Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/uph2dj14PIlBv_37pn_vIYOo8oA.roa
File: uph2dj14PIlBv_37pn_vIYOo8oA.roa (raw, json)
Hash identifier: azRC8E6xdRayrcuWmixvxwViHacPxvjIHdYNOCf0AYc=
Subject key identifier: BA:98:76:76:3D:78:3C:89:41:BF:FD:FB:A6:7F:EF:21:83:A8:F2:80
Certificate issuer: /CN=dd010938d9ef72158fc98bd45de71b0b1a9ff729
Certificate serial: 01894A002AA5B7047DB72F800F7564B18D15
Authority key identifier: DD:01:09:38:D9:EF:72:15:8F:C9:8B:D4:5D:E7:1B:0B:1A:9F:F7:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3QEJONnvchWPyYvUXecbCxqf9yk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/uph2dj14PIlBv_37pn_vIYOo8oA.roa
Signing time: Wed 12 Jul 2023 12:07:52 +0000
ROA not before: Wed 12 Jul 2023 12:07:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2a13:7c40:1::/48 maxlen: 48
2a13:7c40:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4a:00:2a:a5:b7:04:7d:b7:2f:80:0f:75:64:b1:8d:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd010938d9ef72158fc98bd45de71b0b1a9ff729
Validity
Not Before: Jul 12 12:07:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba9876763d783c8941bffdfba67fef2183a8f280
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:b4:bc:5d:2d:f7:c5:70:ee:4c:96:ed:ce:e9:
fd:df:e2:02:9a:91:e7:d6:00:a2:88:fc:86:b5:5c:
f2:b6:a0:e2:19:1b:0d:ce:0a:c2:53:24:5e:e0:3c:
4b:bf:33:13:44:46:c6:ac:e7:b8:3f:2d:46:fa:29:
b7:2e:8c:8a:13:ef:3b:76:23:fc:7d:be:48:71:86:
a0:44:8b:de:08:c1:d5:4f:43:70:88:3a:8f:97:a7:
f3:c6:f7:41:7f:80:99:ad:c1:44:e6:5e:84:45:51:
f5:f1:29:ee:6a:8f:5c:97:39:f3:04:76:46:2e:57:
77:df:25:3c:d8:4f:90:ff:f6:13:3e:2a:9e:c4:2c:
a6:d9:60:1e:90:2d:18:31:e3:ca:6f:11:a1:04:96:
c1:f6:b5:75:77:2d:11:8b:5b:c7:c6:1f:ad:fa:bb:
55:17:dc:cd:1b:49:45:31:b3:2c:a4:1d:0b:f5:3b:
cc:43:fb:eb:54:22:04:90:7d:11:dd:c3:91:f1:96:
9c:6d:5a:ba:c3:4d:86:c6:a3:2b:1f:36:2c:f5:ca:
f4:ab:55:4d:29:f9:e1:b1:b4:0b:96:ad:87:10:93:
94:af:39:98:c2:20:50:76:6d:d7:5e:92:aa:c0:03:
6c:34:37:6f:a8:d7:6d:f6:3c:a1:f7:2a:f2:2e:0e:
14:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:98:76:76:3D:78:3C:89:41:BF:FD:FB:A6:7F:EF:21:83:A8:F2:80
X509v3 Authority Key Identifier:
keyid:DD:01:09:38:D9:EF:72:15:8F:C9:8B:D4:5D:E7:1B:0B:1A:9F:F7:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3QEJONnvchWPyYvUXecbCxqf9yk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/uph2dj14PIlBv_37pn_vIYOo8oA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/3QEJONnvchWPyYvUXecbCxqf9yk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:7c40:1::-2a13:7c40:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
