Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/6e5dc3-c7fa-4d36-9095-c19232bda430/1/ukHSl0FOjVLvJF-PBWj918vKi1U.roa
File: ukHSl0FOjVLvJF-PBWj918vKi1U.roa (raw, json)
Hash identifier: VUA+G6u5pUFblgIvRrFeSEZJdaxhkGsmdgPplVrpgwM=
Subject key identifier: BA:41:D2:97:41:4E:8D:52:EF:24:5F:8F:05:68:FD:D7:CB:CA:8B:55
Certificate issuer: /CN=13b89b80186332d441bb0515c47261c5ffa0616b
Certificate serial: 018B61957C1EC20D07E95EE014637E7AB3A1
Authority key identifier: 13:B8:9B:80:18:63:32:D4:41:BB:05:15:C4:72:61:C5:FF:A0:61:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E7ibgBhjMtRBuwUVxHJhxf-gYWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/6e5dc3-c7fa-4d36-9095-c19232bda430/1/ukHSl0FOjVLvJF-PBWj918vKi1U.roa
Signing time: Tue 24 Oct 2023 12:07:48 +0000
ROA not before: Tue 24 Oct 2023 12:07:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39018
IP address blocks: 2a10:8f00::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:61:95:7c:1e:c2:0d:07:e9:5e:e0:14:63:7e:7a:b3:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13b89b80186332d441bb0515c47261c5ffa0616b
Validity
Not Before: Oct 24 12:07:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba41d297414e8d52ef245f8f0568fdd7cbca8b55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ec:96:95:d5:a1:e6:68:44:f9:68:cd:86:32:
88:5a:90:ff:e1:9a:75:12:3e:f0:ed:bb:3c:e0:11:
75:f6:ac:e9:61:1a:7a:88:14:6e:fc:6e:c8:c8:53:
ea:04:84:eb:f1:d5:6d:9b:bb:1d:f0:2b:5e:9f:d4:
67:97:f6:ff:b3:ed:eb:61:af:ba:0e:6d:91:99:cd:
03:7c:d5:ad:18:0f:79:c5:c6:ab:96:c2:0b:ca:18:
0a:ae:3d:8e:53:e4:11:ab:61:43:ed:37:a8:30:75:
79:28:f1:d6:9a:41:ba:4b:3a:a1:85:82:71:39:03:
94:d0:8f:ad:d9:7b:67:03:9d:1c:d3:d3:a6:56:4e:
67:7a:c2:10:16:c6:4a:15:b7:31:53:fc:6a:10:a4:
46:d0:d3:f4:0a:37:9c:19:2f:75:42:99:63:97:8f:
22:58:0f:d7:79:c2:6e:c2:16:42:af:9b:e5:61:10:
35:52:3f:34:eb:e4:c5:a8:d4:c3:bd:ed:ab:61:09:
b5:13:d1:2e:ba:65:a8:f2:37:15:17:4e:45:64:af:
f8:f2:10:0c:85:9f:e9:19:13:78:06:4c:0f:2e:1e:
42:58:21:09:bd:d1:53:70:ef:7a:99:73:36:de:15:
5a:bc:2b:01:05:c0:56:04:1d:d7:c6:70:18:e1:91:
c2:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:41:D2:97:41:4E:8D:52:EF:24:5F:8F:05:68:FD:D7:CB:CA:8B:55
X509v3 Authority Key Identifier:
keyid:13:B8:9B:80:18:63:32:D4:41:BB:05:15:C4:72:61:C5:FF:A0:61:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E7ibgBhjMtRBuwUVxHJhxf-gYWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/6e5dc3-c7fa-4d36-9095-c19232bda430/1/ukHSl0FOjVLvJF-PBWj918vKi1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/6e5dc3-c7fa-4d36-9095-c19232bda430/1/E7ibgBhjMtRBuwUVxHJhxf-gYWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:8f00::/29
Signature Algorithm: sha256WithRSAEncryption
82:89:c5:dd:35:d3:a9:a9:c0:34:ae:e3:7b:09:32:b6:1f:1a:
e9:80:ed:bb:91:dc:2b:99:be:37:3a:a8:22:0a:4c:f6:70:1e:
9c:4e:8a:1b:83:0d:66:8c:73:5f:36:93:8b:c4:9c:e2:06:fe:
17:80:28:74:1d:85:8c:ba:80:27:fe:31:36:b8:e6:5a:5c:17:
ec:80:8a:a2:4c:92:12:cb:11:90:08:14:ba:6e:dc:59:41:fc:
c3:4f:a0:38:f1:e4:5d:26:33:2f:26:a2:36:e3:31:d0:df:22:
8e:ea:89:f6:53:65:74:32:10:d1:fe:e1:0e:b3:50:30:19:95:
2a:f5:9e:6c:04:7b:77:fe:9d:4e:e6:b2:0e:a5:08:74:1c:9b:
50:93:ed:d1:f5:b5:60:82:87:56:a3:25:86:90:76:de:d8:b4:
04:1f:dc:90:9d:e9:f7:78:db:5f:b9:fa:8f:24:91:1f:82:13:
5c:92:58:02:b0:9b:4f:80:13:74:d4:58:47:cf:8c:bc:f0:e7:
1a:a3:2a:28:38:64:ee:18:a9:20:a5:05:66:59:f7:6d:bf:b1:
79:5f:82:3a:50:62:05:5d:4a:fd:b8:11:e8:ae:30:b3:09:e2:
1c:4e:5b:60:cc:e1:db:87:94:8e:16:1b:fd:e7:f2:82:fc:0a:
d2:9e:04:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:49:37 2024 by rpki-client on console-fra.rpki-client.org