Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/uaAkEN9dbUnJVXizc2lAlhSD8TI.roa
File: uaAkEN9dbUnJVXizc2lAlhSD8TI.roa (raw, json)
Hash identifier: QITq0sDiGMLZow2mYGu+ST5mS78WQYQXACLGYk2rYRo=
Subject key identifier: B9:A0:24:10:DF:5D:6D:49:C9:55:78:B3:73:69:40:96:14:83:F1:32
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01912B08862F4785276808AF152BA2E483A3
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/uaAkEN9dbUnJVXizc2lAlhSD8TI.roa
Signing time: Wed 07 Aug 2024 04:11:04 +0000
ROA not before: Wed 07 Aug 2024 04:11:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Wed 07 Aug 2024 05:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:2b:08:86:2f:47:85:27:68:08:af:15:2b:a2:e4:83:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 7 04:11:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b9a02410df5d6d49c95578b3736940961483f132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:49:e3:c6:ff:ee:a2:36:80:28:d0:57:cb:d2:
b8:09:b5:76:e9:63:c0:d4:30:17:c5:24:1f:78:ab:
08:15:36:d3:ca:e6:87:d9:53:e1:7d:aa:0c:96:6d:
f0:8f:21:72:f4:a9:55:bd:cb:09:f1:b6:8d:ac:a7:
48:9c:d5:3f:ed:bb:0b:79:de:a0:2c:30:59:f0:6f:
ac:06:35:a2:e9:38:82:ab:1f:a1:45:cb:de:95:e6:
38:9c:6e:fc:48:20:e7:6e:54:77:77:ad:79:31:65:
e1:2e:c5:e4:0e:91:6b:a8:8a:c6:46:63:5c:e7:f8:
99:1c:03:19:ee:0c:41:c6:14:10:ca:3c:b2:f3:e5:
08:7c:ad:5b:9c:9e:fa:1b:5c:af:2a:3b:1f:3a:5f:
16:eb:04:ca:93:32:dc:1b:46:cd:e4:ac:b7:66:f8:
da:6b:6f:4e:84:8e:a7:b4:a0:d8:d6:73:72:37:22:
03:7f:48:e3:7e:3e:d7:e2:eb:45:cf:6b:91:f8:54:
b7:96:14:c5:3c:55:68:e8:0a:ab:9b:da:f2:af:9f:
e0:a9:39:0d:30:29:d4:11:9b:86:21:d5:57:a2:ec:
a3:be:f2:64:02:a6:54:70:97:7d:49:45:af:ec:55:
5b:83:46:9a:b2:13:19:2c:9b:e6:66:76:e3:49:06:
67:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:A0:24:10:DF:5D:6D:49:C9:55:78:B3:73:69:40:96:14:83:F1:32
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/uaAkEN9dbUnJVXizc2lAlhSD8TI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
90:95:51:50:ca:74:b4:32:2a:ff:5a:bc:62:9b:53:64:a2:3d:
ca:64:87:60:62:c1:bb:75:23:7b:e1:5b:5c:2f:04:67:8c:d3:
21:8c:fc:81:e8:26:0a:08:81:a9:0d:98:79:12:a3:52:3f:da:
11:cf:62:08:f1:ad:a8:11:87:21:99:7d:3f:29:9f:d8:92:85:
f0:18:1c:96:ed:3d:92:2f:5c:4c:32:a4:ae:be:b3:ac:d1:ac:
a0:26:b8:bc:cb:ca:d1:dd:5b:5e:27:9c:85:5f:80:d4:77:bd:
c0:1b:d7:d4:d7:40:16:17:41:7d:0e:8f:ee:72:13:56:0b:12:
0b:d1:1d:c1:7c:79:cc:b6:df:c5:e3:37:20:9a:1d:cb:98:17:
09:86:1f:53:91:c4:2e:ac:45:be:60:af:54:c9:ad:8e:32:3c:
e0:0d:f6:a9:cd:4e:46:b7:38:af:00:23:0e:a0:ec:b8:ad:90:
55:95:b7:60:f7:9d:b0:83:2d:6c:c8:c4:dd:e3:7f:ad:05:26:
ef:24:00:a7:3e:b6:d7:d1:f4:ca:7b:7d:94:05:c1:f7:5f:e2:
a4:d3:55:5d:a5:2a:76:2d:24:97:c3:7d:b8:14:f3:12:61:2f:
d5:26:70:51:79:66:f9:ef:c8:72:78:68:2f:9b:8f:0c:6b:2f:
b8:57:85:39
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:41:19 2025 by rpki-client