Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UieMIqU8M6nJSe5EeoBIn9yjE0M.roa
File: UieMIqU8M6nJSe5EeoBIn9yjE0M.roa (raw, json)
Hash identifier: QGjutQuG9tOlRixK3O8lOYwNh+X9QOUadIN0p548XVk=
Subject key identifier: 52:27:8C:22:A5:3C:33:A9:C9:49:EE:44:7A:80:48:9F:DC:A3:13:43
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7AE2D1C936F42015914CB028CFFFF
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UieMIqU8M6nJSe5EeoBIn9yjE0M.roa
Signing time: Mon 02 Jan 2023 05:15:09 +0000
ROA not before: Mon 02 Jan 2023 05:15:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203423
IP address blocks: 2a0e:b107:1bc0::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 23 Jan 2023 10:50:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:ae:2d:1c:93:6f:42:01:59:14:cb:02:8c:ff:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52278c22a53c33a9c949ee447a80489fdca31343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:05:1b:06:40:39:f6:b8:a2:3e:9a:9c:1f:c7:
53:3d:d9:2c:14:6b:14:16:a8:11:7b:5d:49:74:2e:
f2:08:c2:77:6b:28:83:a2:92:8e:3c:f7:56:e6:a6:
c3:20:a6:1f:41:df:a7:9b:7e:d3:26:71:c5:da:ac:
2e:a7:1e:b8:09:72:22:9d:d7:f2:8c:7c:59:d0:54:
88:c6:4b:90:b9:7c:03:79:cc:b4:a6:ad:f3:01:cf:
03:87:e7:d0:c7:d6:87:1e:26:6e:3a:eb:10:b2:f5:
d5:13:cc:2f:b7:8c:fd:bb:e8:96:00:9f:a8:a8:c6:
5e:f8:5c:89:bd:66:bd:d5:34:d3:eb:85:4d:3e:28:
54:10:e4:11:fc:aa:d7:a2:a1:da:75:de:c5:0c:8c:
1b:0b:0c:00:9f:98:10:e1:7e:4d:b2:1a:9b:1b:d4:
14:95:2f:f3:4c:36:19:bc:bc:f8:91:e2:14:ff:5e:
75:98:d2:6f:1c:76:7b:4e:2d:91:23:29:7c:e3:d5:
ed:7f:e2:8b:4c:30:df:07:7a:c0:ae:8e:fe:1f:58:
02:27:d3:db:16:c7:c3:12:0a:cb:6a:a4:2a:2f:f8:
81:ce:3e:6c:f5:38:eb:c6:44:e6:74:c6:53:cc:85:
f6:5d:d1:4e:37:e6:36:63:8b:53:35:56:6c:ef:6e:
54:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:27:8C:22:A5:3C:33:A9:C9:49:EE:44:7A:80:48:9F:DC:A3:13:43
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UieMIqU8M6nJSe5EeoBIn9yjE0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1bc0::/44
Signature Algorithm: sha256WithRSAEncryption
5f:d0:15:3a:c2:7b:c6:49:07:91:69:72:ee:13:40:03:2d:b2:
0a:17:10:60:1e:48:38:8f:cf:93:6c:d9:e8:4d:08:dd:8f:65:
b5:2c:f6:17:f3:05:72:19:c9:8e:79:96:1d:05:99:fe:58:70:
cc:90:c5:a7:c6:c0:c5:02:90:c1:17:a7:a7:01:eb:76:cd:7b:
69:a8:13:2d:d2:91:f0:8e:a1:36:dc:dc:e1:3f:60:72:04:41:
4f:fa:a5:70:3e:47:99:c4:a5:7b:48:30:a3:57:98:79:42:af:
7f:0b:fe:da:57:06:64:83:bb:5d:08:92:b5:82:12:31:13:c8:
a0:4a:b3:2a:5e:10:86:49:96:80:5f:df:96:af:07:09:38:54:
26:4f:a3:c4:93:7b:af:14:a9:4e:b9:8a:ac:fc:0e:6d:1e:07:
d5:1b:4e:19:73:e4:76:4f:cd:cb:f4:44:3f:e0:d9:33:c1:77:
e5:88:13:67:d3:1e:31:23:05:8f:af:24:b6:5f:09:28:e1:dc:
3e:97:1c:c7:28:9c:82:0d:8b:e5:cb:7e:0a:0c:d0:a2:58:90:
3b:23:a1:a9:45:32:20:f1:b0:b8:53:6e:78:9d:0a:79:c7:ee:
bf:c6:e9:21:11:96:66:81:b1:b4:63:99:77:27:1d:6b:65:43:
86:35:54:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:04 2024 by rpki-client on console-ams.rpki-client.org