Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/vZdwAbUuTM7bQe3oEfH-Qm1J59U.roa
File: vZdwAbUuTM7bQe3oEfH-Qm1J59U.roa (raw, json)
Hash identifier: iaBrrTo+N1aipvKpzLWQwHGb0TsgFZ4yMp6be60Y7Tk=
Subject key identifier: BD:97:70:01:B5:2E:4C:CE:DB:41:ED:E8:11:F1:FE:42:6D:49:E7:D5
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01915A00FC94C6A229C75DD5BEE1F1972013
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/vZdwAbUuTM7bQe3oEfH-Qm1J59U.roa
Signing time: Fri 16 Aug 2024 07:04:59 +0000
ROA not before: Fri 16 Aug 2024 07:04:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
2001:67c:64:ffff:0:191:5a00:99cd/128 maxlen: 128
Validation: Failed, certificate revoked on Fri 16 Aug 2024 07:10:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5a:00:fc:94:c6:a2:29:c7:5d:d5:be:e1:f1:97:20:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 16 07:04:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bd977001b52e4ccedb41ede811f1fe426d49e7d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:57:d1:81:bf:90:d8:cf:d7:ed:2d:17:7c:34:
55:b0:42:68:ff:43:e0:b0:4a:13:f1:d3:b6:8b:d2:
c3:0e:df:ae:1c:c5:c9:87:8c:ac:8c:2b:82:94:81:
de:fe:bc:ba:cd:ec:d3:4e:eb:6d:59:ba:7d:ae:28:
1f:24:48:46:16:d4:d1:07:59:e8:22:58:a3:f0:3d:
e0:d2:34:f1:a7:95:e6:65:1f:c7:99:3e:8a:cf:d1:
f8:4c:74:b2:aa:f9:e8:11:89:b5:cb:b9:c8:77:6a:
12:9e:e8:25:d1:cc:b7:55:a9:23:68:7c:13:ba:f9:
ae:11:01:0e:ae:49:62:24:b8:dd:2a:60:31:c4:74:
59:14:26:c8:49:95:19:aa:c0:9a:a9:25:be:9a:cb:
a7:ad:68:40:5b:32:0a:82:1e:e0:31:ca:fa:67:57:
7e:a5:6e:7d:34:1c:2b:69:7e:a0:57:59:d2:ca:85:
b9:63:22:3f:d4:12:87:de:e7:09:f5:b6:f9:99:21:
01:33:1c:1a:51:7a:97:4a:3a:27:16:9a:65:0d:ee:
86:49:2b:e0:85:5f:93:24:6d:87:8e:46:fd:8a:ae:
b4:66:9c:bc:89:4f:7b:ba:97:16:d6:f7:35:98:0e:
94:3e:fc:df:8e:72:d0:aa:fa:32:30:d9:4b:0f:37:
b2:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:97:70:01:B5:2E:4C:CE:DB:41:ED:E8:11:F1:FE:42:6D:49:E7:D5
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/vZdwAbUuTM7bQe3oEfH-Qm1J59U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
2001:67c:64:ffff:0:191:5a00:99cd/128
Signature Algorithm: sha256WithRSAEncryption
74:42:df:28:d4:44:4a:1d:69:64:ce:3c:d6:80:e4:bf:a0:71:
2f:dd:43:28:a5:50:83:15:fb:9f:ed:53:b2:cc:37:dd:d9:ea:
26:a2:f8:ce:d1:87:04:95:8d:24:ec:72:82:02:4e:32:00:a7:
8f:2f:e9:51:14:57:fa:91:f5:2e:b5:80:eb:aa:cb:db:c8:37:
08:ed:2e:78:d4:6b:08:dc:bc:fa:18:0a:61:98:4a:fb:56:e4:
60:db:17:ef:fa:c5:21:ee:78:27:d6:48:5c:40:b6:a6:c4:ab:
1d:76:d8:be:05:ef:48:3a:35:fc:3d:c3:b4:52:38:1c:2a:96:
54:b5:6f:81:8a:2e:33:96:4b:bc:f5:72:b1:41:20:0b:58:af:
20:6e:e7:d1:8c:fb:1a:42:54:ff:20:81:d2:9a:4d:34:39:ee:
fd:e7:c8:0a:77:73:49:85:be:b9:96:6b:02:40:46:4b:41:51:
14:b9:32:c9:05:fe:8a:78:a6:ad:7e:90:e2:c4:17:49:3f:15:
86:45:4f:34:90:48:84:b5:7d:68:6d:d1:94:7b:1d:96:b4:a1:
e1:ba:19:f3:69:b3:f5:41:47:e9:a6:d4:de:b8:65:c0:3c:1e:
54:98:d1:82:e0:66:ec:f1:50:60:d3:93:d3:12:36:a3:25:5e:
10:f4:d3:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 16 10:13:44 2024 by rpki-client on console-fra.rpki-client.org