Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ueWtFBqJdQ5qKbn4CthPIblC3jc.roa
File: ueWtFBqJdQ5qKbn4CthPIblC3jc.roa (raw, json)
Hash identifier: 0qNNaZboabbF15toZZz4yuYfT/mXCVGHTu/XjirPTuE=
Subject key identifier: B9:E5:AD:14:1A:89:75:0E:6A:29:B9:F8:0A:D8:4F:21:B9:42:DE:37
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0191584E1BA6B89EF4FF35E1FCF8E621D406
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ueWtFBqJdQ5qKbn4CthPIblC3jc.roa
Signing time: Thu 15 Aug 2024 23:09:59 +0000
ROA not before: Thu 15 Aug 2024 23:09:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Fri 16 Aug 2024 00:04:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:58:4e:1b:a6:b8:9e:f4:ff:35:e1:fc:f8:e6:21:d4:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 15 23:09:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b9e5ad141a89750e6a29b9f80ad84f21b942de37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ac:85:ee:62:a5:2a:88:d9:34:8f:0c:4f:1a:
4e:3b:1e:77:31:3a:55:00:ef:a5:2b:76:4e:3c:aa:
45:12:0e:86:f9:52:71:94:c8:d7:65:ac:8a:f2:4c:
21:b4:fd:e2:dd:4f:a5:d8:3f:ee:56:75:54:81:c6:
ae:fc:76:5d:65:bd:e5:12:97:f3:da:46:1f:01:c0:
95:2b:2a:76:ce:84:18:9f:4f:e6:19:db:54:a5:2e:
fe:b3:36:68:4e:a1:ed:3f:57:8b:8d:ee:aa:82:cc:
a1:48:33:89:5b:98:39:6e:07:c7:c9:9c:87:18:23:
d4:f7:7a:56:a4:b0:cc:a0:4b:08:18:ec:ad:28:4a:
4a:cf:12:15:96:8f:5e:cb:2c:8d:a1:e3:03:e2:b7:
4e:5b:55:dd:46:0e:f9:34:d9:0b:9d:5c:ff:f5:5d:
15:33:1f:86:4b:bb:05:b2:51:ca:c7:f4:41:3b:79:
c2:c7:d3:a0:2b:20:2e:32:a3:ec:77:9a:0e:23:56:
bf:4b:c2:b7:6c:48:fb:7f:a1:f6:d3:4c:6c:e0:34:
53:dc:5f:e7:d5:96:d4:6c:2a:c4:38:96:52:6c:2e:
69:01:3c:42:ee:89:25:af:0a:27:74:9e:9e:dd:cb:
94:79:e2:93:5b:d2:f2:d6:5e:e3:b9:6a:53:cd:6b:
a0:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:E5:AD:14:1A:89:75:0E:6A:29:B9:F8:0A:D8:4F:21:B9:42:DE:37
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ueWtFBqJdQ5qKbn4CthPIblC3jc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
56:8c:67:c0:25:b6:32:be:a7:64:df:df:68:cb:c6:22:17:ea:
3b:e8:7d:73:00:33:f3:a8:c3:ee:23:54:8a:20:3e:1a:44:74:
66:70:a9:20:6f:be:1f:f5:ce:3a:8f:ff:2c:8c:54:3b:0b:44:
cc:12:23:6e:ee:95:ca:d6:7b:06:c5:a9:dd:49:96:8a:ac:30:
f1:50:da:8c:36:fc:be:2a:db:e5:c8:d3:f5:6e:b5:ba:36:c5:
a5:56:fc:ef:cd:e4:ed:56:97:21:26:d5:92:f0:4b:cb:cf:93:
3d:5a:aa:26:96:3d:4f:e9:7e:fa:7c:5e:61:fc:36:42:fc:4f:
e6:e3:6f:8d:a5:85:35:64:3a:1f:ab:f6:be:29:9d:36:64:1f:
04:ff:14:7e:71:20:f4:6a:90:6f:30:bd:c0:31:5e:7b:8a:c8:
01:2d:6c:01:e1:c1:77:fd:f8:fa:0c:2a:b0:53:4a:31:40:fb:
39:17:40:32:ac:d3:5d:92:a6:a3:65:a1:03:03:d2:03:7a:68:
aa:95:c1:a0:6d:0a:ff:14:28:d1:5a:c2:58:01:b9:26:b9:f3:
6c:1f:56:77:e7:68:24:54:e1:2d:2c:d8:4e:65:44:65:90:af:
b5:0c:42:71:f9:aa:ef:80:9f:c3:54:04:d9:91:58:63:30:ae:
86:57:e2:cd
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Aug 16 03:36:04 2024 by rpki-client on console-ams.rpki-client.org