Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/Uqfb_BGHKxAkgBe8XFYwk5VxpK0.roa
File: Uqfb_BGHKxAkgBe8XFYwk5VxpK0.roa (raw, json)
Hash identifier: RhuYgVSnRdN2OgZLi7aX5yM7XMcKWcp9QDRxV0Zv9vk=
Subject key identifier: 52:A7:DB:FC:11:87:2B:10:24:80:17:BC:5C:56:30:93:95:71:A4:AD
Certificate issuer: /CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Certificate serial: 018B8AB9379D850ACB5D698FD65DDF023300
Authority key identifier: CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/Uqfb_BGHKxAkgBe8XFYwk5VxpK0.roa
Signing time: Wed 01 Nov 2023 11:51:16 +0000
ROA not before: Wed 01 Nov 2023 11:51:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56694
IP address blocks: 2a0d:afc3::/32 maxlen: 32
2a0d:afc5::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 02 Nov 2023 09:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8a:b9:37:9d:85:0a:cb:5d:69:8f:d6:5d:df:02:33:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Validity
Not Before: Nov 1 11:51:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52a7dbfc11872b10248017bc5c5630939571a4ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:bf:36:72:78:00:18:c2:65:71:7e:35:fe:5f:
32:ac:bd:b6:d2:8d:d4:e3:bf:fc:83:4a:b7:70:5d:
03:29:5a:05:72:9c:6b:f6:be:cc:5b:a3:13:2b:2e:
17:7e:30:30:92:b3:80:17:4a:c6:a8:87:1c:28:16:
19:e6:c9:9f:29:6e:f2:8e:52:48:c1:55:13:b6:2c:
93:59:34:2f:88:06:66:b6:6d:67:46:d4:db:8c:73:
8a:07:5a:e4:68:8d:d6:a1:3a:cc:a9:f0:0c:08:9a:
21:96:6b:7b:70:5b:8d:95:9c:9f:e7:6d:aa:a5:d9:
b1:41:1c:c5:e4:3c:2e:51:67:32:5e:a6:42:38:22:
21:80:9d:5d:3d:7b:ef:9f:dc:b1:2f:0d:c4:44:60:
73:c7:82:5b:05:1f:fb:e1:60:86:e0:21:49:fe:a3:
ea:30:d2:e0:4c:18:a3:02:12:7b:a7:c9:33:3b:dc:
d3:d0:07:a7:02:95:5f:15:0b:37:81:68:c4:d7:e6:
89:cf:2e:51:11:f6:f5:04:9e:6e:1b:61:cc:e2:7d:
b1:84:fc:b6:fa:aa:15:a3:e0:fd:cc:a6:3e:45:39:
f7:ac:5e:aa:bf:6f:d3:64:fb:76:99:44:65:fa:cb:
66:05:8d:fa:a7:a8:f5:6f:53:8b:0c:46:41:50:7b:
08:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A7:DB:FC:11:87:2B:10:24:80:17:BC:5C:56:30:93:95:71:A4:AD
X509v3 Authority Key Identifier:
keyid:CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/Uqfb_BGHKxAkgBe8XFYwk5VxpK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/zNdhWb_Z4zdSPukw898RHWuucwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:afc3::/32
2a0d:afc5::/32
Signature Algorithm: sha256WithRSAEncryption
94:ea:9f:c2:a7:de:e5:94:c9:01:7f:16:24:a2:45:f4:65:3d:
67:93:a5:93:b5:26:be:5d:ca:c4:39:62:f7:65:74:f9:f9:dc:
41:3c:3c:10:01:5b:88:73:2e:65:b2:fd:f2:1f:f2:ce:4b:66:
d8:7c:b5:ae:92:f0:9d:14:4e:ab:81:29:79:74:f0:c6:9b:e3:
4c:b9:1d:2b:cc:91:5e:a4:a9:d6:78:df:f8:09:e5:18:40:62:
76:d5:07:af:98:18:d9:61:02:da:80:7f:fa:c5:f1:ff:da:77:
52:20:a3:fc:96:25:35:02:c2:4d:16:11:8d:64:41:e8:06:ed:
9d:aa:fb:69:dc:3a:d2:50:01:fc:95:8f:2c:2e:f2:b0:7a:03:
2d:46:4b:09:e6:c3:fe:62:3d:8c:bb:a6:54:ff:34:bc:ba:6c:
bf:3d:dc:17:61:be:36:6a:af:86:96:c9:e0:bd:b6:ed:48:72:
44:03:e4:1c:32:99:52:c9:56:12:40:4c:bc:f3:23:e3:2d:ea:
b5:b4:4d:1b:d7:fc:6c:d3:06:f4:db:70:c5:29:ea:70:0d:b8:
74:d3:b8:ec:ae:81:27:43:ea:a3:36:d5:8c:eb:38:23:25:45:
5a:ed:04:e8:8d:30:c2:76:99:c7:41:63:78:cc:48:af:ba:b7:
cb:b7:36:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:46 2024 by rpki-client on console-ams.rpki-client.org