Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/p0s7umQwTvdlerg44KA7WvK-77c.roa
File: p0s7umQwTvdlerg44KA7WvK-77c.roa (raw, json)
Hash identifier: 7b4XEUZjo7Zcf/dRxnxUXCR6xOMP0nhDl3fR/R8usvE=
Subject key identifier: A7:4B:3B:BA:64:30:4E:F7:65:7A:B8:38:E0:A0:3B:5A:F2:BE:EF:B7
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01910AA0EF5747F44F1E480EA9266CE37854
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/p0s7umQwTvdlerg44KA7WvK-77c.roa
Signing time: Wed 31 Jul 2024 21:10:04 +0000
ROA not before: Wed 31 Jul 2024 21:10:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Wed 31 Jul 2024 22:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:0a:a0:ef:57:47:f4:4f:1e:48:0e:a9:26:6c:e3:78:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 31 21:10:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a74b3bba64304ef7657ab838e0a03b5af2beefb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3c:d2:91:97:ab:42:e6:1b:18:e9:49:1c:92:
76:89:59:8d:54:ed:4a:e7:a4:df:c9:28:cb:61:46:
67:39:e7:2e:78:a4:2c:84:3b:49:33:85:73:2c:78:
2e:98:65:e4:81:d6:c8:1b:4a:90:bf:ca:79:9a:48:
5d:bd:52:ab:88:f3:51:24:1d:ec:0b:d5:55:ef:cf:
86:66:c1:d5:87:fb:05:81:73:5a:a6:7a:d2:25:4f:
2d:27:e7:cb:b0:96:c8:c0:3f:29:9e:98:8f:56:8a:
14:df:e4:88:7f:c9:1b:3c:0d:e3:c5:98:9b:01:d9:
67:56:c7:a9:f4:24:91:5b:43:b6:84:e9:4f:49:99:
f4:d3:6f:bc:78:a6:f5:94:33:6a:96:e3:d5:09:0f:
92:65:5c:95:93:ac:98:fd:93:e9:99:cf:15:31:12:
2b:a1:ab:db:03:c4:00:b2:64:49:48:2b:15:fa:eb:
df:8c:fa:68:89:62:f4:37:0e:40:63:cf:07:a9:ac:
09:0e:c3:77:78:22:3f:9c:1a:81:3a:ca:dc:11:5e:
38:d6:23:f7:df:24:1c:c9:46:62:78:f2:e5:99:77:
03:f4:e5:ba:4b:2c:14:f1:c6:2b:a4:48:c4:96:21:
bf:64:ca:fe:de:95:4c:b6:9d:2a:82:57:23:e9:5b:
a6:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:4B:3B:BA:64:30:4E:F7:65:7A:B8:38:E0:A0:3B:5A:F2:BE:EF:B7
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/p0s7umQwTvdlerg44KA7WvK-77c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
2f:fe:cd:35:1c:a5:3f:00:85:cc:25:bd:7f:b3:c5:c6:94:67:
cf:6d:87:80:d3:19:d3:3e:e3:86:22:97:f5:26:e2:18:c3:a3:
1d:71:79:14:d9:d7:6e:17:7a:69:63:cf:99:be:af:b3:9f:8e:
56:a0:56:bc:1b:9a:e5:25:63:b2:dd:b6:4b:3d:9a:64:55:25:
0d:c0:42:38:ac:af:18:60:de:eb:8d:61:00:b2:3f:12:ab:83:
2c:38:c9:ea:73:de:4b:a8:59:59:a7:4f:ba:77:ed:50:c1:ad:
70:2d:03:73:4e:0d:59:a6:02:9d:c0:c1:e1:40:b6:a6:5d:af:
16:19:da:f8:81:06:27:53:d7:9f:52:8c:4f:0e:bb:17:62:b8:
29:46:15:0e:7d:0d:c4:eb:de:13:76:78:b3:25:2c:c7:d6:a1:
f7:fc:11:af:33:b1:d3:5e:68:ff:06:1b:73:86:f9:a0:5d:0d:
1d:15:3d:cf:05:3f:d8:19:4c:eb:ba:c3:4c:d5:3b:30:0c:fc:
2d:85:1e:12:14:8a:ae:fa:68:80:dd:b4:f1:3e:a7:e1:8e:22:
da:6b:69:f7:31:99:c3:69:87:44:5f:42:60:33:0a:32:d0:cb:
69:0b:77:19:ba:81:07:81:f6:a1:ad:86:24:11:02:16:0a:fd:
24:35:0e:58
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgISAZEKoO9XR/RPHkgOqSZs43hUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNzMxMjExMDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNzRiM2JiYTY0MzA0ZWY3NjU3YWI4MzhlMGEwM2I1YWYyYmVlZmI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkjzSkZerQuYbGOlJHJJ2iVmNVO1K
56TfySjLYUZnOecueKQshDtJM4VzLHgumGXkgdbIG0qQv8p5mkhdvVKriPNRJB3s
C9VV78+GZsHVh/sFgXNapnrSJU8tJ+fLsJbIwD8pnpiPVooU3+SIf8kbPA3jxZib
AdlnVsep9CSRW0O2hOlPSZn002+8eKb1lDNqluPVCQ+SZVyVk6yY/ZPpmc8VMRIr
oavbA8QAsmRJSCsV+uvfjPpoiWL0Nw5AY88HqawJDsN3eCI/nBqBOsrcEV441iP3
3yQcyUZiePLlmXcD9OW6SywU8cYrpEjEliG/ZMr+3pVMtp0qglcj6VumFQIDAQAB
o4ICFjCCAhIwHQYDVR0OBBYEFKdLO7pkME73ZXq4OOCgO1ryvu+3MB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvcDBzN3VtUXdUdmRsZXJnNDRLQTdXdkstNzdjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAAjATAxEAIAEGfABk
//8AAAGQ/fLzAjANBgkqhkiG9w0BAQsFAAOCAQEAL/7NNRylPwCFzCW9f7PFxpRn
z22HgNMZ0z7jhiKX9SbiGMOjHXF5FNnXbhd6aWPPmb6vs5+OVqBWvBua5SVjst22
Sz2aZFUlDcBCOKyvGGDe641hALI/EquDLDjJ6nPeS6hZWadPunftUMGtcC0Dc04N
WaYCncDB4UC2pl2vFhna+IEGJ1PXn1KMTw67F2K4KUYVDn0NxOveE3Z4syUsx9ah
9/wRrzOx015o/wYbc4b5oF0NHRU9zwU/2BlM67rDTNU7MAz8LYUeEhSKrvpogN20
8T6n4Y4i2mtp9zGZw2mHRF9CYDMKMtDLaQt3GbqBB4H2oa2GJBECFgr9JDUOWA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:24:27 2025 by rpki-client