Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/pu8zGO6vD1kgzq5pyPNlyWVEOVE.roa
File: pu8zGO6vD1kgzq5pyPNlyWVEOVE.roa (raw, json)
Hash identifier: 3RnYICHCm+A5/duI2Zuo+wUmGd+3ghpwF7j/pLEquFs=
Subject key identifier: A6:EF:33:18:EE:AF:0F:59:20:CE:AE:69:C8:F3:65:C9:65:44:39:51
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191A4464CE5A384FEF1FBD5002D4E917C3A
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/pu8zGO6vD1kgzq5pyPNlyWVEOVE.roa
Signing time: Fri 30 Aug 2024 17:12:36 +0000
ROA not before: Fri 30 Aug 2024 17:12:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Fri 30 Aug 2024 18:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a4:46:4c:e5:a3:84:fe:f1:fb:d5:00:2d:4e:91:7c:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 30 17:12:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a6ef3318eeaf0f5920ceae69c8f365c965443951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:40:c4:d7:90:79:47:54:a5:f5:3a:ff:a2:da:
2e:1f:57:46:cc:39:4e:3f:82:b2:e2:2c:0f:21:34:
6b:31:a2:c9:80:da:0d:74:7c:35:c8:c6:41:8c:1e:
85:d6:02:42:ec:2b:fc:cd:8a:aa:a5:d8:1b:0a:b7:
13:f9:b5:6a:25:85:8d:1d:99:36:08:9d:8a:fc:ee:
ce:53:79:07:24:8d:d4:3a:85:61:59:03:4d:1f:b4:
6d:8b:3e:e4:30:e1:c7:2c:b2:f7:85:a0:cd:af:e8:
b4:5d:d6:55:4a:33:c4:0b:3c:2f:65:bd:92:c9:f1:
ed:ec:8f:bc:49:a3:45:83:0e:ee:72:33:87:ff:80:
79:c7:b5:41:0c:60:e0:20:3f:3b:2e:b2:f1:f8:66:
41:e8:22:4b:0d:e9:11:9f:d6:75:46:4b:3c:4b:30:
1f:89:bc:44:73:d1:52:49:94:71:fc:e4:1d:bd:e2:
19:49:92:64:5a:e6:cb:ff:cc:37:26:ae:81:34:a0:
57:f7:47:da:b0:06:d7:bc:ea:b3:8f:ca:db:d0:1a:
cd:74:a9:2d:81:68:cb:ee:a7:1e:13:9d:49:39:0a:
d8:ae:21:8e:4e:67:f7:b0:82:ec:d4:d8:b0:90:e1:
cc:a2:8b:4d:17:88:6d:ad:b7:1e:a1:2b:1b:37:ea:
3b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:EF:33:18:EE:AF:0F:59:20:CE:AE:69:C8:F3:65:C9:65:44:39:51
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/pu8zGO6vD1kgzq5pyPNlyWVEOVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
11:74:38:cc:d6:34:f4:a7:20:1d:d4:ef:75:fb:6c:57:50:af:
0a:31:01:2a:5b:5d:ed:3b:3f:ba:26:d4:60:7f:2d:2c:5f:af:
2a:34:ba:94:38:cd:bf:ee:fe:4d:18:e5:11:81:73:83:eb:2f:
1a:95:29:c3:f6:94:01:3e:34:60:bb:df:33:4a:68:0e:47:77:
b5:1e:96:45:f1:06:e7:aa:82:24:4a:17:f0:40:89:c0:d6:1a:
3a:23:40:a7:1b:91:30:dc:30:c9:cc:59:8e:c0:ad:f4:c9:9f:
5c:b4:89:d5:80:88:97:85:29:d0:55:42:88:bd:d0:94:13:29:
35:a4:d0:6e:3f:e5:ad:2f:c0:05:bc:27:07:4a:a1:62:f8:c4:
d6:05:81:de:a8:bc:dd:db:62:08:08:c2:f9:8c:5f:b9:85:db:
7f:1d:19:cc:b2:f5:74:d2:ca:09:73:15:fc:e7:a4:82:4c:53:
4e:91:19:b5:98:60:cb:8f:09:93:a6:f6:b8:1d:40:f3:91:37:
ba:bf:72:b1:74:7f:3d:4c:36:b6:5b:99:42:9f:82:56:5e:d5:
76:51:58:c9:09:6a:b4:eb:a5:35:92:eb:cb:1b:5c:a4:ec:3b:
60:8b:bf:ba:d1:ab:66:93:90:f0:74:37:34:f3:e5:32:c1:82:
5a:37:b0:7a
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:36 2025 by rpki-client