Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/sQyHxGoWfCaOxjqqIVEiqSaE8zk.roa
File: sQyHxGoWfCaOxjqqIVEiqSaE8zk.roa (raw, json)
Hash identifier: 6igz1GDR2vSITFAi+sVrN6+vQgOSOQVRk5zELD2Vkb4=
Subject key identifier: B1:0C:87:C4:6A:16:7C:26:8E:C6:3A:AA:21:51:22:A9:26:84:F3:39
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019183A8AE6A4CB10A9239BB1B09DA5D41D3
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/sQyHxGoWfCaOxjqqIVEiqSaE8zk.roa
Signing time: Sat 24 Aug 2024 09:12:35 +0000
ROA not before: Sat 24 Aug 2024 09:12:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Sat 24 Aug 2024 10:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:83:a8:ae:6a:4c:b1:0a:92:39:bb:1b:09:da:5d:41:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 24 09:12:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b10c87c46a167c268ec63aaa215122a92684f339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:3b:cf:50:18:f3:48:9e:7d:50:75:bc:a7:47:
6d:d3:39:0e:80:07:59:2f:3c:77:5b:e7:74:61:16:
a9:9e:04:0c:f6:89:e2:57:29:a1:0a:f8:18:ad:91:
06:e0:55:51:03:bf:76:ea:66:5b:61:a5:32:e5:0d:
a5:f9:f7:b2:4d:86:25:18:20:f0:5a:cc:ba:ea:76:
46:89:db:e0:42:d1:88:92:6e:87:c5:f0:62:19:6a:
cc:c6:9f:02:bd:b9:c7:9c:0c:09:af:8b:f4:7f:d4:
fd:ec:fa:87:99:0c:01:ea:4c:be:55:c6:a5:18:92:
1e:96:db:9f:55:19:4c:7a:45:84:b4:1d:16:07:10:
31:4a:7f:7c:39:32:92:df:5c:52:24:fc:f7:08:55:
da:86:c2:74:23:2a:50:19:af:53:dd:5a:f5:c9:32:
94:68:fc:9e:8c:8f:a8:be:ad:49:e6:60:74:ba:64:
65:31:fa:62:fa:95:4d:b6:14:97:bb:0e:68:e0:4a:
15:86:ec:47:a5:65:71:87:92:46:93:e1:55:a2:34:
36:82:ae:30:3b:9a:f6:5a:c0:9c:44:3f:e3:d5:2e:
c6:35:14:a9:8c:56:f6:3b:20:70:c7:40:38:e2:c0:
82:c7:24:8e:41:ed:62:9e:af:ec:b3:2b:31:f9:ba:
2a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:0C:87:C4:6A:16:7C:26:8E:C6:3A:AA:21:51:22:A9:26:84:F3:39
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/sQyHxGoWfCaOxjqqIVEiqSaE8zk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
46:61:00:d8:b3:ac:29:c7:da:9e:d6:d8:a6:21:25:52:e7:e9:
5c:8d:69:2f:91:2c:bd:b4:11:94:36:4e:04:a2:56:01:36:84:
8e:8a:bf:04:38:eb:c0:b7:3e:6f:b9:db:2e:71:9a:0d:e6:84:
ff:ab:67:a0:67:4f:b1:a1:da:27:90:c0:9a:6c:05:cd:7d:ec:
d7:30:9b:08:ee:aa:55:03:5f:fb:c7:3e:ee:5c:bc:e9:96:96:
31:e3:41:dd:1e:79:11:0a:2c:3f:ee:a1:d9:98:7a:4d:da:21:
36:d3:81:b3:fd:1a:9b:28:cd:3b:a9:0f:9a:78:11:32:b2:9f:
10:65:c6:d3:59:12:93:74:fd:26:43:77:65:47:21:36:7d:a7:
30:22:93:22:84:a0:5d:bf:3c:cf:82:0f:03:3f:41:ad:a5:b8:
f7:af:d7:d9:9a:f5:d4:fa:3f:fd:64:dd:32:12:a6:06:88:20:
64:fe:4b:88:91:9c:b7:d2:b0:b9:f0:3a:33:3d:38:b2:8f:0a:
58:91:52:83:6a:d8:7e:5a:dc:5c:9b:6d:b9:0f:01:7b:c6:ec:
a9:f1:e0:a6:6c:a0:cb:fb:f4:a9:5d:9b:db:54:fe:0c:26:f4:
44:ed:ce:f8:a5:27:27:a5:10:de:00:e3:72:9e:51:00:c3:03:
32:cf:bb:b7
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Aug 24 13:32:00 2024 by rpki-client on console-fra.rpki-client.org