Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/uFz8fmM4-H1WruGGB-3n8Xg_YCk.roa
File: uFz8fmM4-H1WruGGB-3n8Xg_YCk.roa (raw, json)
Hash identifier: ofgTFpv1/uDO/6ahYgyMEb1s64PdYuUNd3GlN63XUBE=
Subject key identifier: B8:5C:FC:7E:63:38:F8:7D:56:AE:E1:86:07:ED:E7:F1:78:3F:60:29
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01914D277EE1D723A4B3DD259256D9FFB141
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/uFz8fmM4-H1WruGGB-3n8Xg_YCk.roa
Signing time: Tue 13 Aug 2024 19:11:59 +0000
ROA not before: Tue 13 Aug 2024 19:11:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Tue 13 Aug 2024 20:04:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4d:27:7e:e1:d7:23:a4:b3:dd:25:92:56:d9:ff:b1:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 13 19:11:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b85cfc7e6338f87d56aee18607ede7f1783f6029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:50:e9:95:9a:3e:e0:85:52:bc:55:f8:cc:32:
bd:1b:f7:11:d9:c7:77:1e:17:d7:1c:5e:89:b0:d1:
8c:30:b9:e2:2c:c2:86:db:28:d4:50:88:5d:f1:f8:
c8:10:36:e8:16:d6:c4:6f:fd:2b:3a:0d:3a:62:21:
e6:24:e7:04:f8:90:69:2c:85:83:bd:75:0e:38:cc:
ec:87:ce:4b:be:51:90:93:af:68:43:fe:94:53:0f:
f4:3e:5e:5d:a4:7b:a3:8e:4f:35:b7:67:6e:b0:5f:
88:8b:69:e2:ef:ac:e4:58:00:95:34:59:c5:10:6e:
2a:3e:a2:0c:d5:7a:d0:4d:dc:3f:ec:6d:8b:59:78:
f5:54:e5:21:c5:b9:d1:50:45:d8:21:81:d5:c0:5d:
f4:16:8b:20:03:e1:7d:4b:a0:c7:12:b2:b8:07:02:
11:6c:9b:a6:a8:03:f0:41:df:67:f8:db:77:4a:15:
b0:dd:cd:b0:74:d3:20:76:e2:21:a1:ec:74:a6:5f:
7a:ba:d9:f2:8b:3d:9e:41:23:d8:65:c5:52:44:e4:
6e:aa:cb:62:4f:9e:48:cb:00:53:08:1d:93:08:4c:
87:2b:16:b3:7b:57:36:7a:fd:24:ad:f1:33:89:bd:
c3:d9:52:a7:bb:e5:38:ea:92:d0:e4:bf:e3:2b:a0:
3c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:5C:FC:7E:63:38:F8:7D:56:AE:E1:86:07:ED:E7:F1:78:3F:60:29
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/uFz8fmM4-H1WruGGB-3n8Xg_YCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
71:55:af:4c:75:7d:54:ba:03:97:ef:3f:aa:b8:0f:52:e9:26:
aa:47:88:a2:2a:af:0f:67:f8:3b:42:a5:2b:5b:dc:5f:9a:a0:
39:5e:fc:1c:7a:89:a2:70:9e:69:f7:10:b0:93:43:d5:35:b2:
d1:d0:4a:22:db:78:45:40:c3:8d:18:fa:1b:44:74:a6:f3:8d:
ed:dc:8f:4d:5d:78:27:66:7d:1c:38:05:0d:7b:58:39:70:76:
f4:3a:ba:95:43:dd:71:60:8f:53:af:77:11:ce:cf:88:13:b1:
5b:ab:a0:df:b4:bd:87:86:bb:85:3e:49:8b:28:8d:5c:11:93:
e8:04:9a:23:13:d2:37:6c:2d:57:a4:15:d2:4e:fe:06:9b:90:
2f:fe:1b:48:a0:87:4d:97:6d:91:35:af:22:6e:f4:b7:4a:fb:
a7:5d:88:d7:90:e6:4f:f1:48:8a:b5:da:cf:9e:42:a9:69:5c:
87:de:96:61:0e:4d:f7:89:80:55:c3:57:1e:98:d0:52:c2:cd:
23:e1:4b:ed:38:13:cb:32:8b:13:e4:b5:8a:c2:22:87:5f:f3:
9c:b4:3b:a8:4f:6c:db:36:ff:ef:03:9f:43:b8:3d:36:e9:80:
6a:e3:1c:d1:d7:91:5d:71:86:62:1c:4f:15:bf:98:70:8f:1e:
9e:5f:3e:ce
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Aug 13 22:03:44 2024 by rpki-client on console-fra.rpki-client.org