44:21:dd:5a:e6:05:02:0a:d3:b7:60:09:cb:32:b5:93:7b:a8:
8e:3d:06:5c:e3:8f:93:46:5a:cf:41:73:01:86:43:73:5a:a3:
a5:1b:ee:cd:2e:af:cd:c6:ab:94:5f:8d:d8:8d:05:96:45:2b:
30:93:a7:20:ff:6e:96:6b:af:6d:b7:d5:ac:3e:84:dd:cf:92:
96:5d:83:3a:9f:a1:2a:ee:16:d3:cc:cd:0b:58:be:12:ef:2c:
33:f6:6f:02:22:a3:f2:7b:19:04:40:29:c4:f7:21:c0:29:92:
a3:4e:10:bc:51:ea:62:99:3f:aa:5e:fd:2e:d7:68:67:38:fd:
71:ce:17:9e:0d:94:1c:ed:ed:3e:26:ab:10:56:e7:49:04:e1:
26:1d:49:e5:b8:3d:2c:93:dd:a0:29:61:9c:0e:c9:e6:fa:24:
db:e9:d9:a5:bc:ca:72:5b:0d:19:57:e0:19:89:eb:f0:62:4b:
94:05:6b:da:71:75:62:5a:de:c6:c6:23:96:be:6a:f2:0c:ab:
7f:87:61:c2:89:0e:94:ca:31:f2:97:67:21:12:24:26:ec:b0:
4a:d5:1d:62:bc:75:ea:ab:29:ed:1b:47:5f:f0:f4:fa:dc:99:
34:95:22:13:e8:0b:b3:94:c4:b7:79:1e:6f:10:5b:ec:2d:8c:
07:37:cd:6f
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAYlKACqltwR9ty+AD3VksY0VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkMDEwOTM4ZDllZjcyMTU4ZmM5OGJkNDVkZTcxYjBiMWE5
ZmY3MjkwHhcNMjMwNzEyMTIwNzUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYTk4NzY3NjNkNzgzYzg5NDFiZmZkZmJhNjdmZWYyMTgzYThmMjgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+7S8XS33xXDuTJbtzun93+ICmpHn
1gCiiPyGtVzytqDiGRsNzgrCUyRe4DxLvzMTREbGrOe4Py1G+im3LoyKE+87diP8
fb5IcYagRIveCMHVT0NwiDqPl6fzxvdBf4CZrcFE5l6ERVH18Snuao9clznzBHZG
Lld33yU82E+Q//YTPiqexCym2WAekC0YMePKbxGhBJbB9rV1dy0Ri1vHxh+t+rtV
F9zNG0lFMbMspB0L9TvMQ/vrVCIEkH0R3cOR8ZacbVq6w02GxqMrHzYs9cr0q1VN
KfnhsbQLlq2HEJOUrzmYwiBQdm3XXpKqwANsNDdvqNdt9jyh9yryLg4UwwIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFLqYdnY9eDyJQb/9+6Z/7yGDqPKAMB8GA1UdIwQY
MBaAFN0BCTjZ73IVj8mL1F3nGwsan/cpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1FFSk9ObnZjaFdQeVl2VVhlY2JDeHFmOXlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9jM2Y0MTktYTU5Ni00NmJlLThhZmYt
Y2VmZjU0NmM5MzNlLzEvdXBoMmRqMTRQSWxCdl8zN3BuX3ZJWU9vOG9BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9jM2Y0MTktYTU5Ni00NmJlLThhZmYtY2VmZjU0NmM5MzNl
LzEvM1FFSk9ObnZjaFdQeVl2VVhlY2JDeHFmOXlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwAqE3xA
AAEDBwAqE3xAAAIwDQYJKoZIhvcNAQELBQADggEBAEQh3VrmBQIK07dgCcsytZN7
qI49Blzjj5NGWs9BcwGGQ3Nao6Ub7s0ur83Gq5RfjdiNBZZFKzCTpyD/bpZrr223
1aw+hN3PkpZdgzqfoSruFtPMzQtYvhLvLDP2bwIio/J7GQRAKcT3IcApkqNOELxR
6mKZP6pe/S7XaGc4/XHOF54NlBzt7T4mqxBW50kE4SYdSeW4PSyT3aApYZwOyeb6
JNvp2aW8ynJbDRlX4BmJ6/BiS5QFa9pxdWJa3sbGI5a+avIMq3+HYcKJDpTKMfKX
ZyESJCbssErVHWK8deqrKe0bR1/w9PrcmTSVIhPoC7OUxLd5Hm8QW+wtjAc3zW8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:57 2024 by rpki-client on console-ams.rpki-client.org