Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/88c5b7-b126-4ed3-9d7a-e5ba4bfa171a/1/UM6buJrH0BglLOy17AVCJy6_glw.roa
File: UM6buJrH0BglLOy17AVCJy6_glw.roa (raw, json)
Hash identifier: 15KGDkWznEqk/G2XcJhOTDfth10iRjePdFOn6UVrt7M=
Subject key identifier: 50:CE:9B:B8:9A:C7:D0:18:25:2C:EC:B5:EC:05:42:27:2E:BF:82:5C
Certificate issuer: /CN=bd974dc8c645ed235145caaa1355ba85f5257634
Certificate serial: 018572713CFC6D12613B54B1B7C2136BA0B7
Authority key identifier: BD:97:4D:C8:C6:45:ED:23:51:45:CA:AA:13:55:BA:85:F5:25:76:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vZdNyMZF7SNRRcqqE1W6hfUldjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/88c5b7-b126-4ed3-9d7a-e5ba4bfa171a/1/UM6buJrH0BglLOy17AVCJy6_glw.roa
Signing time: Mon 02 Jan 2023 12:25:01 +0000
ROA not before: Mon 02 Jan 2023 12:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48724
IP address blocks: 2001:67c:2e4c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:3c:fc:6d:12:61:3b:54:b1:b7:c2:13:6b:a0:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd974dc8c645ed235145caaa1355ba85f5257634
Validity
Not Before: Jan 2 12:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50ce9bb89ac7d018252cecb5ec0542272ebf825c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b4:da:cc:ef:a5:b9:c1:b3:8b:5a:75:04:13:
72:20:3d:b4:57:4d:49:b5:26:ea:60:e0:d5:c2:85:
26:26:2a:19:c0:a1:f4:e0:77:27:56:60:f1:1a:d5:
2e:26:05:24:e4:f8:20:1a:ba:40:a1:b0:d7:d5:3f:
64:69:02:f1:44:32:27:45:7d:a8:bf:c2:09:ac:30:
e5:d3:3d:fd:1b:d5:0d:7f:5a:62:a2:91:ca:4a:87:
72:82:09:10:16:e7:d3:46:3c:67:af:78:cc:65:e8:
b0:9f:ee:27:28:7d:65:54:c1:81:e5:73:b4:6c:bd:
4f:38:c1:be:fb:ab:e6:c2:dc:73:83:c7:cf:48:ba:
5c:ed:68:a6:ae:71:20:2c:98:85:19:e9:d6:e7:4d:
f6:67:02:bd:13:17:55:53:29:8b:ef:a1:76:37:24:
76:df:2a:41:53:21:3a:82:cb:fd:a9:30:81:be:c6:
c0:c0:e2:4b:07:75:e2:53:6d:a8:4c:fa:15:1a:c0:
71:8d:ac:8d:5f:0e:be:03:4d:2c:78:66:39:86:72:
12:36:9b:76:70:bb:ae:b2:7d:6c:68:fc:3e:a4:3b:
31:a9:ea:b2:ba:d9:64:fc:f3:14:80:8d:9c:f2:80:
c4:b5:91:28:d1:42:b8:b1:f1:2e:f3:de:cc:1a:ac:
74:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:CE:9B:B8:9A:C7:D0:18:25:2C:EC:B5:EC:05:42:27:2E:BF:82:5C
X509v3 Authority Key Identifier:
keyid:BD:97:4D:C8:C6:45:ED:23:51:45:CA:AA:13:55:BA:85:F5:25:76:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vZdNyMZF7SNRRcqqE1W6hfUldjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/88c5b7-b126-4ed3-9d7a-e5ba4bfa171a/1/UM6buJrH0BglLOy17AVCJy6_glw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/88c5b7-b126-4ed3-9d7a-e5ba4bfa171a/1/vZdNyMZF7SNRRcqqE1W6hfUldjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2e4c::/48
Signature Algorithm: sha256WithRSAEncryption
1f:ba:f2:06:ff:cc:19:ff:6f:af:c1:e9:86:d5:6d:8c:07:e3:
32:a5:e6:1d:2a:4a:d5:11:76:a6:9b:d5:ec:6a:a7:0e:2d:d3:
ed:4b:55:88:5f:cd:fc:d9:73:42:3d:72:ca:97:ee:94:1e:6a:
0e:85:a5:a4:68:18:26:99:7a:e7:6f:4e:88:b4:71:4e:5b:92:
b3:88:c1:6f:5e:51:8e:7c:64:34:6f:5e:d9:da:76:ff:7f:2c:
51:76:5e:d9:60:ea:40:c7:fd:8f:00:4f:d4:df:9f:67:c6:69:
0f:c9:f0:76:37:97:9f:1b:16:df:3c:3e:a2:13:b9:55:2e:ad:
cc:29:95:85:fc:d3:22:03:c2:72:2f:d1:0a:56:34:7e:84:63:
f2:97:e8:a8:ea:7b:49:34:c9:9b:eb:9a:6f:97:c7:ad:ce:8b:
84:ef:4b:9f:56:e1:e0:d2:dc:40:52:09:0f:50:9d:af:ca:3b:
14:6f:be:86:ba:6c:4a:57:6b:dc:07:a1:24:2e:fe:7f:26:88:
d5:78:ec:d2:41:fc:01:a8:e2:b2:ef:20:0d:ea:fc:68:0c:aa:
c8:d1:a2:0d:5e:fd:f0:5c:2c:f6:5f:0a:12:dc:8e:f9:16:a4:
61:cd:ba:ba:ec:60:79:49:30:cc:99:bd:94:87:7e:0b:a6:dd:
a2:67:1a:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:40 2024 by rpki-client on console-ams.rpki-client.org