Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/yZOB76GHp5kYp9Kzk87q-anaGdc.roa
File: yZOB76GHp5kYp9Kzk87q-anaGdc.roa (raw, json)
Hash identifier: gnXZi2P1bixKqP9uWWI+du/46pGcfTyWlyEP0BL6S1M=
Subject key identifier: C9:93:81:EF:A1:87:A7:99:18:A7:D2:B3:93:CE:EA:F9:A9:DA:19:D7
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01915CD1DAF1799C58F9DD5BF267E2799FE0
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/yZOB76GHp5kYp9Kzk87q-anaGdc.roa
Signing time: Fri 16 Aug 2024 20:12:22 +0000
ROA not before: Fri 16 Aug 2024 20:12:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Fri 16 Aug 2024 21:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5c:d1:da:f1:79:9c:58:f9:dd:5b:f2:67:e2:79:9f:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 16 20:12:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c99381efa187a79918a7d2b393ceeaf9a9da19d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a8:39:fa:1c:37:50:85:83:f3:69:8e:77:ed:
ad:1e:b8:0f:36:61:38:7a:b3:1d:5e:aa:a1:5d:4b:
64:27:5b:a1:eb:1a:29:5b:22:71:64:1b:29:56:b2:
4e:76:50:c3:7f:e7:9a:3a:d2:79:75:eb:32:ad:cd:
84:d4:53:9f:6b:99:4d:97:1b:fc:c1:ef:33:4d:b8:
80:0c:21:58:65:5d:b4:86:c5:be:4e:68:ab:51:8a:
87:a2:12:e0:95:50:63:ee:6c:2c:41:ca:b3:9e:18:
6b:8d:9b:5e:c4:76:e7:60:2c:55:b2:9e:f6:90:33:
1c:59:27:ca:e9:0a:a6:3e:7b:15:fb:1d:2e:17:43:
0a:6c:83:48:9c:6e:29:3d:17:cd:f1:6f:c4:8c:ba:
74:9b:69:38:af:7a:5d:d1:4a:7d:01:14:f9:c1:59:
cc:03:94:05:80:7a:44:df:85:b4:eb:2b:19:0c:52:
5f:8a:21:69:7b:8a:15:f7:2e:f9:12:28:cb:44:f2:
83:aa:3c:fa:2e:fa:47:6a:ad:3e:f0:4e:50:c5:23:
90:00:c6:8e:d9:65:ce:0c:dc:86:17:d0:28:0b:41:
42:a3:ec:d3:a7:19:d3:51:ae:83:14:7c:32:f3:c0:
cd:99:9a:4d:b2:a5:a2:a0:e5:91:3a:32:5c:f7:99:
62:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:93:81:EF:A1:87:A7:99:18:A7:D2:B3:93:CE:EA:F9:A9:DA:19:D7
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/yZOB76GHp5kYp9Kzk87q-anaGdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
7e:22:08:53:cf:b8:cb:7e:9e:24:ec:c7:e2:05:ab:0c:98:20:
9b:4c:02:c7:a0:ba:46:40:d0:58:29:d1:8d:43:62:f5:2c:12:
68:df:d1:82:ff:3e:89:54:a1:a7:27:0a:58:91:2e:56:22:84:
d3:60:67:b2:75:90:bc:e6:fb:14:f7:9a:82:e1:40:3c:31:04:
82:dc:9c:de:be:c4:86:e6:b2:e4:58:4e:59:b3:e6:b6:9c:9b:
76:e3:b9:df:c7:4f:80:0f:a9:a8:8c:78:a2:63:25:95:82:39:
dc:0c:55:e7:8f:4d:07:c7:e2:06:c5:c5:0b:58:22:2e:c7:5c:
81:de:1e:85:55:72:31:ed:de:98:08:0d:86:04:b7:83:3c:00:
9e:ca:06:f9:fa:bd:86:06:65:c6:fb:e5:b6:58:e8:a4:43:a6:
50:97:00:50:ab:2a:04:7b:03:e0:8c:42:b4:62:72:c9:9d:2c:
e5:b1:3a:21:c0:2d:b3:57:61:bc:a9:7a:df:19:a5:47:0d:34:
a8:fb:24:54:2d:dc:3f:e4:55:f0:63:78:d3:8b:23:22:f1:b6:
8e:a3:4e:03:20:5d:81:fe:ca:d6:42:35:eb:5e:fd:b0:8a:86:
71:83:80:6c:db:70:74:60:5c:7c:9e:33:27:1a:12:ce:fc:13:
50:1e:3e:2a
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Aug 17 00:07:28 2024 by rpki-client on console-fra.rpki-client.org