Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UUt2XmXUxDciiFyVF5BF2LipiMM.roa
File: UUt2XmXUxDciiFyVF5BF2LipiMM.roa (raw, json)
Hash identifier: IRTRv7pp01PjeDJf0x6gSTcXfsTfWU7Bne7p6e35cHA=
Subject key identifier: 51:4B:76:5E:65:D4:C4:37:22:88:5C:95:17:90:45:D8:B8:A9:88:C3
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E82AF634BE22B4F09DF22DE1E0C096
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UUt2XmXUxDciiFyVF5BF2LipiMM.roa
Signing time: Mon 02 Jan 2023 05:15:41 +0000
ROA not before: Mon 02 Jan 2023 05:15:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213346
IP address blocks: 2a10:2f00:129::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e8:2a:f6:34:be:22:b4:f0:9d:f2:2d:e1:e0:c0:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=514b765e65d4c43722885c95179045d8b8a988c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:99:14:86:40:c0:b9:b4:bb:b7:21:7f:dd:8a:
99:b1:71:ca:24:aa:78:60:5b:1c:16:a8:bf:f9:85:
53:6d:14:8c:4e:d5:d8:38:50:76:87:fc:f4:e6:1c:
5e:de:fa:23:e8:7f:af:be:d0:ee:5a:01:51:8c:cc:
1e:03:a8:e0:c4:49:cb:00:6a:4d:f9:ce:ec:61:37:
8c:62:84:1c:87:c8:f1:6a:d2:03:b3:4f:5f:ad:0d:
bb:d8:50:14:4d:63:66:c9:cd:b1:44:b8:a7:3f:42:
12:4c:3c:92:71:62:87:b6:3d:fe:9c:42:12:18:e8:
f6:ef:c8:7f:ee:79:36:a9:f6:3a:af:f1:b4:36:e1:
ef:eb:15:ff:5a:70:7b:3b:66:cd:bb:d6:7f:71:a3:
57:f5:ba:86:91:38:3c:0b:fa:99:6e:fe:6a:aa:b1:
a5:15:14:e6:a7:fb:13:a6:02:2f:39:72:91:95:a7:
e2:03:28:c8:c6:89:ad:30:a3:4e:bf:f1:16:99:d5:
c3:7b:23:1e:63:cf:7c:d1:69:41:c5:7e:d3:34:74:
43:2f:d0:38:1a:a4:a7:2d:99:d9:fb:88:78:ee:cf:
a1:39:ec:bd:fa:6f:1a:3b:83:ca:c8:24:08:a1:95:
3a:e7:a8:e0:c3:ae:7c:d7:07:00:f1:14:0c:81:fb:
99:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:4B:76:5E:65:D4:C4:37:22:88:5C:95:17:90:45:D8:B8:A9:88:C3
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UUt2XmXUxDciiFyVF5BF2LipiMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f00:129::/48
Signature Algorithm: sha256WithRSAEncryption
5e:f5:a3:d1:99:13:30:f3:b0:24:68:7e:a8:c9:80:b3:f4:f2:
51:3e:23:48:a0:0b:dc:2d:c3:26:29:91:34:5c:3b:a1:cb:86:
a1:24:31:51:95:38:97:60:cf:9d:43:96:c6:db:dd:08:75:02:
d8:16:5e:8b:3c:86:17:cd:67:e5:3b:8d:58:44:2a:87:fa:02:
7f:9d:a6:70:fc:ad:96:bc:22:aa:b5:95:99:bc:d9:a2:55:38:
24:65:2b:5f:f9:46:c6:88:99:3c:48:c0:fb:9e:9d:40:ce:0c:
89:9d:cf:ff:e1:11:6f:42:90:fe:c1:2d:23:96:d4:9f:69:ec:
d8:f3:5d:0c:1d:a8:29:7b:f4:a2:d9:53:c6:5f:68:82:1d:51:
7e:da:12:fd:c2:7e:4b:f9:ab:31:67:3f:1c:0e:96:02:96:68:
f5:16:db:84:1f:c3:0c:20:b8:f2:cd:4b:a8:56:13:2f:9a:1e:
26:f7:05:1d:80:f8:87:45:89:b7:d2:c9:18:d6:9d:77:34:71:
ed:3f:a3:0e:ab:e2:60:fc:e0:b1:c8:eb:ec:76:1c:5d:b5:71:
f9:c4:a2:31:d6:18:cf:da:1c:62:4f:84:d5:b1:36:38:03:14:
f7:52:de:c9:d2:26:78:e6:79:f4:32:e9:3f:25:fd:0f:86:35:
0a:83:63:92
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVw6Cr2NL4itPCd8i3h4MCWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwMTAyMDUxNTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTRiNzY1ZTY1ZDRjNDM3MjI4ODVjOTUxNzkwNDVkOGI4YTk4OGMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6pkUhkDAubS7tyF/3YqZsXHKJKp4
YFscFqi/+YVTbRSMTtXYOFB2h/z05hxe3voj6H+vvtDuWgFRjMweA6jgxEnLAGpN
+c7sYTeMYoQch8jxatIDs09frQ272FAUTWNmyc2xRLinP0ISTDyScWKHtj3+nEIS
GOj278h/7nk2qfY6r/G0NuHv6xX/WnB7O2bNu9Z/caNX9bqGkTg8C/qZbv5qqrGl
FRTmp/sTpgIvOXKRlafiAyjIxomtMKNOv/EWmdXDeyMeY8980WlBxX7TNHRDL9A4
GqSnLZnZ+4h47s+hOey9+m8aO4PKyCQIoZU656jgw6581wcA8RQMgfuZRQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFFLdl5l1MQ3IohclReQRdi4qYjDMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvVVV0MlhtWFV4RGNpaUZ5VkY1QkYyTGlwaU1NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhAvAAEp
MA0GCSqGSIb3DQEBCwUAA4IBAQBe9aPRmRMw87AkaH6oyYCz9PJRPiNIoAvcLcMm
KZE0XDuhy4ahJDFRlTiXYM+dQ5bG290IdQLYFl6LPIYXzWflO41YRCqH+gJ/naZw
/K2WvCKqtZWZvNmiVTgkZStf+UbGiJk8SMD7np1AzgyJnc//4RFvQpD+wS0jltSf
aezY810MHagpe/Si2VPGX2iCHVF+2hL9wn5L+asxZz8cDpYClmj1FtuEH8MMILjy
zUuoVhMvmh4m9wUdgPiHRYm30skY1p13NHHtP6MOq+Jg/OCxyOvsdhxdtXH5xKIx
1hjP2hxiT4TVsTY4AxT3Ut7J0iZ45nn0Muk/Jf0PhjUKg2OS
-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:31 2024 by rpki-client on console-fra.rpki-client.org