Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/zViU5vmopAeAsgYLIjEXSiEfAiM.roa
File: zViU5vmopAeAsgYLIjEXSiEfAiM.roa (raw, json)
Hash identifier: Hu79qBpLTf/DhN/ltfgqeR0ykUKR5LX7hqTfzT+zZJs=
Subject key identifier: CD:58:94:E6:F9:A8:A4:07:80:B2:06:0B:22:31:17:4A:21:1F:02:23
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01911D4CE723DE5EADCF9FDA11DA9993102E
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/zViU5vmopAeAsgYLIjEXSiEfAiM.roa
Signing time: Sun 04 Aug 2024 12:11:04 +0000
ROA not before: Sun 04 Aug 2024 12:11:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:190:fdf2:f302/128 maxlen: 128
Validation: Failed, certificate revoked on Sun 04 Aug 2024 13:06:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:1d:4c:e7:23:de:5e:ad:cf:9f:da:11:da:99:93:10:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Aug 4 12:11:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cd5894e6f9a8a40780b2060b2231174a211f0223
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:26:9c:d6:42:b0:5b:51:60:92:93:72:90:bf:
9f:4c:70:6e:f2:6a:15:05:96:a1:b6:bb:cb:5d:c6:
02:85:10:46:0b:f8:14:e1:2d:fc:d1:a5:af:db:21:
7f:49:fe:77:4b:07:64:e4:fb:44:65:b3:8a:ba:c2:
64:a9:d3:55:bc:39:19:e6:47:23:e0:b4:36:78:62:
96:41:80:02:ec:44:46:77:a9:f1:9f:e1:d2:84:49:
48:b2:53:e8:ed:27:fb:ae:64:9a:b6:01:b7:75:36:
09:89:31:04:2f:d8:7e:16:a8:8f:d3:d9:c5:71:a1:
8f:e4:55:c6:46:4d:15:4c:15:a3:ec:ea:dd:4c:c0:
15:c4:a4:05:fa:3f:d5:3b:ac:33:7c:fd:32:4a:1d:
9c:ce:6e:19:6c:e3:8b:98:f0:c1:79:b7:5b:d4:45:
96:f4:c6:64:8f:51:b3:5b:79:58:73:9c:2b:68:d6:
f9:c6:3f:7d:e4:4b:cc:57:99:d4:53:ce:9e:26:eb:
05:53:59:b9:a0:9e:93:8f:e0:89:f3:1f:5b:27:14:
0e:b1:cf:98:62:f6:87:68:9d:f6:fb:69:52:f8:74:
8c:8f:1b:2d:8c:d2:8a:fd:0a:58:c7:58:8d:9b:13:
9c:ab:41:ee:40:20:db:c2:b1:e4:2e:7c:b3:63:d4:
5d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:58:94:E6:F9:A8:A4:07:80:B2:06:0B:22:31:17:4A:21:1F:02:23
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/zViU5vmopAeAsgYLIjEXSiEfAiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:190:fdf2:f302/128
Signature Algorithm: sha256WithRSAEncryption
16:bb:d0:3f:1c:8f:39:e3:2d:5e:bd:3b:08:e7:ed:c4:5a:ae:
84:e2:2a:e3:e1:cc:73:f5:9d:3e:eb:77:36:ad:ff:58:13:bd:
ef:8a:ab:f9:68:be:88:b0:3b:db:5f:3e:46:49:cf:ed:79:c8:
a9:cc:39:7f:46:d5:9f:c9:91:28:5f:bf:b8:ca:a9:ee:75:9b:
0f:25:e0:72:84:4f:95:a5:28:3b:79:1d:0b:ea:87:87:93:5c:
f0:1a:e2:77:f4:ef:b7:de:f0:52:77:c1:9a:81:38:75:0b:99:
71:66:81:ec:44:f3:21:d5:6b:58:64:b3:68:85:d2:80:8b:d4:
98:d1:7c:46:33:80:fd:5d:b5:2a:aa:28:7c:76:b0:be:ea:7e:
f2:6b:64:6b:b0:de:1e:8d:71:88:4c:06:b2:25:8a:2f:5b:ca:
89:09:dd:8e:64:b3:5b:a4:5c:1b:47:c7:02:76:1a:db:ea:8b:
5b:86:f3:89:60:6f:d9:49:b5:e2:a9:37:39:98:f1:07:15:e1:
f4:a4:2a:3e:0c:56:65:85:56:ec:c1:0f:56:d5:15:79:fc:9e:
92:74:d2:83:d8:cb:80:95:eb:25:91:33:e1:b7:a7:08:3d:bc:
e7:8d:85:de:9a:90:9c:17:76:b9:4e:79:2e:4b:9e:32:52:5d:
45:17:ca:c4
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:28 2025 by rpki-client