Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/Uptfj-1b5BnkOI5O-hYPB_PdwyI.roa
File: Uptfj-1b5BnkOI5O-hYPB_PdwyI.roa (raw, json)
Hash identifier: dikaIgr34nskRVWUpEMqTlfffy9KooeLYcbfR7sxNnE=
Subject key identifier: 52:9B:5F:8F:ED:5B:E4:19:E4:38:8E:4E:FA:16:0F:07:F3:DD:C3:22
Certificate issuer: /CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Certificate serial: 01856B0A2B8F090DA8661236FD0D8C0F0D98
Authority key identifier: D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/Uptfj-1b5BnkOI5O-hYPB_PdwyI.roa
Signing time: Sun 01 Jan 2023 01:55:06 +0000
ROA not before: Sun 01 Jan 2023 01:55:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208584
IP address blocks: 2001:678:ab4::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:0a:2b:8f:09:0d:a8:66:12:36:fd:0d:8c:0f:0d:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Validity
Not Before: Jan 1 01:55:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=529b5f8fed5be419e4388e4efa160f07f3ddc322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:9a:37:63:39:be:63:6b:2e:27:47:43:d9:5e:
b0:c3:ae:ac:42:25:8f:5b:e0:38:c3:6f:36:69:83:
39:43:68:bb:59:3d:55:5a:93:6c:09:b5:b2:47:00:
b6:34:a2:29:d2:97:77:98:d6:ac:b4:77:aa:79:3d:
21:61:3f:cd:bd:6d:2a:1c:f4:04:a9:6d:fc:be:20:
0a:e4:5f:c7:f7:50:8a:4d:6f:99:09:a8:34:e0:e9:
16:13:ea:cd:e4:2d:31:1b:65:fd:98:82:aa:bc:10:
2b:64:7c:96:28:af:d8:bf:8a:2a:20:39:fd:05:c5:
7e:c3:0f:d3:bc:82:52:e4:b4:e2:b3:2b:ea:bd:28:
32:57:00:eb:2b:f4:b5:cb:56:3f:a8:9e:f3:f7:df:
f3:53:f3:fd:7f:85:8a:cc:99:76:3b:a0:99:55:ad:
16:94:50:95:1b:aa:69:00:b7:d1:67:34:db:3f:59:
be:fa:85:83:d8:c5:b2:34:fb:5c:ef:d9:93:bc:67:
13:ad:de:21:3b:ae:04:63:9a:86:93:dd:3a:ef:33:
54:f7:5c:8f:8c:15:26:c9:27:4e:28:50:25:42:e4:
7c:34:08:e2:7d:d3:ad:14:7a:53:85:c4:29:93:45:
70:47:71:b7:53:09:02:82:53:60:60:c6:d2:65:c5:
7d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:9B:5F:8F:ED:5B:E4:19:E4:38:8E:4E:FA:16:0F:07:F3:DD:C3:22
X509v3 Authority Key Identifier:
keyid:D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/Uptfj-1b5BnkOI5O-hYPB_PdwyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:ab4::/48
Signature Algorithm: sha256WithRSAEncryption
93:a1:a2:4f:d0:df:b0:bf:cf:85:c5:59:41:ce:ea:92:fa:6f:
36:b5:0c:fd:dc:cc:64:87:57:1b:9c:78:2b:2e:13:8f:40:71:
e8:7b:61:92:2c:b4:cf:12:c8:87:69:c8:a0:81:04:91:18:33:
ce:b1:b1:7c:56:fd:81:e6:cb:36:0c:84:03:7b:d2:c9:db:d6:
7f:88:93:44:0c:db:ee:d4:64:06:2b:3c:ec:e0:00:f0:6f:80:
f9:a6:43:f3:61:87:1a:6b:d4:54:c6:9e:7a:87:8c:ca:2e:6b:
f6:4f:38:0e:7f:29:eb:ee:ba:71:d8:7b:b6:e0:27:48:1a:da:
02:4f:fa:09:b0:6d:44:5b:39:d7:ed:bb:af:5b:a6:a1:86:ca:
20:8c:fc:38:cf:ad:1a:49:d1:e8:b6:8b:d4:b0:36:97:33:b4:
0d:13:eb:7f:91:94:53:47:79:1c:35:4d:3c:5d:36:fd:ff:01:
b0:9d:c2:b6:82:d6:f5:84:e8:8b:19:2d:d4:09:68:a9:86:41:
c3:b2:28:61:a1:19:0c:ae:68:bc:4a:83:fd:29:e0:0f:6f:7f:
42:f3:7b:48:08:ed:5b:85:2d:f1:9a:56:43:49:7d:55:7e:41:
41:73:b9:82:a2:ea:1f:4f:f8:b9:df:25:8b:c5:7e:49:9e:3c:
9f:1d:b1:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:49:21 2024 by rpki-client on console-fra.rpki-client.org