Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/rVHJKOpaYc7ru2uMLQeFgWHLhG0.roa
File: rVHJKOpaYc7ru2uMLQeFgWHLhG0.roa (raw, json)
Hash identifier: BVml56lyKw36yXyAafaFIDnkCuq7BnBr9HyZMrnFIUA=
Subject key identifier: AD:51:C9:28:EA:5A:61:CE:EB:BB:6B:8C:2D:07:85:81:61:CB:84:6D
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0193113E14A34E2AFF13B38EF314385ACFDE
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/rVHJKOpaYc7ru2uMLQeFgWHLhG0.roa
Signing time: Sat 09 Nov 2024 14:05:01 +0000
ROA not before: Sat 09 Nov 2024 14:05:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:193:113d:6907/128 maxlen: 128
Validation: Failed, certificate revoked on Sat 09 Nov 2024 14:11:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:11:3e:14:a3:4e:2a:ff:13:b3:8e:f3:14:38:5a:cf:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Nov 9 14:05:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ad51c928ea5a61ceebbb6b8c2d07858161cb846d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:9d:48:49:f2:a2:86:5a:52:fe:e0:f4:79:c1:
8c:1e:4f:9e:0e:ad:65:ca:1d:65:05:7e:9f:bb:d7:
4f:00:89:07:6c:40:16:5b:a2:dc:80:83:27:c8:79:
c4:15:64:66:ed:b6:dd:95:df:28:38:b1:1f:60:12:
23:79:c5:c1:bc:f3:22:04:fd:e3:53:06:f4:25:09:
53:f4:11:5f:25:40:88:30:7d:80:1b:0a:1f:6a:33:
a5:bc:5f:ac:08:c1:23:e2:da:4f:5b:9d:9b:0f:25:
7e:f4:8c:73:4f:5d:8b:42:fa:64:83:8c:71:1f:ef:
73:6c:1a:ef:ff:37:6c:25:73:c7:ca:89:44:c4:ca:
01:0a:85:46:30:a5:97:93:06:9b:b3:55:f3:34:58:
2a:33:56:1b:33:1c:2e:e9:58:a3:96:7d:76:49:06:
6d:6d:db:46:d4:b7:8f:cf:9d:cb:42:bc:16:0b:ae:
bf:6b:85:e8:c3:ed:4c:5a:1e:f0:24:0a:5e:d8:22:
fb:60:3c:84:d0:98:bd:b4:a2:9b:3e:de:70:5e:a1:
6a:ed:f0:11:6a:92:7c:e3:06:c6:44:51:dc:28:14:
7e:e2:a3:79:1e:ef:05:de:ed:7b:cc:26:68:b8:03:
b0:a0:88:70:de:cb:96:d6:fe:8d:e6:a7:a6:58:54:
61:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:51:C9:28:EA:5A:61:CE:EB:BB:6B:8C:2D:07:85:81:61:CB:84:6D
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/rVHJKOpaYc7ru2uMLQeFgWHLhG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:193:113d:6907/128
Signature Algorithm: sha256WithRSAEncryption
64:9b:90:eb:52:4b:29:d8:d7:40:87:66:57:33:a0:61:56:b9:
20:d7:54:f4:60:d5:4e:f1:47:d3:8c:c6:a9:01:39:c7:4a:01:
28:03:33:65:d9:be:b0:dc:e4:6e:5f:80:57:39:2b:94:0e:82:
09:9b:1b:95:98:dc:a6:c0:43:f5:9d:9e:34:ce:85:d6:27:7f:
d8:22:e9:5e:9e:ab:fd:05:a2:80:58:37:31:1a:0e:29:d0:c9:
9c:d9:62:8f:26:ff:7a:54:df:18:af:5a:53:f4:0b:5d:07:af:
1f:6b:65:5b:79:9f:ca:97:b7:46:89:81:9d:f9:50:0c:a5:c6:
a5:bb:44:5c:ab:c8:d0:d0:e1:33:89:ce:72:d7:07:d4:6a:6c:
0d:0a:e3:27:c8:cc:33:34:a8:33:f6:a2:c4:fb:44:9f:e2:32:
16:33:92:47:ee:04:ae:6b:49:ae:44:76:cf:71:d1:1a:96:e3:
57:06:04:9a:73:95:ab:aa:59:6e:97:8f:c8:56:a8:96:ff:6e:
29:ab:6b:12:b1:9e:fe:47:6e:c3:be:9b:25:9b:43:d5:f1:ae:
05:24:8e:bc:a1:e0:dc:d5:b9:a3:47:af:81:f0:3b:f9:c2:e2:
28:ae:fe:39:33:33:63:65:0b:5b:2d:be:f0:fa:72:6c:c5:71:
b4:f2:4d:83
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgISAZMRPhSjTir/E7OO8xQ4Ws/eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQxMTA5MTQwNTAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZDUxYzkyOGVhNWE2MWNlZWJiYjZiOGMyZDA3ODU4MTYxY2I4NDZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3J1ISfKihlpS/uD0ecGMHk+eDq1l
yh1lBX6fu9dPAIkHbEAWW6LcgIMnyHnEFWRm7bbdld8oOLEfYBIjecXBvPMiBP3j
Uwb0JQlT9BFfJUCIMH2AGwofajOlvF+sCMEj4tpPW52bDyV+9IxzT12LQvpkg4xx
H+9zbBrv/zdsJXPHyolExMoBCoVGMKWXkwabs1XzNFgqM1YbMxwu6Vijln12SQZt
bdtG1LePz53LQrwWC66/a4Xow+1MWh7wJApe2CL7YDyE0Ji9tKKbPt5wXqFq7fAR
apJ84wbGRFHcKBR+4qN5Hu8F3u17zCZouAOwoIhw3suW1v6N5qemWFRhOQIDAQAB
o4ICFjCCAhIwHQYDVR0OBBYEFK1RySjqWmHO67trjC0HhYFhy4RtMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvclZISktPcGFZYzdydTJ1TUxRZUZnV0hMaEcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAAjATAxEAIAEGfABk
//8AAAGTET1pBzANBgkqhkiG9w0BAQsFAAOCAQEAZJuQ61JLKdjXQIdmVzOgYVa5
INdU9GDVTvFH04zGqQE5x0oBKAMzZdm+sNzkbl+AVzkrlA6CCZsblZjcpsBD9Z2e
NM6F1id/2CLpXp6r/QWigFg3MRoOKdDJnNlijyb/elTfGK9aU/QLXQevH2tlW3mf
ype3RomBnflQDKXGpbtEXKvI0NDhM4nOctcH1GpsDQrjJ8jMMzSoM/aixPtEn+Iy
FjOSR+4ErmtJrkR2z3HRGpbjVwYEmnOVq6pZbpePyFaolv9uKatrErGe/kduw76b
JZtD1fGuBSSOvKHg3NW5o0evgfA7+cLiKK7+OTMzY2ULWy2+8PpybMVxtPJNgw==
-----END CERTIFICATE-----
Generated at Sat Nov 9 18:21:11 2024 by rpki-client on console-fra.rpki-client.org