Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/UWYOiTdjFC2r--1uIecQQTaSgmo.roa
File: UWYOiTdjFC2r--1uIecQQTaSgmo.roa (raw, json)
Hash identifier: NhZWzBZcirbwKr0G6Gat4z7NDDPUDg8kRiEBj5Z6Tl0=
Subject key identifier: 51:66:0E:89:37:63:14:2D:AB:FB:ED:6E:21:E7:10:41:36:92:82:6A
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018CB6C208631EDCD9B5C1A921D08D0D9801
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/UWYOiTdjFC2r--1uIecQQTaSgmo.roa
Signing time: Fri 29 Dec 2023 18:06:58 +0000
ROA not before: Fri 29 Dec 2023 18:06:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216157
IP address blocks: 2a13:ba00::/29 maxlen: 32
2a12:6b80::/29 maxlen: 32
2a13:dac0::/29 maxlen: 32
Validation: Failed, certificate revoked on Sat 30 Dec 2023 16:47:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b6:c2:08:63:1e:dc:d9:b5:c1:a9:21:d0:8d:0d:98:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Dec 29 18:06:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51660e893763142dabfbed6e21e710413692826a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8a:5b:0f:c7:0a:9d:24:d9:7b:51:18:0c:a5:
4c:2e:46:6b:16:af:60:8a:38:81:6d:f2:73:09:b7:
bd:6a:a3:13:34:c4:41:5c:29:69:0a:8d:ea:80:ed:
e4:55:fa:0d:a9:26:ea:9d:04:90:e8:82:bf:8e:95:
19:5a:86:ee:b7:93:a9:c8:b1:a6:da:09:31:26:19:
84:c4:0b:8c:eb:e7:a2:82:3d:b4:da:ef:36:86:98:
05:f6:30:99:bc:24:26:f3:e2:84:b3:b4:32:cf:32:
20:ba:b8:41:64:36:5a:e9:58:8b:1b:1e:7c:93:6a:
3b:63:e2:e1:10:f8:e5:db:b3:81:c5:da:0e:2a:84:
7a:d7:d3:40:86:f9:dd:8b:94:3f:df:65:bd:e5:dd:
61:11:4b:eb:f5:75:ef:e2:64:49:bf:f4:b2:77:3d:
23:c4:f9:4b:8b:29:71:db:ec:ed:b9:7c:1a:ab:a0:
68:0b:05:a1:32:b9:e0:86:14:e2:60:7a:54:f3:4c:
8e:b1:8a:a4:fb:93:df:6c:46:58:cf:98:f8:7d:4b:
69:e9:36:a0:c9:7b:f6:37:88:2d:0b:ee:c5:22:72:
c1:95:9f:bf:ae:f4:fe:a5:a3:be:38:8a:5f:4b:8e:
a6:97:8b:7e:a9:43:df:b2:ba:e8:bb:e2:8f:e7:13:
10:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:66:0E:89:37:63:14:2D:AB:FB:ED:6E:21:E7:10:41:36:92:82:6A
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/UWYOiTdjFC2r--1uIecQQTaSgmo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:6b80::/29
2a13:ba00::/29
2a13:dac0::/29
Signature Algorithm: sha256WithRSAEncryption
77:42:e8:5d:bf:36:6b:a0:7a:25:96:b5:ce:22:6d:95:ca:5a:
db:cb:03:cf:8b:83:8d:5f:d0:ae:dc:be:cf:4d:4f:fb:e3:a1:
2d:db:47:78:7c:77:a3:82:7d:4f:30:c8:39:ca:7a:7d:ca:27:
5f:91:32:f0:81:92:fc:e6:dd:e1:db:82:fe:ac:8b:3c:f2:57:
55:99:72:28:c5:dd:58:6f:15:52:8c:eb:fa:0d:9d:db:f7:ac:
8d:b2:3f:c6:fc:dc:a1:30:ba:6f:86:73:40:55:be:2a:79:32:
2c:b5:61:c2:1c:7b:86:5e:26:87:1b:91:f7:b7:a6:0e:a4:d6:
02:5e:17:01:42:cf:f5:16:1d:e9:25:f8:f0:6a:1a:29:3a:3d:
57:a5:5a:bf:12:37:6c:1b:45:a3:27:9d:4d:30:19:c5:7a:18:
ec:da:80:3a:8d:2d:c6:75:c8:1d:1c:50:91:5d:58:22:10:8c:
d5:7d:b6:27:c3:b9:42:42:8a:4b:4f:cb:6f:16:a1:51:aa:1a:
ec:10:80:1b:69:2b:e9:55:1c:67:62:3c:f3:9a:f4:4c:e3:7a:
06:7b:64:8c:54:73:d3:98:fd:b9:13:5a:90:5c:fc:9c:a5:78:
90:0d:2d:02:83:c4:36:f7:6b:d1:01:7f:99:dc:f8:89:f1:d7:
73:e2:9f:0c
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYy2wghjHtzZtcGpIdCNDZgBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4OWQ2YjU1ZDZhNjg4ZWU1ZTMzODE4ODNiYjVhZjY4NDMz
Mjc2ZTMwHhcNMjMxMjI5MTgwNjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTY2MGU4OTM3NjMxNDJkYWJmYmVkNmUyMWU3MTA0MTM2OTI4MjZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYpbD8cKnSTZe1EYDKVMLkZrFq9g
ijiBbfJzCbe9aqMTNMRBXClpCo3qgO3kVfoNqSbqnQSQ6IK/jpUZWobut5OpyLGm
2gkxJhmExAuM6+eigj202u82hpgF9jCZvCQm8+KEs7QyzzIgurhBZDZa6ViLGx58
k2o7Y+LhEPjl27OBxdoOKoR619NAhvndi5Q/32W95d1hEUvr9XXv4mRJv/Sydz0j
xPlLiylx2+ztuXwaq6BoCwWhMrnghhTiYHpU80yOsYqk+5PfbEZYz5j4fUtp6Tag
yXv2N4gtC+7FInLBlZ+/rvT+paO+OIpfS46ml4t+qUPfsrrou+KP5xMQDQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFFFmDok3YxQtq/vtbiHnEEE2koJqMB8GA1UdIwQY
MBaAFBida1XWpojuXjOBiDu1r2hDMnbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUt
YTJhNGM2YTYyMWNkLzEvVVdZT2lUZGpGQzJyLS0xdUllY1FRVGFTZ21vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUtYTJhNGM2YTYyMWNk
LzEvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAbBAIAAjAVAwUDKhJrgAMF
AyoTugADBQMqE9rAMA0GCSqGSIb3DQEBCwUAA4IBAQB3QuhdvzZroHollrXOIm2V
ylrbywPPi4ONX9Cu3L7PTU/746Et20d4fHejgn1PMMg5ynp9yidfkTLwgZL85t3h
24L+rIs88ldVmXIoxd1YbxVSjOv6DZ3b96yNsj/G/NyhMLpvhnNAVb4qeTIstWHC
HHuGXiaHG5H3t6YOpNYCXhcBQs/1Fh3pJfjwahopOj1XpVq/EjdsG0WjJ51NMBnF
ehjs2oA6jS3GdcgdHFCRXVgiEIzVfbYnw7lCQopLT8tvFqFRqhrsEIAbaSvpVRxn
YjzzmvRM43oGe2SMVHPTmP25E1qQXPycpXiQDS0Cg8Q292vRAX+Z3PiJ8ddz4p8M
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:38 2024 by rpki-client on console-fra.rpki-client.org