Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/tpknX14iFQqWDZPKqYlbJGFEqWc.roa
File: tpknX14iFQqWDZPKqYlbJGFEqWc.roa (raw, json)
Hash identifier: pZ2KiGFaxKGackfB1+fv9R8BkDDYfIjk04JtpEDTulk=
Subject key identifier: B6:99:27:5F:5E:22:15:0A:96:0D:93:CA:A9:89:5B:24:61:44:A9:67
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019273199F8FE15BA28109E07195CA692DA0
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/tpknX14iFQqWDZPKqYlbJGFEqWc.roa
Signing time: Wed 09 Oct 2024 21:05:11 +0000
ROA not before: Wed 09 Oct 2024 21:05:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:192:7318:f4c6/128 maxlen: 128
Validation: Failed, certificate revoked on Wed 09 Oct 2024 21:09:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:73:19:9f:8f:e1:5b:a2:81:09:e0:71:95:ca:69:2d:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Oct 9 21:05:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b699275f5e22150a960d93caa9895b246144a967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:7e:75:2c:1d:29:e2:d7:72:d6:ca:8e:6e:04:
07:7d:03:59:ed:ff:e0:ff:5c:9c:74:06:4e:cd:64:
71:29:19:30:51:e4:39:9d:18:e5:98:6e:6d:5a:f8:
57:b7:36:94:9d:79:a9:1a:b0:82:8c:91:a5:21:9a:
d1:d1:2c:a6:af:97:e3:ca:84:d3:a1:d6:e7:de:d3:
bd:0a:3b:5b:11:19:f0:e5:51:22:d4:31:47:40:3b:
f2:b7:29:17:f2:3e:a6:77:e9:b0:a2:f7:b0:4e:37:
08:cc:e1:d7:c0:d0:6f:a6:b8:7b:50:59:83:e0:bb:
8b:61:cb:25:31:a8:d6:99:76:7f:2b:03:95:9f:a8:
d2:94:12:34:97:00:11:90:74:09:59:8d:49:fb:93:
c8:e8:b4:83:99:13:b8:76:9d:bf:1b:79:11:02:8a:
5f:2c:0f:5e:13:ab:f6:65:73:9c:8c:29:87:00:c5:
fc:cc:51:28:db:5b:d3:d5:3b:43:19:2c:43:e7:72:
2c:34:86:c2:e8:8b:dc:c6:13:2e:3d:8a:87:e8:2a:
42:1a:32:a6:94:11:09:39:57:23:93:3b:7b:5d:0f:
0b:41:74:63:57:20:80:e4:81:d7:1b:e3:ea:52:e4:
36:b6:20:e8:97:dc:c2:27:3d:3f:b4:06:71:84:a6:
1d:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:99:27:5F:5E:22:15:0A:96:0D:93:CA:A9:89:5B:24:61:44:A9:67
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/tpknX14iFQqWDZPKqYlbJGFEqWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:192:7318:f4c6/128
Signature Algorithm: sha256WithRSAEncryption
07:b7:8c:29:da:9c:86:03:77:a4:78:78:fc:e6:d4:20:33:71:
1d:9a:2d:41:82:9e:94:95:cb:a3:30:7c:e3:90:95:16:79:c1:
18:3d:5c:23:13:3b:e2:57:5d:c9:04:17:07:2e:40:29:c0:bc:
ad:56:7e:9a:01:d4:c1:5d:f9:3d:b7:05:4a:3c:1f:77:e5:01:
9e:7d:07:3b:5c:0b:14:be:37:d3:0e:27:2b:16:72:11:90:5e:
b9:92:60:23:0e:82:8c:27:6b:f7:7e:13:60:ef:b2:4c:be:a3:
1f:de:44:2f:bc:7d:fa:e7:43:8b:78:52:3e:8f:8b:15:ed:5f:
88:bc:23:7a:94:5d:e5:6f:8d:23:23:b5:4f:83:85:2d:a5:54:
d8:22:47:eb:0f:6c:16:af:7c:c8:67:5c:65:49:48:84:bd:5e:
2e:8c:81:cd:3d:b7:bf:e0:30:1e:d8:1d:27:96:83:3f:69:2a:
41:61:e8:7a:da:6e:d5:5f:ad:2f:69:db:a8:18:c6:87:79:36:
0f:0d:13:05:ed:53:aa:8a:a5:c4:0b:95:86:23:68:0d:34:e0:
7b:76:ca:ff:df:99:a6:da:61:13:0c:90:8d:c6:56:b4:05:47:
7b:73:fe:fb:47:2f:4a:5a:fe:d8:be:3e:a0:93:01:e7:62:51:
04:04:ed:eb
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Oct 10 02:55:15 2024 by rpki-client on console-fra.rpki-client.org