Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UjeYYIidZwSsL_KFsHh_yHwkaxg.roa
File: UjeYYIidZwSsL_KFsHh_yHwkaxg.roa (raw, json)
Hash identifier: UcLh0IiXJJKYHATGt49I92IM+xUWInUJu4Msc07ZVOY=
Subject key identifier: 52:37:98:60:88:9D:67:04:AC:2F:F2:85:B0:78:7F:C8:7C:24:6B:18
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018783087487B5531B6CE0BE8ECEBB6FE9E6
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UjeYYIidZwSsL_KFsHh_yHwkaxg.roa
Signing time: Sat 15 Apr 2023 03:49:42 +0000
ROA not before: Sat 15 Apr 2023 03:49:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199518
IP address blocks: 2a0e:b107:b14::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:83:08:74:87:b5:53:1b:6c:e0:be:8e:ce:bb:6f:e9:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 15 03:49:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52379860889d6704ac2ff285b0787fc87c246b18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e9:cd:21:db:d3:41:a5:4e:b9:dc:f2:e4:fc:
64:3f:cd:35:4c:04:f6:de:c1:c2:7f:b3:bc:54:b8:
e9:cd:85:8e:50:e0:d0:df:1d:3c:c5:ca:99:44:45:
99:cc:3c:53:89:0d:66:c2:62:93:3f:c6:b2:19:f7:
27:f5:2c:20:da:a5:1d:ef:25:fe:1c:51:27:ad:e4:
c9:44:f4:78:7e:5e:5b:3e:e3:2a:74:e4:53:bd:79:
eb:65:5a:fa:ff:45:d4:12:70:a3:c7:84:00:0b:82:
c3:09:a8:3f:37:c4:9b:a4:02:2c:84:56:8b:4c:76:
92:45:e9:ff:97:23:e1:4f:84:20:c8:6b:bd:59:6e:
54:c4:5b:ea:bb:46:c7:a3:fe:9d:0d:b1:fa:dc:38:
ad:31:04:7c:67:e1:74:1a:dc:8e:c1:1f:a6:74:d2:
ed:74:40:1f:3b:dd:ce:af:1f:f6:9e:1d:40:b4:43:
a6:44:fd:53:63:8d:1f:f1:a2:a6:de:e3:af:5c:40:
f6:21:d9:6e:9e:05:76:d2:a8:73:a0:e2:a0:7a:b2:
ef:39:b0:5e:a2:ba:82:75:54:0e:b2:3c:fd:c7:a9:
7c:51:73:ec:ed:04:3e:4d:79:6d:7b:f1:6a:ee:93:
f6:cd:0f:ea:b4:f8:80:27:0f:a9:c1:ae:04:26:0d:
12:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:37:98:60:88:9D:67:04:AC:2F:F2:85:B0:78:7F:C8:7C:24:6B:18
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UjeYYIidZwSsL_KFsHh_yHwkaxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:b14::/48
Signature Algorithm: sha256WithRSAEncryption
76:b2:75:41:ed:b3:4d:dc:40:d4:a9:8b:f9:85:64:74:60:1e:
e5:62:65:36:26:80:3b:06:e4:60:5a:0e:cf:32:5f:04:71:c1:
b7:fd:da:33:15:3f:a9:b3:bd:8c:c4:d5:fc:49:36:0d:a5:f2:
d7:3e:ca:56:c0:7b:8f:9b:12:7c:9f:09:b9:be:b3:b7:c1:1e:
3e:5a:cd:90:5f:a0:e6:a4:35:56:fa:c2:51:11:81:3f:16:a4:
dc:21:5a:2b:df:7b:49:0a:e0:77:87:a8:7c:d8:85:09:48:f3:
aa:7a:34:fd:d5:a6:80:42:73:33:2b:e3:5e:96:88:8d:e4:52:
fb:3b:dc:75:cb:d8:98:52:3f:6b:c4:cd:9e:1e:c4:44:c3:24:
db:3e:f4:67:44:41:0a:91:d5:0d:1a:f8:66:5e:e1:b4:78:7f:
66:48:03:58:85:a4:8c:e6:19:5d:0f:46:67:b3:4d:d9:7b:a8:
ca:0d:bb:ac:04:92:18:14:52:6c:b9:1d:06:da:a1:fd:d2:d1:
21:06:9c:55:a8:01:5d:28:f5:ee:2f:e1:cc:d8:6a:38:d0:9f:
80:4d:95:31:60:1b:66:20:c9:1b:60:82:a3:71:6b:7b:7e:ce:
d1:25:f8:3a:a7:2e:65:a9:e0:b5:c0:85:dc:d2:ae:eb:e3:18:
27:47:ca:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:16 2023 by rpki-client on console-fra.rpki-client.org