Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UClQx5v0NNf8atvHse9zgt2uVLE.roa
File: UClQx5v0NNf8atvHse9zgt2uVLE.roa (raw, json)
Hash identifier: MzFTxdIyvbtlXPLF1l7IYCeaMRXgqDsnBzPYBv/JKUY=
Subject key identifier: 50:29:50:C7:9B:F4:34:D7:FC:6A:DB:C7:B1:EF:73:82:DD:AE:54:B1
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0188A63E7BA0431F1D202F2D71735B4F5E82
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UClQx5v0NNf8atvHse9zgt2uVLE.roa
Signing time: Sat 10 Jun 2023 16:58:12 +0000
ROA not before: Sat 10 Jun 2023 16:58:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199829
IP address blocks: 2a0e:b107:1ef0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:a6:3e:7b:a0:43:1f:1d:20:2f:2d:71:73:5b:4f:5e:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 10 16:58:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=502950c79bf434d7fc6adbc7b1ef7382ddae54b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:09:2e:68:e2:dd:a3:d9:b4:f1:be:40:52:3d:
a9:2f:c6:ce:40:d2:78:82:98:87:e7:ff:15:96:5f:
34:d0:89:fa:06:b0:8c:39:74:d9:95:65:f8:4a:6b:
b4:9f:28:f0:6f:0e:93:37:96:f7:38:79:a0:1c:c4:
a0:9e:0b:99:1e:32:5c:a3:1b:67:a0:0e:72:4c:54:
c4:e0:c7:c1:51:87:4c:c8:01:e2:44:fd:f4:de:90:
43:ce:34:3f:03:9f:f3:9f:cf:57:48:9e:4c:b0:5e:
26:42:1b:b0:23:24:a0:a6:73:18:5f:c7:bf:cc:0c:
12:fe:37:46:85:40:eb:8b:30:c2:5f:a1:12:4e:48:
6c:ce:64:1e:31:fd:1c:ec:90:77:c8:28:21:5e:51:
85:fc:70:49:fc:e2:3a:6e:8c:8f:9d:5f:b4:6c:88:
43:a8:74:e7:a7:33:f2:9b:35:a7:0c:1e:46:cc:69:
c5:56:f2:b6:03:42:9a:63:94:a6:94:b6:bd:e8:eb:
d3:af:7e:b9:c4:7c:35:72:5d:8a:9f:0b:a3:d9:36:
ff:bf:a1:98:f5:c2:1a:31:5b:c9:30:a9:8b:af:ea:
d0:be:af:1a:d9:b1:8b:52:5d:6a:3e:3f:a2:00:96:
70:e7:b3:90:14:a5:74:6a:0d:14:c8:b6:5c:27:ef:
d3:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:29:50:C7:9B:F4:34:D7:FC:6A:DB:C7:B1:EF:73:82:DD:AE:54:B1
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UClQx5v0NNf8atvHse9zgt2uVLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1ef0::/44
Signature Algorithm: sha256WithRSAEncryption
ad:28:4a:5d:3f:05:45:28:23:ea:e6:c8:6b:50:ff:e6:d5:8c:
bc:1d:2c:c8:c4:bd:2d:e8:c4:3a:ab:22:e6:10:05:60:bf:43:
db:4d:c1:ce:c7:8e:39:0d:13:b8:30:20:03:35:9d:ca:3a:34:
a3:0d:40:23:8a:08:62:63:98:75:7e:32:6e:69:33:76:a9:46:
76:51:77:19:b1:3d:41:8f:68:2d:6a:d3:08:d4:78:56:ad:35:
01:67:ad:0e:03:b5:54:79:1b:bf:7a:66:64:4a:24:05:b7:68:
b8:20:d0:30:be:53:d8:90:5d:ef:b9:be:c2:d7:4a:48:84:6c:
60:19:3e:81:87:d1:8d:6b:e0:8d:21:35:d0:8c:16:d8:1c:46:
68:68:7e:c8:d9:55:c9:d4:e4:0d:02:7a:b3:78:96:59:16:7e:
41:ff:cc:c2:a7:8f:ea:7b:b0:22:05:bf:c3:f6:e4:6f:54:e2:
72:ef:b0:99:e6:4f:8c:35:d2:48:f2:50:a6:3d:08:b1:49:4b:
f0:bb:f9:e1:6a:c4:84:21:20:09:9e:d1:d1:35:4f:a4:a0:a3:
55:d6:dd:8b:77:53:3e:0e:fa:d6:b7:b0:49:5b:2a:a1:57:c3:
72:96:cf:3b:3c:2c:eb:0f:f7:f9:ba:21:11:1d:00:6d:b7:62:
0c:c4:61:51
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYimPnugQx8dIC8tcXNbT16CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwNjEwMTY1ODEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MDI5NTBjNzliZjQzNGQ3ZmM2YWRiYzdiMWVmNzM4MmRkYWU1NGIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwgkuaOLdo9m08b5AUj2pL8bOQNJ4
gpiH5/8Vll800In6BrCMOXTZlWX4Smu0nyjwbw6TN5b3OHmgHMSgnguZHjJcoxtn
oA5yTFTE4MfBUYdMyAHiRP303pBDzjQ/A5/zn89XSJ5MsF4mQhuwIySgpnMYX8e/
zAwS/jdGhUDrizDCX6ESTkhszmQeMf0c7JB3yCghXlGF/HBJ/OI6boyPnV+0bIhD
qHTnpzPymzWnDB5GzGnFVvK2A0KaY5SmlLa96OvTr365xHw1cl2Knwuj2Tb/v6GY
9cIaMVvJMKmLr+rQvq8a2bGLUl1qPj+iAJZw57OQFKV0ag0UyLZcJ+/T4QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFApUMeb9DTX/Grbx7Hvc4LdrlSxMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvVUNsUXg1djBOTmY4YXR2SHNlOXpndDJ1VkxFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6xBx7w
MA0GCSqGSIb3DQEBCwUAA4IBAQCtKEpdPwVFKCPq5shrUP/m1Yy8HSzIxL0t6MQ6
qyLmEAVgv0PbTcHOx445DRO4MCADNZ3KOjSjDUAjighiY5h1fjJuaTN2qUZ2UXcZ
sT1Bj2gtatMI1HhWrTUBZ60OA7VUeRu/emZkSiQFt2i4INAwvlPYkF3vub7C10pI
hGxgGT6Bh9GNa+CNITXQjBbYHEZoaH7I2VXJ1OQNAnqzeJZZFn5B/8zCp4/qe7Ai
Bb/D9uRvVOJy77CZ5k+MNdJI8lCmPQixSUvwu/nhasSEISAJntHRNU+koKNV1t2L
d1M+DvrWt7BJWyqhV8Nyls87PCzrD/f5uiERHQBtt2IMxGFR
-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:31 2024 by rpki-client on console-fra.rpki-client.org