Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/UVFZZ_nm_SntLNAZGHcMoRZg6MQ.roa
File: UVFZZ_nm_SntLNAZGHcMoRZg6MQ.roa (raw, json)
Hash identifier: Jm0x+vJ/3NeB2oxyP6hLAQvG5/aIqipUAAzKbmT7xEM=
Subject key identifier: 51:51:59:67:F9:E6:FD:29:ED:2C:D0:19:18:77:0C:A1:16:60:E8:C4
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 01856F42E25A2708C3AFBF4624B410458998
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/UVFZZ_nm_SntLNAZGHcMoRZg6MQ.roa
Signing time: Sun 01 Jan 2023 21:35:32 +0000
ROA not before: Sun 01 Jan 2023 21:35:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211722
IP address blocks: 2a0e:8f02:2130::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:e2:5a:27:08:c3:af:bf:46:24:b4:10:45:89:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 21:35:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51515967f9e6fd29ed2cd01918770ca11660e8c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a5:0d:b3:f9:25:dd:b4:fe:2b:ad:44:70:c3:
26:b7:a3:c0:0d:92:32:af:e4:15:ab:5c:26:53:93:
cb:18:87:44:8d:f0:b8:fd:a9:c6:1d:7b:91:7c:a8:
69:44:34:67:df:a5:2e:5a:36:3b:06:67:9d:60:5d:
1f:04:7c:75:f2:9a:e6:66:2f:f5:f2:25:c4:eb:da:
13:20:19:29:79:d7:fc:2d:92:c1:99:1e:4e:b8:8c:
b6:05:3f:f9:1f:04:bc:23:0b:ad:5b:11:fa:97:b2:
74:d6:65:bc:a8:48:66:ad:39:6b:0a:e6:2b:87:3d:
94:0d:33:4e:1f:8a:44:e5:a4:8b:c1:c0:00:ea:aa:
ef:02:d0:22:6c:7d:49:29:49:5e:14:18:5b:bd:de:
29:ae:87:6c:c8:c6:bf:9b:37:a5:f6:7b:68:80:51:
cd:00:e2:06:ad:69:45:e1:e5:ff:b3:c8:0f:0a:fe:
e7:06:05:a6:d0:b2:7e:0f:54:2d:67:0c:2c:5b:d2:
2a:ec:a1:94:0a:b2:b8:76:29:b4:2c:e1:a6:61:fe:
3a:fa:c2:ec:4b:60:d6:40:04:43:d8:5f:f2:f4:90:
93:1c:47:73:c1:37:6a:cf:36:7c:71:09:e0:25:e9:
25:d1:92:94:1c:92:36:82:0d:87:08:48:c2:49:e3:
ae:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:51:59:67:F9:E6:FD:29:ED:2C:D0:19:18:77:0C:A1:16:60:E8:C4
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/UVFZZ_nm_SntLNAZGHcMoRZg6MQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:2130::/44
Signature Algorithm: sha256WithRSAEncryption
26:7a:f0:f8:7d:a5:bf:50:2e:5f:73:b7:db:2f:ae:85:19:17:
e8:b8:18:07:cd:f5:36:ee:a3:99:0c:76:9c:c0:dc:d1:80:6e:
7f:72:4d:62:41:27:d5:4e:03:a7:4d:c6:39:36:d3:5c:85:a1:
4a:fe:cf:26:ae:c6:97:ab:a1:03:0e:6d:6d:23:8f:ee:8d:f4:
1f:ce:1b:1a:d4:46:d7:84:96:af:fe:f5:49:f3:c4:71:4f:81:
24:67:a3:02:97:c5:a3:06:a1:6a:d9:cb:0e:61:27:59:42:d6:
6a:46:15:67:e7:a5:3f:41:cf:11:3f:0f:98:78:d2:d3:12:aa:
5f:d7:1a:b8:6e:9d:f3:60:75:82:7f:66:63:a4:4e:22:80:05:
3d:fe:c6:8e:d1:d9:93:7d:66:ab:df:3c:a2:7e:81:2d:94:4c:
87:fb:2d:30:c2:8d:4d:72:4a:d6:68:a5:75:b4:7e:04:08:e2:
02:d5:46:e9:5f:0c:e2:85:c0:3c:e6:c7:02:be:62:3f:78:b5:
da:a1:5f:4a:7f:5f:88:cc:da:a7:2f:dd:d3:ae:0f:a7:5f:6b:
de:0c:33:f3:c8:4c:15:70:e0:ca:2e:1e:c8:85:8b:d1:2a:75:
3e:c0:54:ef:5a:7e:f6:be:67:5d:6c:9f:2c:31:eb:ec:8c:67:
45:ef:a7:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:00 2024 by rpki-client on console-ams.rpki-client.org