Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/vwD_qaswHcNskM2pWvQP8sr2130.roa
File: vwD_qaswHcNskM2pWvQP8sr2130.roa (raw, json)
Hash identifier: jM6AHcRM6ntgp1dj9A8108VXQ2sgXqQQSMqV9a8Lav0=
Subject key identifier: BF:00:FF:A9:AB:30:1D:C3:6C:90:CD:A9:5A:F4:0F:F2:CA:F6:D7:7D
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019189AAAA2DCAB0E7FA61C3D06367638E02
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/vwD_qaswHcNskM2pWvQP8sr2130.roa
Signing time: Sun 25 Aug 2024 13:12:28 +0000
ROA not before: Sun 25 Aug 2024 13:12:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Sun 25 Aug 2024 14:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:89:aa:aa:2d:ca:b0:e7:fa:61:c3:d0:63:67:63:8e:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 25 13:12:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bf00ffa9ab301dc36c90cda95af40ff2caf6d77d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:00:1e:9e:c7:87:4b:38:ce:f3:a4:ff:63:43:
7d:43:c5:f8:66:5b:58:06:62:76:d1:7a:64:7b:4b:
d5:18:bb:69:6a:11:0e:26:e6:b6:dd:a7:7c:fe:89:
0b:18:54:28:61:2f:c3:4e:98:bf:d4:63:b7:20:e8:
70:c1:0f:ca:f9:a6:c9:96:f4:f6:dd:31:fe:2e:d8:
3d:2e:a4:fb:b0:50:aa:a2:a2:8b:38:c5:28:ab:a8:
a8:4c:61:7f:6f:87:24:6e:82:d2:c9:58:4b:30:ef:
03:35:8d:10:c5:b7:d0:71:45:a7:b2:95:2b:56:23:
65:e2:ac:27:ad:e7:c6:ad:71:a9:1b:f9:03:f4:de:
7e:ce:52:f3:62:b7:f2:f4:7b:69:86:82:f9:42:c6:
ce:f1:5a:9e:0f:3a:cd:57:0b:7f:b8:92:eb:8a:5e:
45:16:27:c9:fe:7f:ea:8f:16:f3:a4:5a:79:ac:34:
f7:93:c2:a7:9b:04:9e:bc:e4:fd:cc:b3:9e:47:ad:
73:84:d6:2c:05:e4:48:55:e9:e8:ef:34:d5:8b:a1:
b0:a0:ee:82:14:b4:66:03:80:63:6a:7c:4f:1f:88:
86:c9:de:5a:77:6a:3d:84:b0:7a:49:59:b0:6d:9e:
8f:f0:76:f8:59:25:b5:1a:ee:2b:58:e8:8b:b4:94:
c8:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:00:FF:A9:AB:30:1D:C3:6C:90:CD:A9:5A:F4:0F:F2:CA:F6:D7:7D
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/vwD_qaswHcNskM2pWvQP8sr2130.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
10:d6:10:10:63:e7:56:94:8d:6e:ba:58:1e:52:de:52:81:13:
98:29:a1:22:67:42:c7:06:54:51:28:92:1b:0b:d3:d1:43:7e:
e6:6c:cb:61:ba:db:56:5e:6e:0e:e0:1f:eb:a0:f2:0b:f1:d7:
22:c8:76:bb:a0:ed:a3:e0:2d:16:02:49:f6:0b:54:e9:94:eb:
c9:1d:0c:a3:6e:28:1c:ad:e0:96:75:cc:bc:13:a2:ae:22:9e:
c9:88:1d:c2:3c:b9:ac:1e:da:3c:6f:53:f8:d3:ed:97:c5:a5:
3a:b9:8e:d3:17:d3:ce:4d:c1:53:8d:6a:3a:de:3c:aa:c4:94:
be:ef:34:bb:3d:0c:66:5b:6a:9e:4c:92:44:51:c5:dc:86:15:
10:87:fb:83:aa:91:6e:03:fe:1e:ec:8a:c3:ac:c4:7d:7d:df:
c3:27:f9:e7:d8:e0:53:5b:95:3f:27:ea:e9:87:39:bb:06:5c:
33:13:66:d6:92:b9:6d:76:bd:e0:9c:b5:8f:ab:9b:01:86:75:
77:48:65:bd:ee:c0:a3:d8:58:60:ca:5f:98:29:65:a6:c2:99:
76:fa:04:7d:cc:49:0d:8b:2e:17:64:ce:9b:54:9d:f5:1d:53:
b0:e0:27:6b:ac:9b:67:f0:24:f1:3b:ef:84:8f:6b:7e:d9:ec:
9a:1a:b7:de
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Aug 25 17:13:54 2024 by rpki-client on console-fra.rpki-client.org