Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/UtOpLCd8uKkj9bwzQGAzjbjP1uM.roa
File: UtOpLCd8uKkj9bwzQGAzjbjP1uM.roa (raw, json)
Hash identifier: ohFJs2fHNXplWT+ZF4Q+FMo3WvYKlSYC3lkljnT5F1M=
Subject key identifier: 52:D3:A9:2C:27:7C:B8:A9:23:F5:BC:33:40:60:33:8D:B8:CF:D6:E3
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 01856D0ADC635AA86304C94446807B492043
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/UtOpLCd8uKkj9bwzQGAzjbjP1uM.roa
Signing time: Sun 01 Jan 2023 11:15:06 +0000
ROA not before: Sun 01 Jan 2023 11:15:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207807
IP address blocks: 2a00:7180:800c::/46 maxlen: 46
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:dc:63:5a:a8:63:04:c9:44:46:80:7b:49:20:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jan 1 11:15:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52d3a92c277cb8a923f5bc334060338db8cfd6e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f2:63:66:b3:f3:30:75:f3:e6:9d:ef:d7:e5:
3b:54:87:1a:a3:00:20:a4:a2:ba:99:8f:77:cb:50:
d9:da:30:a7:88:03:5a:fe:66:68:5b:f3:73:18:eb:
a4:75:e3:02:93:9b:30:63:34:72:ce:97:6d:13:25:
eb:03:58:68:02:91:c6:b0:a8:26:17:d9:44:c3:32:
62:6b:0a:05:9e:c2:62:6b:32:2e:d8:94:3d:d1:71:
07:97:79:cd:9d:34:2e:7b:90:12:8e:b8:49:ad:d8:
18:68:69:ac:a9:b4:4e:32:ad:6d:2b:87:73:29:92:
16:a0:ff:08:9f:7c:b7:af:83:70:5d:69:3c:92:d1:
9f:1f:a4:ee:b8:9e:12:2a:bc:1c:8a:24:5e:84:25:
d2:41:52:8d:70:97:52:0d:a5:e8:6e:6c:8c:b1:45:
c8:78:08:14:31:b9:6e:d4:26:8c:a6:27:3a:c5:07:
41:ac:b3:63:c1:96:61:87:4d:fc:f2:ad:4b:32:a5:
0c:0e:51:6d:f4:ec:65:9b:2c:3e:45:fe:d5:e4:85:
2d:7a:18:8c:1c:4a:d8:14:9f:ae:0c:15:7a:ba:8a:
e3:ec:73:f8:32:16:db:f2:4f:e7:a5:ab:3b:8c:15:
3d:cb:80:76:9f:73:16:b9:2b:4a:bb:96:a8:4b:84:
b1:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:D3:A9:2C:27:7C:B8:A9:23:F5:BC:33:40:60:33:8D:B8:CF:D6:E3
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/UtOpLCd8uKkj9bwzQGAzjbjP1uM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:7180:800c::/46
Signature Algorithm: sha256WithRSAEncryption
ae:7b:8d:1a:63:50:0f:80:3d:c8:d6:47:16:61:bc:3b:81:61:
e7:7f:32:6b:91:7d:b4:dd:41:9b:e0:0b:20:ee:aa:0f:d2:5f:
e7:d7:14:3b:18:89:fb:d7:a7:e4:17:09:fc:54:f7:13:b6:e1:
75:93:65:c3:f4:2e:2e:d6:f4:dc:9f:88:f8:ce:53:00:f6:4d:
fa:78:ce:e9:e8:58:7e:c2:ef:0c:a3:81:ca:ee:dd:ba:ce:b3:
cf:0a:e6:3f:43:e4:ff:8d:59:4b:be:49:79:76:73:71:97:73:
7b:6a:20:63:08:08:4b:55:d1:90:40:c6:a7:4c:1e:aa:5e:e7:
d8:08:f5:24:fa:92:9b:d0:22:01:85:61:81:2b:1a:dc:c4:7a:
89:e9:ef:5a:2c:d0:5b:03:71:a8:55:38:3a:19:73:10:b4:e9:
27:9c:43:8f:03:ee:6f:3c:a7:61:63:79:a2:eb:32:03:78:65:
29:39:ba:8c:b7:59:64:8b:c8:d0:f1:a5:8d:d5:1d:a2:88:a5:
b0:73:38:d7:cc:9d:15:f7:cd:78:86:3d:ac:4b:d2:49:8c:04:
5a:66:a3:0b:68:18:d1:8f:6a:f8:6c:2b:07:c7:96:60:67:4e:
04:ce:d0:ce:28:60:55:20:d7:ee:f7:c7:01:da:89:c0:f7:73:
bc:c9:00:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:50 2024 by rpki-client on console-ams.rpki-client.org