Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ntKRgUhIS4tzmO6X7aX1QPHM6ss.roa
File: ntKRgUhIS4tzmO6X7aX1QPHM6ss.roa (raw, json)
Hash identifier: MY7KENh8ROmwxt0RmXvSuSWw9Zier2PifAspG51fujg=
Subject key identifier: 9E:D2:91:81:48:48:4B:8B:73:98:EE:97:ED:A5:F5:40:F1:CC:EA:CB
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019161C18283D58D58719CECDD1D78AC69F1
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ntKRgUhIS4tzmO6X7aX1QPHM6ss.roa
Signing time: Sat 17 Aug 2024 19:12:37 +0000
ROA not before: Sat 17 Aug 2024 19:12:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Sat 17 Aug 2024 20:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:61:c1:82:83:d5:8d:58:71:9c:ec:dd:1d:78:ac:69:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 17 19:12:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9ed2918148484b8b7398ee97eda5f540f1cceacb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9e:3c:23:0b:ed:35:f4:df:22:37:fe:2d:ac:
79:13:1a:01:ec:46:7b:c9:a9:c4:d2:21:6e:67:8e:
b8:31:e5:07:45:ad:55:ca:b6:c3:5d:0a:b5:76:2c:
1c:85:15:b2:94:9b:50:49:cb:92:52:30:ae:4d:40:
01:58:77:0f:d5:33:17:5a:ef:2e:c4:b8:9d:81:18:
59:b9:de:76:8d:cf:6f:6d:db:25:37:a5:02:5a:55:
0d:41:c1:10:a4:ee:c3:c1:be:1a:39:5d:3c:1f:0b:
f7:e8:70:e7:4f:3a:30:45:c6:1e:5f:4b:ea:9b:2b:
89:44:55:b5:ac:2f:1e:72:f3:85:03:bd:01:76:60:
e9:30:e7:8c:92:62:dd:c5:e3:f6:4a:d8:cd:88:c6:
38:42:ba:ae:3a:c5:08:0e:f6:ae:b9:10:37:3f:2c:
3a:f2:d1:f3:32:de:54:dd:b6:bd:92:e2:6c:d0:99:
66:16:7a:23:5a:fd:28:2d:5a:b5:bb:fa:04:7c:a8:
05:85:5f:3f:d5:57:da:8f:27:e5:8d:2a:99:2e:f9:
7d:ff:65:1f:42:45:05:3d:dc:9a:ed:22:79:0e:98:
a4:67:16:05:8c:fa:2b:67:39:7c:92:a1:6e:bf:46:
47:37:97:fa:3b:fb:41:a4:d8:c3:81:b9:a2:80:b4:
01:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:D2:91:81:48:48:4B:8B:73:98:EE:97:ED:A5:F5:40:F1:CC:EA:CB
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ntKRgUhIS4tzmO6X7aX1QPHM6ss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
91:b2:a2:d4:71:b6:03:ff:90:14:03:d0:cb:5c:f5:1a:3a:b1:
95:22:17:f5:b3:25:9d:3a:7e:53:6c:f1:d4:ab:0d:44:c9:2c:
8f:22:d5:f8:7e:25:53:f6:25:d2:57:35:18:7b:7d:6c:04:35:
e4:2c:63:69:53:ad:ea:a6:f8:b6:b4:25:3b:dc:8c:98:7e:13:
fb:47:fc:53:4e:2a:3a:33:db:b2:fa:8d:61:d8:b0:63:c0:d7:
c1:10:da:be:86:0e:b7:a0:eb:33:de:2c:55:14:b1:8a:79:5f:
c5:49:75:5d:9b:be:02:e6:11:25:c6:28:3e:06:08:c4:85:e5:
f1:03:bb:3a:23:96:a1:ec:7e:c0:a9:b1:33:ad:4c:48:6e:c0:
d1:c7:c8:48:07:43:a3:30:e7:b7:9b:b4:f7:50:44:6f:d5:6a:
3c:21:75:ff:91:81:96:99:f5:3f:0a:82:d5:01:30:37:ef:70:
72:61:70:91:20:6b:e4:8d:ed:18:eb:6e:39:23:d1:32:88:ea:
ac:0b:57:3f:98:08:33:cd:d5:9b:30:fa:24:ff:c1:ee:84:88:
12:ba:48:b5:76:de:d8:d1:e6:4a:c0:e2:24:f3:92:58:9a:af:
0d:49:3e:ef:89:be:23:d2:1e:3d:fd:e1:b9:7d:16:3a:27:06:
0b:6b:52:10
-----BEGIN CERTIFICATE-----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==
Generated at Sat Aug 17 22:52:09 2024 by rpki-client on console-fra.rpki-client.org