Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/xjkPcoIjXhaCBvdJVXv8onuigvg.roa
File: xjkPcoIjXhaCBvdJVXv8onuigvg.roa (raw, json)
Hash identifier: KnIaorabTpGgQN1XXvSl/rnxo/RMn3wu1oc+zgsxFFc=
Subject key identifier: C6:39:0F:72:82:23:5E:16:82:06:F7:49:55:7B:FC:A2:7B:A2:82:F8
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0192C0C6F4C499200C806F3686698226BAB4
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/xjkPcoIjXhaCBvdJVXv8onuigvg.roa
Signing time: Thu 24 Oct 2024 23:05:17 +0000
ROA not before: Thu 24 Oct 2024 23:05:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:192:c0c6:947/128 maxlen: 128
Validation: Failed, certificate revoked on Thu 24 Oct 2024 23:11:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:c0:c6:f4:c4:99:20:0c:80:6f:36:86:69:82:26:ba:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Oct 24 23:05:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c6390f7282235e168206f749557bfca27ba282f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:61:43:e8:c2:af:ab:53:48:fe:a5:e7:a8:35:
93:59:04:e3:a0:44:24:39:56:fb:52:b3:83:90:06:
ac:e7:90:ea:2c:2f:da:6c:87:a6:de:38:4a:96:c2:
11:6c:c9:6f:48:eb:ec:a4:e0:6d:fa:e3:4d:4f:00:
ff:d4:ab:61:a8:16:bc:c1:71:c1:c2:eb:5b:4b:ba:
de:91:a9:50:ad:5c:63:73:c3:51:20:9b:75:03:db:
51:4b:71:c8:a0:54:8f:18:21:07:cd:64:68:e0:97:
82:06:95:83:7b:19:e8:23:d0:7f:85:4d:56:af:6e:
d3:b9:1d:a1:ba:38:4d:92:91:10:35:04:89:4a:13:
38:60:c4:9e:ec:03:5d:ae:bf:6e:1a:90:92:e8:5b:
03:39:9e:75:0a:56:92:3f:e4:0f:cd:a0:68:50:de:
24:14:35:f0:cd:70:9b:0f:94:2a:66:ca:94:f2:e9:
01:93:d2:29:02:37:df:ae:3f:a3:34:a1:1d:ae:d0:
1f:fd:52:19:44:a7:90:ae:86:01:ac:45:ac:b2:59:
9c:ff:13:f5:e2:34:de:aa:e7:84:e2:f6:3e:7f:3a:
3e:34:1d:fd:5d:c8:fe:48:ea:80:54:60:5e:05:0e:
4c:95:1b:73:d9:51:f8:bc:e8:a5:35:82:ae:94:af:
00:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:39:0F:72:82:23:5E:16:82:06:F7:49:55:7B:FC:A2:7B:A2:82:F8
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/xjkPcoIjXhaCBvdJVXv8onuigvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:192:c0c6:947/128
Signature Algorithm: sha256WithRSAEncryption
83:e3:00:24:5d:16:d9:08:83:c0:d3:06:ba:f3:d2:e4:58:d8:
d8:e5:09:4c:f5:08:5b:bd:b8:4a:26:1b:c8:e4:3f:3b:d1:73:
36:7d:19:e7:5e:a0:6f:79:b5:30:b4:28:28:2f:9c:51:9c:eb:
ac:4b:94:65:1c:5e:7b:4d:97:bc:98:61:cb:c4:06:1d:2c:90:
55:d7:6b:2b:f9:a9:83:be:fc:c8:0a:b6:34:55:02:ce:bb:b1:
b9:4b:91:3d:22:a6:1c:a8:96:10:37:9c:17:b2:a0:38:38:fe:
72:95:f4:27:3a:8d:10:6f:3a:45:46:3a:1a:ee:8e:9e:d0:e9:
c7:0d:37:05:14:4d:57:d9:85:8e:6c:c9:96:c3:5c:3f:6d:cc:
f0:68:17:cc:0b:13:6c:3e:fa:1a:a3:55:93:c0:85:d9:60:9c:
29:55:b8:54:0f:6a:37:08:b5:1b:7b:4d:c3:8a:cb:b8:21:68:
26:fc:b9:9a:6c:a6:a1:42:cb:f9:5a:06:db:d2:cc:78:d9:2e:
28:e9:f6:47:ce:7d:79:97:69:54:52:7e:20:0d:37:d0:eb:d5:
8c:d2:39:78:29:6a:9e:e2:9d:9b:82:e4:c8:9d:ff:10:5c:37:
cc:53:b6:7a:cc:f3:6e:95:c0:61:2f:7a:2b:64:77:75:20:6f:
ff:6d:15:e7
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:42:23 2025 by rpki-client