Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/UwOYakf2WySwPdSInbsenuSnJjs.roa
File: UwOYakf2WySwPdSInbsenuSnJjs.roa (raw, json)
Hash identifier: qK7liiotAK6EKt+tLlrryQwIcPaSk4ypklBrVwQOykM=
Subject key identifier: 53:03:98:6A:47:F6:5B:24:B0:3D:D4:88:9D:BB:1E:9E:E4:A7:26:3B
Certificate issuer: /CN=6294db0b87f6aeecce7fb22fb1b1421d906a6350
Certificate serial: 01857142E81AF21DFE660B02241CC3799D5E
Authority key identifier: 62:94:DB:0B:87:F6:AE:EC:CE:7F:B2:2F:B1:B1:42:1D:90:6A:63:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YpTbC4f2ruzOf7IvsbFCHZBqY1A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/UwOYakf2WySwPdSInbsenuSnJjs.roa
Signing time: Mon 02 Jan 2023 06:54:48 +0000
ROA not before: Mon 02 Jan 2023 06:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 131199
IP address blocks: 2a0c:36c1::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:42:e8:1a:f2:1d:fe:66:0b:02:24:1c:c3:79:9d:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6294db0b87f6aeecce7fb22fb1b1421d906a6350
Validity
Not Before: Jan 2 06:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5303986a47f65b24b03dd4889dbb1e9ee4a7263b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d1:76:f1:7c:89:47:ad:d4:83:06:02:a2:a3:
6b:31:ac:68:d9:80:66:e4:84:cf:52:b6:5c:6c:86:
8d:ef:2a:de:13:b2:cc:bb:2d:2f:33:15:20:cd:9a:
13:e9:48:23:f6:04:57:af:c8:54:c1:b0:3a:19:d0:
e3:63:18:40:c6:02:2a:70:ce:22:87:9c:53:38:32:
76:31:4a:b4:98:f1:cf:59:8f:82:0b:81:81:26:11:
17:4d:6f:ce:8d:5d:db:7a:14:c7:13:ce:79:a4:cc:
a8:5e:3f:c0:d9:89:9c:19:c7:48:72:33:33:54:59:
d8:bf:81:00:9d:27:50:8f:aa:e7:e8:53:c6:50:56:
aa:56:ee:5b:2e:b7:74:3d:d3:4e:40:dc:68:5f:39:
dc:65:6b:77:0d:c0:a8:57:11:02:2b:34:0e:9a:74:
10:ba:24:ed:37:58:14:79:f7:8e:a9:2a:d9:d6:9c:
a3:7a:91:02:7b:8b:10:e0:6c:14:45:5b:24:eb:46:
9a:3a:a2:a5:c2:35:d1:55:7a:67:30:9a:03:8c:28:
dc:b0:c8:34:f5:eb:33:0e:b0:b8:8a:59:95:35:e3:
ad:5e:f4:d1:02:f6:8b:c2:bd:25:8b:8b:de:66:92:
b1:f5:60:7c:10:18:31:ea:e8:05:c7:3f:ad:f5:ee:
5e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:03:98:6A:47:F6:5B:24:B0:3D:D4:88:9D:BB:1E:9E:E4:A7:26:3B
X509v3 Authority Key Identifier:
keyid:62:94:DB:0B:87:F6:AE:EC:CE:7F:B2:2F:B1:B1:42:1D:90:6A:63:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YpTbC4f2ruzOf7IvsbFCHZBqY1A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/UwOYakf2WySwPdSInbsenuSnJjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:36c1::/32
Signature Algorithm: sha256WithRSAEncryption
a8:db:db:ea:86:7f:0d:84:fb:82:d2:1e:d3:ed:f7:84:db:f9:
39:3e:54:b3:44:dc:a0:6a:9c:8d:4e:7f:08:80:73:9c:e0:43:
40:b5:e8:13:22:8b:8f:48:7e:16:e4:37:2d:b1:68:e5:88:ee:
e7:01:12:66:33:46:ad:f0:d8:c5:51:e9:4e:df:90:f0:00:34:
81:43:6a:4a:9d:af:4c:eb:64:b6:06:2a:21:bd:4f:0e:66:2d:
c1:46:e0:11:53:2f:b6:89:90:7e:a9:cd:01:45:8a:43:1b:0c:
95:d2:82:9d:6d:6a:e1:57:2c:1c:5c:1b:0c:33:7a:36:d7:1e:
ce:9e:a2:14:e7:ab:0f:4f:d8:92:07:5e:ec:89:ff:8b:f1:e7:
f3:18:95:33:cd:5f:d6:23:7a:9b:23:66:cd:14:cc:3e:49:50:
70:c1:1f:0a:c6:cc:a5:31:37:ad:d4:92:05:50:2d:f7:44:9a:
73:4d:63:26:18:48:02:6e:74:1b:15:50:17:06:7e:d9:b2:18:
59:d5:68:b3:52:72:a9:b3:fd:61:0a:2e:4e:8a:1f:f2:44:3a:
91:5a:c0:f0:31:f8:0f:9c:4b:af:c0:39:95:75:53:41:3f:ca:
44:44:08:5b:1e:55:9d:f2:c8:06:e5:ed:da:e0:6a:31:5f:31:
d4:64:16:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:31 2024 by rpki-client on console-fra.rpki-client.org