Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/uvnp57GE9JQYvhpRNlWy3GAplYM.roa
File: uvnp57GE9JQYvhpRNlWy3GAplYM.roa (raw, json)
Hash identifier: e2PAV6cWbBh02xtJvahXuz03K9HP7psll+t2lczJQLY=
Subject key identifier: BA:F9:E9:E7:B1:84:F4:94:18:BE:1A:51:36:55:B2:DC:60:29:95:83
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018572BA7C97C7FFD698D56F59B58AAF4022
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/uvnp57GE9JQYvhpRNlWy3GAplYM.roa
Signing time: Mon 02 Jan 2023 13:45:02 +0000
ROA not before: Mon 02 Jan 2023 13:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42503
IP address blocks: 2001:1a68:7::/48 maxlen: 48
2001:1a68:b::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:7c:97:c7:ff:d6:98:d5:6f:59:b5:8a:af:40:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 13:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=baf9e9e7b184f49418be1a513655b2dc60299583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:3f:78:70:b6:bc:3b:f4:d0:03:99:89:6c:2e:
2b:ef:fc:8d:12:24:8f:4a:ef:79:09:4b:a0:68:e3:
3a:6a:7a:ea:cd:48:d5:04:4c:75:8a:43:8c:9f:7b:
e8:f8:60:be:72:97:86:18:b7:19:66:b9:6f:b0:cb:
a9:fc:50:1c:6e:59:3a:9f:21:3a:46:e4:42:32:45:
97:a0:fc:4a:2b:cb:2c:cb:7e:8a:5f:05:30:5f:b5:
15:eb:f3:23:9f:14:9b:3c:a6:b8:fe:f0:78:91:b7:
c4:9b:16:3a:47:74:fb:d6:ee:80:18:64:e4:6c:66:
b9:fa:6c:08:97:f4:34:66:43:24:4a:3b:c1:23:d9:
92:5a:d1:a2:52:d7:71:88:b6:dc:25:59:8f:27:06:
da:b1:62:de:27:f0:34:5d:bc:2c:cc:e0:82:a5:19:
f2:5f:3c:90:fb:6f:a7:4d:99:4b:f5:d9:bc:fb:a5:
7e:17:d3:41:8f:68:8e:10:d8:74:5a:37:2a:60:18:
a7:19:f9:f9:f7:c9:d3:c9:d5:a8:b7:27:39:d8:9d:
81:d7:6e:88:43:41:88:82:01:06:fe:b5:4c:f8:a6:
e1:d1:e0:83:5a:07:80:f1:d8:df:6e:25:2c:35:2b:
f0:82:9c:7a:56:d6:a5:be:5a:be:3d:d1:cd:1a:66:
d0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:F9:E9:E7:B1:84:F4:94:18:BE:1A:51:36:55:B2:DC:60:29:95:83
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/uvnp57GE9JQYvhpRNlWy3GAplYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:1a68:7::/48
2001:1a68:b::/48
Signature Algorithm: sha256WithRSAEncryption
33:ac:09:08:9d:64:6b:85:e4:f9:70:46:a6:79:b3:d8:1d:f0:
86:47:d8:04:4b:44:b5:d9:ef:e9:47:35:24:cb:5a:7e:6a:52:
8a:23:3c:f8:0c:4c:b0:1b:fe:49:fb:a2:0b:a4:f0:1f:a4:17:
f3:c3:46:32:51:02:62:ce:02:72:6f:95:62:d1:da:e3:a1:58:
d8:cb:b2:da:65:e9:aa:a1:47:86:ab:35:c6:f5:37:4a:ee:2a:
22:ae:ef:a4:7d:2d:19:47:39:36:eb:4c:75:28:af:be:42:35:
f1:9f:1a:7c:2e:32:43:ff:41:b3:12:92:15:85:98:e0:fa:ff:
e8:18:6e:da:0f:7c:76:63:8e:a0:3b:55:77:f5:fa:76:95:b8:
de:8e:3d:c8:0d:ad:05:81:29:72:fc:61:58:d4:e9:5e:a0:f2:
cb:56:d9:1d:ae:a6:99:e2:62:21:2a:ed:d0:36:a9:d7:c1:99:
22:15:74:0b:c2:2f:d3:63:bd:88:50:fa:e2:0d:07:b9:81:d3:
64:70:7e:94:c5:64:4d:05:e3:49:84:1b:f5:1d:38:c7:c2:83:
6c:39:bc:64:07:7a:99:ff:b4:fa:03:ff:40:1c:3d:37:2d:7d:
3b:d5:0d:b3:29:8f:06:6c:c2:7b:e0:8a:28:5c:a8:f0:53:33:
fd:29:e5:b8
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYVyunyXx//WmNVvWbWKr0AiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YzUxMGZjOWI4NjVkOTZlM2FmYzdjNTYwNTZlZmFkOWEz
MzBjNWIwHhcNMjMwMTAyMTM0NTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYWY5ZTllN2IxODRmNDk0MThiZTFhNTEzNjU1YjJkYzYwMjk5NTgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiT94cLa8O/TQA5mJbC4r7/yNEiSP
Su95CUugaOM6anrqzUjVBEx1ikOMn3vo+GC+cpeGGLcZZrlvsMup/FAcblk6nyE6
RuRCMkWXoPxKK8ssy36KXwUwX7UV6/MjnxSbPKa4/vB4kbfEmxY6R3T71u6AGGTk
bGa5+mwIl/Q0ZkMkSjvBI9mSWtGiUtdxiLbcJVmPJwbasWLeJ/A0XbwszOCCpRny
XzyQ+2+nTZlL9dm8+6V+F9NBj2iOENh0WjcqYBinGfn598nTydWotyc52J2B126I
Q0GIggEG/rVM+Kbh0eCDWgeA8djfbiUsNSvwgpx6Vtalvlq+PdHNGmbQQQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFLr56eexhPSUGL4aUTZVstxgKZWDMB8GA1UdIwQY
MBaAFGjFEPybhl2W46/HxWBW762aMwxbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU1VUV9KdUdYWmJqcjhmRllGYnZyWm96REZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9lMGYyZjYtM2E4YS00ZGFhLTgyNzEt
NWQ2NjVlOTk4ZjZhLzEvdXZucDU3R0U5SlFZdmhwUk5sV3kzR0FwbFlNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC9lMGYyZjYtM2E4YS00ZGFhLTgyNzEtNWQ2NjVlOTk4ZjZh
LzEvYU1VUV9KdUdYWmJqcjhmRllGYnZyWm96REZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAIAEaaAAH
AwcAIAEaaAALMA0GCSqGSIb3DQEBCwUAA4IBAQAzrAkInWRrheT5cEamebPYHfCG
R9gES0S12e/pRzUky1p+alKKIzz4DEywG/5J+6ILpPAfpBfzw0YyUQJizgJyb5Vi
0drjoVjYy7LaZemqoUeGqzXG9TdK7ioiru+kfS0ZRzk260x1KK++QjXxnxp8LjJD
/0GzEpIVhZjg+v/oGG7aD3x2Y46gO1V39fp2lbjejj3IDa0FgSly/GFY1OleoPLL
VtkdrqaZ4mIhKu3QNqnXwZkiFXQLwi/TY72IUPriDQe5gdNkcH6UxWRNBeNJhBv1
HTjHwoNsObxkB3qZ/7T6A/9AHD03LX071Q2zKY8GbMJ74IooXKjwUzP9KeW4
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:57 2024 by rpki-client on console-fra.rpki-client.org