Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/uw9IIANZdmzzEUcoGoF53eO7xVU.roa
File: uw9IIANZdmzzEUcoGoF53eO7xVU.roa (raw, json)
Hash identifier: U+Vp2INXdvfRdHHA3gLqbH3QIB03PSQw57ksQHWGHMk=
Subject key identifier: BB:0F:48:20:03:59:76:6C:F3:11:47:28:1A:81:79:DD:E3:BB:C5:55
Certificate issuer: /CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Certificate serial: 01856CCAE6E797534090FF18A026234628F0
Authority key identifier: 42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/uw9IIANZdmzzEUcoGoF53eO7xVU.roa
Signing time: Sun 01 Jan 2023 10:05:14 +0000
ROA not before: Sun 01 Jan 2023 10:05:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208266
IP address blocks: 2a0e:800:ff40::/42 maxlen: 48
2a0e:800:ff20::/48 maxlen: 48
2a0e:800:ff21::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:e6:e7:97:53:40:90:ff:18:a0:26:23:46:28:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Validity
Not Before: Jan 1 10:05:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb0f48200359766cf31147281a8179dde3bbc555
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:84:40:0f:29:e5:6c:cc:5c:9d:29:1e:c8:5d:
ea:51:ac:ee:05:e7:ef:61:4e:27:9b:45:bc:d7:d8:
0c:ca:96:03:93:54:d4:91:bd:8c:8a:44:59:2d:76:
e3:0f:89:ba:82:2b:fc:bf:a4:11:d8:92:04:2b:5e:
4c:62:82:48:cd:8d:27:8f:64:9e:01:be:ff:22:2d:
72:8e:07:82:37:b4:ec:0d:94:b6:87:b3:c9:ea:7c:
be:a3:b6:c3:e3:bf:97:45:f0:fb:ae:46:da:88:5d:
4f:30:7e:05:f8:11:87:d0:f1:a8:ea:90:a0:e1:f6:
c4:08:11:c3:10:e1:98:8e:07:57:5f:9a:1c:68:84:
4f:50:25:ff:62:d6:eb:0d:0d:76:de:ba:78:c9:ee:
ab:94:8f:b2:cd:eb:01:5e:c5:a8:96:87:2f:d5:b6:
c5:d0:c2:3f:fe:a4:20:15:69:f7:6f:a3:92:1d:a1:
75:ad:62:d2:7b:88:6b:d6:bc:49:0c:94:11:fc:a2:
c3:2d:f7:5a:d5:05:02:71:fe:51:0f:2b:ad:cb:f3:
00:73:37:8f:01:f3:f1:71:23:dc:b5:10:56:7b:6f:
3d:04:29:47:0a:c6:de:34:7c:64:58:65:a2:81:dd:
73:84:b2:a2:2e:ab:eb:84:f6:f2:07:92:79:3f:7e:
f3:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:0F:48:20:03:59:76:6C:F3:11:47:28:1A:81:79:DD:E3:BB:C5:55
X509v3 Authority Key Identifier:
keyid:42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/uw9IIANZdmzzEUcoGoF53eO7xVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:800:ff20::/47
2a0e:800:ff40::/42
Signature Algorithm: sha256WithRSAEncryption
78:75:5b:ab:84:fc:f1:6c:ae:0c:de:ee:18:07:a2:3f:b9:b6:
e6:2b:89:d1:22:8f:e8:78:1b:f0:2a:5c:a9:02:3a:19:91:ac:
