Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UJ4LX1ferVIA-dxzcAZNlF7u8Uo.roa
File: UJ4LX1ferVIA-dxzcAZNlF7u8Uo.roa (raw, json)
Hash identifier: Xw5bLp77NIlgbQJcCOfRLMJlC79JdLdT9LdrCydLE8Q=
Subject key identifier: 50:9E:0B:5F:57:DE:AD:52:00:F9:DC:73:70:06:4D:94:5E:EE:F1:4A
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018EA8B97A375E790FA20F3E3D5E4C768404
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UJ4LX1ferVIA-dxzcAZNlF7u8Uo.roa
Signing time: Thu 04 Apr 2024 10:48:31 +0000
ROA not before: Thu 04 Apr 2024 10:48:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215168
IP address blocks: 2a0e:97c0:7c0::/44 maxlen: 48
Validation: Failed, certificate revoked on Thu 04 Apr 2024 17:48:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a8:b9:7a:37:5e:79:0f:a2:0f:3e:3d:5e:4c:76:84:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 4 10:48:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=509e0b5f57dead5200f9dc7370064d945eeef14a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:7c:21:26:6c:eb:f7:bd:97:02:d8:7a:99:3a:
1f:66:07:5c:86:c8:65:49:b8:56:6a:96:50:3a:c9:
14:c0:36:f2:6d:bc:a6:6d:21:a3:0e:79:43:27:d1:
46:a9:45:85:67:1e:ca:67:0a:34:5a:aa:9a:25:5c:
c9:cd:ae:cd:3b:a1:c1:ed:ea:16:90:c4:fd:f6:9e:
d9:9c:e1:75:7d:0d:10:69:4d:b7:bd:bc:69:f2:b3:
73:0c:6c:51:6e:be:0a:aa:d9:c1:ff:91:78:6a:7d:
ae:e4:d4:c8:cf:66:13:53:86:d6:1e:44:aa:87:48:
9a:ab:3f:16:b8:ce:f2:19:f4:3a:ea:e8:91:bb:71:
42:b0:72:52:f8:d8:cd:22:4e:26:10:77:02:a7:2f:
a0:5d:83:d7:9e:3d:5b:95:2d:08:c9:28:57:d4:91:
a4:05:7d:19:e5:c6:2a:d2:ea:e1:3d:1c:d8:26:d1:
50:bc:d0:1b:fc:e7:9e:a7:72:7d:4c:94:58:9b:26:
a3:04:9d:8a:cb:73:35:08:c9:eb:0c:ca:6d:99:15:
7e:5d:d0:9f:3f:75:0a:8f:93:30:45:72:be:72:ab:
7b:86:f7:46:2f:7a:80:93:68:8d:70:ff:ed:98:b2:
aa:33:7f:0d:44:06:90:41:3b:9d:48:2b:eb:b6:48:
40:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:9E:0B:5F:57:DE:AD:52:00:F9:DC:73:70:06:4D:94:5E:EE:F1:4A
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UJ4LX1ferVIA-dxzcAZNlF7u8Uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:7c0::/44
Signature Algorithm: sha256WithRSAEncryption
58:df:f2:41:bc:dc:c8:0f:28:d3:ec:ef:30:c4:b4:55:4b:a7:
c5:6c:69:25:6a:ef:2f:25:33:c0:74:6f:fd:cc:39:e4:f9:eb:
ff:07:1b:9d:85:ed:4e:02:79:06:14:1c:00:9b:0d:96:96:1e:
c6:2e:dc:2a:80:02:0c:37:97:ce:0f:f9:a3:cb:f8:bd:3b:fc:
ef:a6:6f:88:c5:b0:f6:a1:46:02:5e:41:75:a8:ed:7b:2f:5a:
64:95:19:13:81:c6:be:17:11:e6:4a:95:b9:60:8d:17:f6:2b:
bf:5f:9d:de:04:a4:d2:f8:9b:cb:c0:0f:f9:e1:61:9a:2f:b9:
bd:ec:37:f5:59:de:be:65:46:b2:46:28:16:bc:2f:9a:cc:1b:
58:0e:a3:85:36:e9:de:26:0d:3e:c2:1a:c0:78:3b:e8:86:2b:
8c:ac:86:fd:26:56:db:53:9f:a0:41:38:e7:5a:24:fe:b3:28:
51:61:3d:5a:d7:b1:e6:7f:4d:91:35:53:7a:ff:2c:4c:f4:5c:
9f:c9:d5:65:20:05:2e:ec:8a:32:51:42:8f:78:24:08:6d:59:
7d:69:ee:00:09:01:09:cb:76:b3:01:46:d6:ec:dc:2d:ae:4d:
97:7b:a4:3b:6e:9c:45:e7:1f:f0:72:16:b9:10:7d:7d:f5:ee:
d1:43:1f:83
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY6ouXo3XnkPog8+PV5MdoQEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjQwNDA0MTA0ODMxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MDllMGI1ZjU3ZGVhZDUyMDBmOWRjNzM3MDA2NGQ5NDVlZWVmMTRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0nwhJmzr972XAth6mTofZgdchshl
SbhWapZQOskUwDbybbymbSGjDnlDJ9FGqUWFZx7KZwo0WqqaJVzJza7NO6HB7eoW
kMT99p7ZnOF1fQ0QaU23vbxp8rNzDGxRbr4KqtnB/5F4an2u5NTIz2YTU4bWHkSq
h0iaqz8WuM7yGfQ66uiRu3FCsHJS+NjNIk4mEHcCpy+gXYPXnj1blS0IyShX1JGk
BX0Z5cYq0urhPRzYJtFQvNAb/Oeep3J9TJRYmyajBJ2Ky3M1CMnrDMptmRV+XdCf
P3UKj5MwRXK+cqt7hvdGL3qAk2iNcP/tmLKqM38NRAaQQTudSCvrtkhACwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFCeC19X3q1SAPncc3AGTZRe7vFKMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvVUo0TFgxZmVyVklBLWR4emNBWk5sRjd1OFVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6XwAfA
MA0GCSqGSIb3DQEBCwUAA4IBAQBY3/JBvNzIDyjT7O8wxLRVS6fFbGklau8vJTPA
dG/9zDnk+ev/Bxudhe1OAnkGFBwAmw2Wlh7GLtwqgAIMN5fOD/mjy/i9O/zvpm+I
xbD2oUYCXkF1qO17L1pklRkTgca+FxHmSpW5YI0X9iu/X53eBKTS+JvLwA/54WGa
L7m97Df1Wd6+ZUayRigWvC+azBtYDqOFNuneJg0+whrAeDvohiuMrIb9JlbbU5+g
QTjnWiT+syhRYT1a17Hmf02RNVN6/yxM9FyfydVlIAUu7IoyUUKPeCQIbVl9ae4A
CQEJy3azAUbW7Nwtrk2Xe6Q7bpxF5x/wcha5EH199e7RQx+D
-----END CERTIFICATE-----
Generated at Thu Apr 4 22:56:38 2024 by rpki-client on console-ams.rpki-client.org