Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/UgiM_L_fT3MSWNllOssPBjr-bbM.roa
File: UgiM_L_fT3MSWNllOssPBjr-bbM.roa (raw, json)
Hash identifier: 7mmKNtYkUuaabA4gwxwhMYV/sewl+ZSzxPb+JOpRMyg=
Subject key identifier: 52:08:8C:FC:BF:DF:4F:73:12:58:D9:65:3A:CB:0F:06:3A:FE:6D:B3
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAE7B7E46FEC2DBFE2F3F44E8DCD63A
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/UgiM_L_fT3MSWNllOssPBjr-bbM.roa
Signing time: Tue 06 Feb 2024 18:29:17 +0000
ROA not before: Tue 06 Feb 2024 18:29:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56808
IP address blocks: 2a0f:b241:11d::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ae:7b:7e:46:fe:c2:db:fe:2f:3f:44:e8:dc:d6:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:29:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52088cfcbfdf4f731258d9653acb0f063afe6db3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:9e:db:60:f2:1d:f2:31:04:1b:69:70:de:97:
44:fe:52:03:cf:e9:f6:99:31:68:98:ac:02:d0:47:
31:d7:a6:6d:0c:ad:44:d4:e5:b0:fe:ba:a1:cc:c6:
79:e6:1a:86:68:26:4e:cb:9f:57:64:cd:e3:b8:8c:
da:7f:c8:a9:86:7a:95:5a:b5:25:2b:59:fe:9b:8a:
cd:55:d2:4e:2d:81:6f:9b:c8:b5:0e:c6:fe:2f:c0:
a3:b3:77:45:e8:15:5c:10:80:43:b8:6a:65:8e:3b:
fc:f3:fd:67:ea:1e:25:10:b3:a0:74:95:ed:d2:bc:
4b:eb:77:82:22:cd:b8:72:5e:68:3c:c2:cf:98:23:
cc:c3:4b:c6:7e:bc:d3:e1:a1:3a:04:5c:89:6f:26:
ef:97:07:a5:bb:29:cc:56:fa:bc:ef:e1:fc:ef:1a:
52:44:60:3b:95:d1:72:4d:82:4e:09:27:3a:22:a9:
7d:82:e5:1f:30:4f:e5:be:cb:c5:a3:13:d9:e2:9b:
5b:14:72:84:58:1f:22:f0:a4:21:21:76:92:97:f8:
9c:76:13:d4:af:3c:2b:8e:75:f8:80:a9:2e:e7:ee:
30:7b:5d:83:98:b4:ee:14:94:bb:58:71:df:b0:75:
9b:f4:66:5b:66:b0:93:12:e2:6e:74:b0:c2:70:fa:
fc:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:08:8C:FC:BF:DF:4F:73:12:58:D9:65:3A:CB:0F:06:3A:FE:6D:B3
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/UgiM_L_fT3MSWNllOssPBjr-bbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:11d::/48
Signature Algorithm: sha256WithRSAEncryption
0d:5b:f7:fa:02:46:71:c2:b5:0e:00:08:1c:74:06:b5:e1:e5:
f5:2b:ce:ec:c5:9a:63:d6:54:af:69:5f:e7:8a:54:ff:1c:86:
47:7b:da:8b:a9:58:a3:4b:a0:d4:a0:a0:32:09:f6:ae:d5:9b:
f3:92:10:9b:27:9f:a5:ab:75:ed:a2:61:c2:ca:5d:74:4a:ef:
71:64:bd:ad:7b:db:55:60:9f:65:fe:df:0c:13:fd:ee:2a:6f:
d3:c5:ab:5d:1f:ae:7b:34:ef:9b:40:50:13:5f:5c:0c:e8:c2:
56:af:df:09:01:ae:40:c6:1b:19:8d:f1:03:15:e9:a9:a8:aa:
00:7e:05:fb:0b:1a:49:3b:51:2e:55:b0:65:0d:a9:c8:7b:15:
e0:34:05:b9:2a:a1:71:0d:ac:6b:e5:b3:5e:99:3c:89:1d:44:
aa:9f:c4:3c:0f:11:ee:8e:38:96:9e:8c:62:ec:54:78:bc:69:
64:3c:9e:c2:ed:34:f1:61:15:85:ac:2f:0a:6e:3b:57:fc:87:
e8:d3:10:43:9d:60:74:0f:31:f7:03:97:6c:e5:58:7e:9c:72:
35:d6:81:5b:fc:49:cf:c3:48:60:fc:c2:2b:60:59:6e:cc:3f:
c0:89:56:6a:31:e8:ff:82:84:22:eb:c7:4e:ee:db:3b:09:c2:
8a:14:87:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org