83:9f:2c:ab:36:03:81:92:32:ab:a9:8f:59:3c:07:e6:32:f4:
96:d9:0d:50:ae:44:e5:35:61:e4:85:a6:df:ef:c2:c7:b5:21:
91:fa:b9:4b:38:32:fb:82:fd:56:cb:48:27:19:e9:a4:e3:ff:
32:da:79:ca:05:2d:dc:94:70:fa:3f:0c:97:aa:10:87:51:c9:
1b:d3:07:2b:df:96:dc:f5:81:4c:df:0f:73:cb:8d:e6:be:73:
d2:d3:57:88:75:4a:cb:07:13:ed:6e:e7:8d:87:0b:bf:cc:5d:
16:aa:70:7c:a1:54:01:90:cc:e6:9a:c7:ab:17:5b:0c:f0:d5:
31:58:35:d9:56:2c:03:68:60:a9:7d:2a:68:e6:56:aa:d6:71:
d9:94:16:5c:18:4d:ff:eb:ea:94:1d:5b:f2:38:0a:77:33:76:
c0:fd:01:17:a5:85:37:af:41:82:50:4f:c2:83:cb:5f:64:f6:
c0:65:ca:bf:b3:d2:ec:ea:2f:a6:e3:68:d7:11:29:3a:6d:e7:
6b:58:22:e5:d3:10:d2:2b:79:1d:82:ec:a0:7f:99:d2:08:18:
b8:09:41:f3
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYVsyubnl1NAkP8YoCYjRijwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyY2U3NTkzMjAxOTViOWNjMThjY2ZjYjFiNTMyYWVhOTQ5
MjU4ZjEwHhcNMjMwMTAxMTAwNTE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYjBmNDgyMDAzNTk3NjZjZjMxMTQ3MjgxYTgxNzlkZGUzYmJjNTU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYRADynlbMxcnSkeyF3qUazuBefv
YU4nm0W819gMypYDk1TUkb2MikRZLXbjD4m6giv8v6QR2JIEK15MYoJIzY0nj2Se
Ab7/Ii1yjgeCN7TsDZS2h7PJ6ny+o7bD47+XRfD7rkbaiF1PMH4F+BGH0PGo6pCg
4fbECBHDEOGYjgdXX5ocaIRPUCX/YtbrDQ123rp4ye6rlI+yzesBXsWolocv1bbF
0MI//qQgFWn3b6OSHaF1rWLSe4hr1rxJDJQR/KLDLfda1QUCcf5RDyuty/MAczeP
AfPxcSPctRBWe289BClHCsbeNHxkWGWigd1zhLKiLqvrhPbyB5J5P37zYQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFLsPSCADWXZs8xFHKBqBed3ju8VVMB8GA1UdIwQY
MBaAFELOdZMgGVucwYzPyxtTKuqUkljxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXM1MWt5QVpXNXpCak1fTEcxTXE2cFNTV1BFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9hNTIwNDgtMTJjYS00YTAzLTk1YmUt
Njk3OTQ4ZWE3MWY1LzEvdXc5SUlBTlpkbXp6RVVjb0dvRjUzZU83eFZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC9hNTIwNDgtMTJjYS00YTAzLTk1YmUtNjk3OTQ4ZWE3MWY1
LzEvUXM1MWt5QVpXNXpCak1fTEcxTXE2cFNTV1BFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcBKg4IAP8g
AwcGKg4IAP9AMA0GCSqGSIb3DQEBCwUAA4IBAQB4dVurhPzxbK4M3u4YB6I/ubbm
K4nRIo/oeBvwKlypAjoZkayDnyyrNgOBkjKrqY9ZPAfmMvSW2Q1QrkTlNWHkhabf
78LHtSGR+rlLODL7gv1Wy0gnGemk4/8y2nnKBS3clHD6PwyXqhCHUckb0wcr35bc
9YFM3w9zy43mvnPS01eIdUrLBxPtbueNhwu/zF0WqnB8oVQBkMzmmserF1sM8NUx
WDXZViwDaGCpfSpo5laq1nHZlBZcGE3/6+qUHVvyOAp3M3bA/QEXpYU3r0GCUE/C
g8tfZPbAZcq/s9Ls6i+m42jXESk6bedrWCLl0xDSK3kdguygf5nSCBi4CUHz
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org