Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/vKtXzi20dr-EGqoWtR7jFybiOrc.roa
File: vKtXzi20dr-EGqoWtR7jFybiOrc.roa (raw, json)
Hash identifier: 692Of92PWMknHAd2li6zCeVKs/CcOmRPgOyKLk3hmG4=
Subject key identifier: BC:AB:57:CE:2D:B4:76:BF:84:1A:AA:16:B5:1E:E3:17:26:E2:3A:B7
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01913E20D5F710E06F04ABEEBE0A1E7509EA
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/vKtXzi20dr-EGqoWtR7jFybiOrc.roa
Signing time: Sat 10 Aug 2024 21:10:24 +0000
ROA not before: Sat 10 Aug 2024 21:10:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Sat 10 Aug 2024 22:05:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:3e:20:d5:f7:10:e0:6f:04:ab:ee:be:0a:1e:75:09:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 10 21:10:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bcab57ce2db476bf841aaa16b51ee31726e23ab7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:dd:25:8e:2b:a2:a3:6a:b1:85:99:0d:17:ed:
d2:e7:4b:72:82:8f:b3:a9:b9:f0:e7:d5:ad:3b:9c:
6f:ee:5f:d0:bd:80:f1:18:a0:5a:88:db:da:2a:1f:
56:16:d9:12:d3:21:e2:64:37:ce:bc:e1:8b:af:73:
67:df:1f:14:0b:66:da:3b:7d:4b:4d:4a:c5:0d:2b:
bd:02:35:11:98:f3:1b:0b:8d:31:30:39:ed:10:af:
e3:81:83:4a:d3:1c:91:c0:44:49:1a:ed:85:10:4e:
ac:d5:26:bc:d5:5c:e0:64:4e:2e:99:80:91:d4:eb:
d4:6f:ab:f5:be:ab:9e:72:2a:83:50:14:c2:59:33:
99:c3:d5:5c:9c:f9:89:e6:be:72:32:0a:1c:99:c5:
4b:4b:9e:01:23:3c:1c:ab:2a:0c:dd:07:69:b5:3d:
15:6c:86:c7:c7:4d:c0:d3:83:eb:1f:f0:51:31:96:
25:23:77:38:eb:75:e0:1b:be:05:cc:f4:07:f2:58:
f4:cd:fd:a7:40:65:8c:7c:dd:1a:52:b7:22:b8:f7:
98:0f:d1:1f:87:95:7b:85:e7:07:f7:67:3b:a6:c8:
2d:95:21:38:a8:ad:bb:fc:a3:84:6a:bb:51:9a:04:
34:bf:a4:b2:cd:bd:a3:c3:81:d0:87:26:bb:11:80:
dc:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:AB:57:CE:2D:B4:76:BF:84:1A:AA:16:B5:1E:E3:17:26:E2:3A:B7
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/vKtXzi20dr-EGqoWtR7jFybiOrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
82:4e:5f:54:30:3e:7d:7e:fb:a8:4e:e2:cf:8a:fb:da:17:2a:
f4:fc:ac:d4:d4:08:96:87:44:3c:f3:a0:32:c6:81:d2:e6:de:
a8:92:3d:cd:2c:1b:67:95:9c:86:80:de:d2:e6:e2:6d:94:a8:
7d:5f:42:d6:a7:47:98:f0:cb:65:c8:c3:2e:67:4d:e3:5b:60:
c0:55:78:70:6f:e6:08:2d:62:5e:55:03:9b:8e:16:72:5d:66:
b8:d2:25:1d:8f:a1:8b:fe:85:0e:65:86:96:40:03:95:0f:f1:
da:e9:40:a9:9b:e4:28:b1:90:23:3d:2b:ca:5c:21:37:73:5e:
cd:20:84:4f:32:24:15:09:6e:66:24:53:59:b8:ac:28:25:b1:
16:14:1b:83:27:fc:01:4c:17:84:46:6b:87:db:7f:1e:6b:86:
0c:b0:9e:25:80:cc:31:65:67:ae:86:74:55:f0:db:b5:4d:b3:
0e:c8:d4:43:75:6f:10:8d:c3:f4:8f:24:5b:cf:e1:21:fc:0f:
1f:4c:a6:9d:20:72:93:3f:33:1a:ee:f8:24:30:3c:f6:9e:6a:
42:6a:95:df:70:27:9e:ce:15:5e:65:9b:02:e7:66:3e:fa:68:
43:cb:39:54:42:7a:47:e1:04:62:ad:13:65:c8:d1:91:01:fa:
e5:5a:bd:e9
-----BEGIN CERTIFICATE-----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==
Generated at Sun Aug 11 00:40:07 2024 by rpki-client on console-fra.rpki-client.org