Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UeXDWhaBNKp31xP4TKoZewOIPfI.roa
File: UeXDWhaBNKp31xP4TKoZewOIPfI.roa (raw, json)
Hash identifier: ic4GxiMepnhfPH1P+pfPzB2islCbWPKRkFmMKu3YjTk=
Subject key identifier: 51:E5:C3:5A:16:81:34:AA:77:D7:13:F8:4C:AA:19:7B:03:88:3D:F2
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01879626DD39500A5332ED69E0987C8DDCB6
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UeXDWhaBNKp31xP4TKoZewOIPfI.roa
Signing time: Tue 18 Apr 2023 20:55:41 +0000
ROA not before: Tue 18 Apr 2023 20:55:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0e:b107:1870::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:b107:5d0::/44 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a0e:97c0:736::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
2a0e:97c0:73f::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:96:26:dd:39:50:0a:53:32:ed:69:e0:98:7c:8d:dc:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 18 20:55:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51e5c35a168134aa77d713f84caa197b03883df2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:73:b6:61:8a:c0:e5:53:0a:32:36:8d:f5:6b:
2b:28:18:7e:76:16:fb:0f:af:c0:2d:5c:00:12:44:
2c:1b:e0:1e:57:4d:e9:76:1f:86:84:71:bf:4d:85:
50:40:30:1f:a0:36:f3:e3:ca:b3:7a:35:68:9b:81:
5f:29:c8:99:e5:df:1c:7d:03:a2:e0:8a:95:4b:0f:
e9:03:4d:1e:03:36:cb:3d:31:55:c3:56:39:b8:d7:
cc:e6:31:14:0b:6f:dc:10:e8:7c:a5:ce:36:91:70:
7e:91:a2:66:85:14:86:ff:7c:0e:86:ab:bb:3e:e0:
63:b4:31:73:fb:99:0c:a4:50:b4:75:07:41:d1:11:
af:a4:56:d7:19:6f:3a:19:48:fd:de:99:cb:4f:f1:
86:4a:31:1e:68:9b:2b:30:87:00:f1:84:86:5f:31:
68:28:21:41:89:71:01:0d:91:5c:78:76:83:65:0b:
9c:83:7c:93:7c:db:6a:a9:c4:ef:5b:aa:8a:ca:0d:
5a:4c:28:8e:0c:b6:8f:6c:0f:d5:37:2b:7d:fd:a9:
60:78:36:a3:28:1e:f9:b4:83:b3:ea:cc:23:54:a1:
a2:d3:69:2e:72:c0:f9:ff:d4:34:1d:7e:1e:34:57:
54:44:96:7d:51:4a:3f:bb:23:0d:d0:4c:b5:25:3d:
1c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:E5:C3:5A:16:81:34:AA:77:D7:13:F8:4C:AA:19:7B:03:88:3D:F2
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UeXDWhaBNKp31xP4TKoZewOIPfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:3b87:ff00::/40
2a0e:97c0:736::/48
2a0e:97c0:73f::/48
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:b107:5d0::/44
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
Signature Algorithm: sha256WithRSAEncryption
c2:f6:3e:95:5a:b2:82:a8:e4:96:97:98:1b:43:3f:01:b9:c5:
50:d9:be:79:80:79:9b:f1:ef:5d:bc:9a:cf:9a:0c:d3:5f:3e:
32:a4:30:be:82:2e:0b:4e:0a:ab:67:e4:d9:32:6e:99:71:a7:
57:ba:d4:29:db:5e:50:41:84:ca:95:85:ba:88:8a:1b:cc:27:
3d:76:6c:4c:c7:01:2a:f0:33:ca:f8:a4:4f:81:65:fd:13:b5:
f2:61:ba:6a:6c:50:8b:9b:16:74:d3:69:5b:aa:d5:b7:4d:fb:
06:79:b9:0e:42:2c:83:4f:a5:0f:31:ef:1c:37:08:90:a9:62:
f0:58:f7:82:a5:b8:66:d1:6a:db:e1:fe:8a:35:bb:96:c4:7a:
2c:c4:6e:c1:4a:b6:96:74:91:bf:d2:74:92:04:c9:52:34:9f:
a1:6c:13:5b:90:d8:e5:ec:f4:ce:2a:b4:65:5b:f9:69:7b:a3:
01:ae:7b:d3:ff:5d:2f:ef:78:d8:09:b3:80:8d:2b:d0:62:4c:
d8:6a:14:67:b0:56:47:7d:2e:c3:e1:40:3d:83:db:87:67:6d:
5d:a9:cd:f7:c6:aa:75:4d:7b:d2:4f:ac:07:bf:c2:63:88:45:
fa:d7:fc:6d:c9:48:56:19:24:8b:b3:42:c0:9a:1a:26:8e:ec:
70:b3:d9:2d
-----BEGIN CERTIFICATE-----
MIIFbzCCBFegAwIBAgISAYeWJt05UApTMu1p4Jh8jdy2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwNDE4MjA1NTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MWU1YzM1YTE2ODEzNGFhNzdkNzEzZjg0Y2FhMTk3YjAzODgzZGYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk3O2YYrA5VMKMjaN9WsrKBh+dhb7
D6/ALVwAEkQsG+AeV03pdh+GhHG/TYVQQDAfoDbz48qzejVom4FfKciZ5d8cfQOi
4IqVSw/pA00eAzbLPTFVw1Y5uNfM5jEUC2/cEOh8pc42kXB+kaJmhRSG/3wOhqu7
PuBjtDFz+5kMpFC0dQdB0RGvpFbXGW86GUj93pnLT/GGSjEeaJsrMIcA8YSGXzFo
KCFBiXEBDZFceHaDZQucg3yTfNtqqcTvW6qKyg1aTCiODLaPbA/VNyt9/algeDaj
KB75tIOz6swjVKGi02kucsD5/9Q0HX4eNFdURJZ9UUo/uyMN0Ey1JT0cZwIDAQAB
o4ICezCCAncwHQYDVR0OBBYEFFHlw1oWgTSqd9cT+EyqGXsDiD3yMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvVWVYRFdoYUJOS3AzMXhQNFRLb1pld09JUGZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGQBggrBgEFBQcBBwEB/wSBgDB+MHwEAgACMHYDBgAqDDuH
/wMHACoOl8AHNgMHACoOl8AHPwMHACoOl8AHUAMHACoOl8AHbzASAwcAKg6XwAeR
AwcAKg6XwAeSAwcEKg6xBwXQAwcAKg6xBwn0AwcAKg6xBwn2AwcAKg6xBw3yAwcA
Kg6xBxhwAwcAKg6xBxueMA0GCSqGSIb3DQEBCwUAA4IBAQDC9j6VWrKCqOSWl5gb
Qz8BucVQ2b55gHmb8e9dvJrPmgzTXz4ypDC+gi4LTgqrZ+TZMm6ZcadXutQp215Q
QYTKlYW6iIobzCc9dmxMxwEq8DPK+KRPgWX9E7XyYbpqbFCLmxZ002lbqtW3TfsG
ebkOQiyDT6UPMe8cNwiQqWLwWPeCpbhm0Wrb4f6KNbuWxHosxG7BSraWdJG/0nSS
BMlSNJ+hbBNbkNjl7PTOKrRlW/lpe6MBrnvT/10v73jYCbOAjSvQYkzYahRnsFZH
fS7D4UA9g9uHZ21dqc33xqp1TXvST6wHv8JjiEX61/xtyUhWGSSLs0LAmhomjuxw
s9kt
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:16 2023 by rpki-client on console-fra.rpki-client.org