Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/db2316-429d-4425-b39e-1264f20180e9/1/UercDuXCFGcB73iK-9XHuztdTvo.roa
File: UercDuXCFGcB73iK-9XHuztdTvo.roa (raw, json)
Hash identifier: W0ILFmV/0yuBvpdTmcaQ7oHSY0CaCc/Mc76JtU9YLIc=
Subject key identifier: 51:EA:DC:0E:E5:C2:14:67:01:EF:78:8A:FB:D5:C7:BB:3B:5D:4E:FA
Certificate issuer: /CN=a84b25ab25770a358da5f5fb427072b0a2e24582
Certificate serial: 0185720C6CA568258F72158E9B202EB7E497
Authority key identifier: A8:4B:25:AB:25:77:0A:35:8D:A5:F5:FB:42:70:72:B0:A2:E2:45:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qEslqyV3CjWNpfX7QnBysKLiRYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/db2316-429d-4425-b39e-1264f20180e9/1/UercDuXCFGcB73iK-9XHuztdTvo.roa
Signing time: Mon 02 Jan 2023 10:34:54 +0000
ROA not before: Mon 02 Jan 2023 10:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202033
IP address blocks: 2001:67c:12c0::/47 maxlen: 47
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:6c:a5:68:25:8f:72:15:8e:9b:20:2e:b7:e4:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a84b25ab25770a358da5f5fb427072b0a2e24582
Validity
Not Before: Jan 2 10:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51eadc0ee5c2146701ef788afbd5c7bb3b5d4efa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3d:4b:7b:b4:84:d7:e3:c9:c5:75:06:99:bf:
90:02:c4:f9:ea:a3:f1:d1:f3:e9:af:ee:bf:be:d7:
89:89:b3:0e:8c:28:e0:f5:39:59:d0:e4:f4:71:71:
6b:39:df:08:a0:df:d7:26:a0:0f:7e:7f:89:64:25:
83:83:33:73:5c:82:a4:fe:1c:0e:a3:28:b8:10:a3:
ea:6a:b3:0c:88:32:50:cb:bf:98:e3:00:ec:6f:97:
ec:39:49:e4:36:8e:bc:dd:a8:18:3a:fb:29:41:24:
91:14:d4:4d:98:ee:74:61:f4:b6:5d:8f:6f:11:cf:
b5:ce:8d:96:d3:fe:5d:f5:e6:5e:06:69:37:59:ff:
70:72:c5:7b:ee:34:1e:a4:83:f9:4f:30:b0:93:4a:
3c:16:68:1f:8e:9b:08:73:c4:a6:fd:ba:89:98:d4:
04:b4:e7:d1:77:10:9c:5a:c4:37:f0:c5:7f:a0:74:
7e:23:d9:59:8f:2f:eb:a9:b7:21:e8:78:6c:99:b0:
ed:a0:7a:d4:de:63:72:e4:35:f5:13:44:61:75:2c:
58:0f:79:81:e1:78:cb:68:53:d7:e7:f6:0e:b1:35:
05:84:8a:45:67:07:74:da:1a:50:d9:92:7d:e0:af:
99:c0:1c:f1:f3:16:02:3a:d9:95:86:0b:70:45:ed:
91:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:EA:DC:0E:E5:C2:14:67:01:EF:78:8A:FB:D5:C7:BB:3B:5D:4E:FA
X509v3 Authority Key Identifier:
keyid:A8:4B:25:AB:25:77:0A:35:8D:A5:F5:FB:42:70:72:B0:A2:E2:45:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qEslqyV3CjWNpfX7QnBysKLiRYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/db2316-429d-4425-b39e-1264f20180e9/1/UercDuXCFGcB73iK-9XHuztdTvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/db2316-429d-4425-b39e-1264f20180e9/1/qEslqyV3CjWNpfX7QnBysKLiRYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:12c0::/47
Signature Algorithm: sha256WithRSAEncryption
2e:b2:38:ee:7d:45:47:fd:6d:86:a2:96:ea:b7:ac:38:9c:3f:
6f:b5:3d:a8:89:51:8d:f7:43:7f:61:e8:a6:ec:24:61:05:d9:
7a:7f:aa:ad:67:f6:56:cb:18:96:32:f2:0e:df:21:8b:88:7c:
e0:80:b8:55:0f:79:b6:e1:a7:af:18:f5:0e:ed:59:3e:16:07:
5a:11:aa:a6:40:57:7f:0e:83:7a:1d:b1:17:e2:99:70:57:47:
84:0f:41:a9:90:b2:a1:97:1e:72:f1:98:54:ff:c8:a7:b0:30:
f2:18:33:34:18:c7:b2:2a:d2:73:08:25:bd:98:8a:18:23:53:
70:ac:32:a2:ed:dd:13:d9:30:9a:3e:0e:56:22:c7:ff:e0:e1:
97:c6:fb:fa:3c:7c:a7:55:48:66:9b:eb:c4:46:db:dc:50:04:
63:39:d8:79:9b:5e:5a:5b:61:26:dc:9c:d5:47:49:43:05:0d:
61:8f:15:1d:07:c1:d2:d5:2f:80:c5:cc:bd:a4:94:7b:cd:57:
91:97:e7:e9:8a:e4:74:d3:de:9b:56:2b:d7:75:f1:9e:9d:4b:
6b:a9:65:e3:9a:2a:1c:e2:9c:76:44:19:62:f2:ab:2e:c4:9f:
f8:2a:f4:e6:b7:a4:36:2a:38:88:c6:2c:1d:0f:e0:29:1c:47:
34:21:ea:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:43 2024 by rpki-client on console-ams.rpki-client.org