Wed 24 Jul 2024 10:05:04 +0000
ROA not before: Wed 24 Jul 2024 10:05:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:e432:d888/128 maxlen: 128
Validation: Failed, certificate revoked on Wed 24 Jul 2024 10:12:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e4:33:97:5f:15:13:73:5c:ea:13:40:03:7a:8e:1b:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 24 10:05:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9be5adb18e60cbbdc8085134b747dd543478edaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0f:03:f1:38:05:9f:68:24:bf:a1:fe:e9:4b:
cc:cf:e3:55:19:95:a4:53:c9:b8:d6:62:3c:28:bc:
3d:1b:fb:eb:8d:de:20:05:e9:67:58:bc:b3:87:88:
34:d2:ba:62:80:7d:80:96:29:90:b3:47:6d:37:f4:
c5:6d:1d:8c:33:44:e9:b0:91:83:98:3e:59:7a:2a:
60:66:9c:9b:0a:a0:e2:14:c5:6f:34:b3:b9:1d:22:
81:6c:a7:e7:c7:0b:61:1c:8f:4d:d7:a4:20:24:8d:
71:bc:e2:ac:ca:61:53:6d:f7:a8:fe:c7:72:33:be:
b6:e0:4b:4e:61:03:d2:94:4f:9e:5e:b1:f7:20:ce:
b8:cd:7d:b3:06:46:40:fa:22:fe:06:c4:ae:f6:70:
fa:23:91:4b:f8:53:86:dc:bf:25:d8:19:3f:7d:e1:
5a:60:7f:68:bf:f8:ba:f1:c9:7b:79:f4:bd:88:9b:
b9:78:4a:f7:a0:b2:5c:50:59:7c:66:34:fd:36:f6:
33:68:59:4e:9f:11:ec:b7:cd:74:fc:3b:cf:b3:db:
12:7c:81:7a:c4:01:53:6d:f6:c4:89:2a:c6:57:0a:
8f:af:3f:5c:fa:f5:35:0b:99:08:d7:4c:75:ce:1f:
b8:b1:8c:b7:dd:d3:7f:d0:52:68:e8:ba:5a:99:77:
bf:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:E5:AD:B1:8E:60:CB:BD:C8:08:51:34:B7:47:DD:54:34:78:ED:AF
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/m-WtsY5gy73ICFE0t0fdVDR47a8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:e432:d888/128
Signature Algorithm: sha256WithRSAEncryption
86:8d:f2:c3:65:d0:88:83:0d:67:13:c4:4c:71:fc:e7:a6:80:
23:07:0a:b1:47:2f:d0:fc:99:cb:47:23:af:d6:30:a8:11:94:
00:4e:3a:b6:81:c2:73:3c:d2:fd:25:7c:72:3b:81:80:dc:00:
88:03:51:5d:f8:83:78:4a:a9:7a:e4:8b:18:b2:41:d4:c7:7b:
c1:a0:7d:a1:e2:30:dd:42:34:c6:13:08:b2:a4:b0:8a:fe:b4:
7c:d3:56:6e:ba:e4:00:df:c0:89:8c:65:2f:58:53:03:f3:a3:
5f:37:ca:53:2f:d0:b1:34:64:e7:3c:fa:68:cb:6e:d5:53:a5:
fd:4a:de:93:dd:9a:33:21:07:1f:a3:2a:be:0f:53:fe:c0:d5:
18:2f:b0:33:f6:3f:7b:07:99:3a:18:97:65:09:ae:86:8b:e3:
66:58:53:82:92:65:8c:53:6f:64:44:67:03:36:1b:33:60:b4:
35:c5:6a:9e:00:68:94:fc:06:3a:a3:4a:8d:0c:7c:8b:08:f6:
bb:fc:bb:f0:7f:b0:83:83:fa:35:ef:5a:27:07:5e:f9:53:e0:
40:6f:b0:58:2b:88:0f:23:e5:93:13:28:91:dd:e5:2b:4c:32:
c2:a1:b6:e0:0d:68:ca:15:d0:5c:15:21:6b:fa:9b:ed:fb:53:
2b:ca:19:96
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:42:26 2025 by rpki-client