Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/Uj5qq8V0_A2PaFWpVBGw3FgYQBY.roa
File: Uj5qq8V0_A2PaFWpVBGw3FgYQBY.roa (raw, json)
Hash identifier: svQvJrudD5J2s679lsy7uCtc+0cmzT6fJR+ztWIGFE4=
Subject key identifier: 52:3E:6A:AB:C5:74:FC:0D:8F:68:55:A9:54:11:B0:DC:58:18:40:16
Certificate issuer: /CN=f2a253cdf507a03e1f579d202d8df11d68f5c3d7
Certificate serial: 019129C1AE984B87D06E6F4B54A594BD5EC2
Authority key identifier: F2:A2:53:CD:F5:07:A0:3E:1F:57:9D:20:2D:8D:F1:1D:68:F5:C3:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8qJTzfUHoD4fV50gLY3xHWj1w9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/Uj5qq8V0_A2PaFWpVBGw3FgYQBY.roa
Signing time: Tue 06 Aug 2024 22:14:04 +0000
ROA not before: Tue 06 Aug 2024 22:14:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64286
IP address blocks: 2001:3500::/29 maxlen: 32
2001:3500::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 31 Aug 2024 18:27:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:29:c1:ae:98:4b:87:d0:6e:6f:4b:54:a5:94:bd:5e:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2a253cdf507a03e1f579d202d8df11d68f5c3d7
Validity
Not Before: Aug 6 22:14:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=523e6aabc574fc0d8f6855a95411b0dc58184016
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ed:46:6c:24:18:d8:a9:78:d9:b8:26:f4:d3:
6e:cd:46:d8:db:3f:07:36:50:7d:50:f0:21:be:f1:
e5:8d:db:9e:47:03:e7:a8:47:de:9e:a6:54:55:fb:
2a:19:3f:23:ac:bf:54:0a:48:af:8e:ea:e2:56:b2:
d8:9f:d1:76:9d:7e:98:13:de:40:f9:8c:fe:a2:3c:
c1:e1:31:96:13:8b:fc:33:cd:6e:e4:e0:de:db:5f:
91:bf:aa:80:00:18:13:a3:1c:16:88:e3:c7:0c:eb:
b4:d2:78:58:89:30:b9:5e:8f:e4:d3:f9:70:1e:4a:
39:fa:6d:f3:81:b3:23:6c:ae:fb:d8:03:82:e2:07:
0e:c3:b8:bb:99:08:cd:92:ca:4a:36:55:4b:d9:82:
4f:df:91:41:aa:47:b3:9d:7e:54:4a:80:76:25:8b:
87:72:a3:d2:e1:64:a7:6a:c3:8d:1a:b4:11:18:cf:
72:21:b2:8e:25:65:1b:7a:10:2d:d3:9b:42:26:31:
5c:74:71:3f:0e:52:b5:88:37:7a:f7:b9:1e:f1:de:
12:65:fe:53:5c:b9:dd:f0:69:4f:db:67:c1:be:2f:
21:88:33:ca:40:3e:0b:27:09:14:8f:f3:33:a8:77:
61:0d:9f:20:13:27:3b:8b:c8:7f:25:82:51:cc:25:
42:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:3E:6A:AB:C5:74:FC:0D:8F:68:55:A9:54:11:B0:DC:58:18:40:16
X509v3 Authority Key Identifier:
keyid:F2:A2:53:CD:F5:07:A0:3E:1F:57:9D:20:2D:8D:F1:1D:68:F5:C3:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8qJTzfUHoD4fV50gLY3xHWj1w9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/Uj5qq8V0_A2PaFWpVBGw3FgYQBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/8qJTzfUHoD4fV50gLY3xHWj1w9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3500::/29
Signature Algorithm: sha256WithRSAEncryption
7f:b0:27:8d:f6:ab:66:f5:63:a5:aa:1d:65:d3:fd:0b:6e:b6:
8a:19:fb:27:0a:3c:8b:1e:4e:d7:ca:9a:8a:82:ea:fc:e8:b1:
a5:3e:a7:d6:27:f1:18:16:4f:4c:fe:f8:38:a6:e0:78:dd:ac:
50:13:a1:28:d1:8f:44:cc:be:c8:87:0a:b4:e0:42:36:80:31:
a3:1d:3c:51:ee:1a:c6:b2:84:7e:8a:b8:d2:b5:98:45:37:2d:
e3:c7:27:b7:70:52:83:40:80:8f:3e:41:16:c9:12:3f:ee:c1:
ab:58:5c:7e:5f:b3:be:ac:f2:d1:a8:7f:83:62:73:14:50:47:
cf:9d:2d:8d:cd:3a:05:73:bf:4e:c3:b6:f0:83:2f:58:24:0d:
c4:eb:4c:b3:1e:86:5a:62:f9:a4:68:c4:23:e9:75:26:8d:6b:
6c:c1:a7:5e:49:39:94:2f:02:be:5b:ae:98:9f:03:70:98:12:
65:29:32:78:2e:e9:7f:79:43:3d:b2:cd:da:7c:fa:09:f5:c6:
4e:56:24:b7:0a:9c:c4:8e:04:87:96:1a:2d:6d:0b:cc:0c:89:
14:d4:71:75:87:79:2c:b2:43:09:36:98:bd:19:9b:35:8b:e5:
9a:96:2d:95:99:7c:c9:e1:35:6e:f5:8d:16:b5:0c:e6:8c:4b:
b6:be:b7:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 31 20:28:23 2024 by rpki-client on console-fra.rpki-client.org