Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UmTYi3PPFYslw_arhMFwEgWVGEw.roa
File: UmTYi3PPFYslw_arhMFwEgWVGEw.roa (raw, json)
Hash identifier: 4R9vWcSn00mNQ6CZiRECEKcw032W+8Tpq4bt57nuzc4=
Subject key identifier: 52:64:D8:8B:73:CF:15:8B:25:C3:F6:AB:84:C1:70:12:05:95:18:4C
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0187EDFF52B97A58CD72494EA532FFE8DEB8
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UmTYi3PPFYslw_arhMFwEgWVGEw.roa
Signing time: Fri 05 May 2023 22:19:05 +0000
ROA not before: Fri 05 May 2023 22:19:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50104
IP address blocks: 2a10:cc46:101::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ed:ff:52:b9:7a:58:cd:72:49:4e:a5:32:ff:e8:de:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 5 22:19:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5264d88b73cf158b25c3f6ab84c170120595184c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:56:f1:b2:4e:c8:bf:70:7a:a3:df:a4:c8:3b:
9a:1f:d0:4b:da:f0:78:bb:90:71:01:f5:a9:87:2b:
38:7e:1b:29:bd:67:5f:40:b8:27:ac:7b:b0:dd:0e:
67:61:0b:62:d9:06:c6:d8:d9:b0:ba:b8:1e:83:7e:
ed:cc:ee:c9:3e:9a:af:5b:de:50:5c:c4:40:83:41:
cf:2a:ad:95:e5:24:be:13:9a:42:5d:c8:f4:d5:8d:
19:ac:09:80:20:bc:7e:12:a6:a5:cd:ce:c1:5d:18:
7a:b1:fd:b1:52:a1:17:3c:00:61:49:2e:5a:60:bc:
be:0f:c7:4c:2d:8a:15:dd:32:a8:e9:f8:e1:86:51:
09:c1:1c:1b:69:5e:79:ef:0e:a5:5f:60:c5:bc:b6:
09:2b:c3:d7:3b:12:f8:a1:61:c5:7c:ab:f0:40:92:
32:3c:4e:ec:aa:94:50:eb:06:45:7f:d3:41:6b:50:
fd:7d:02:a6:3a:a5:77:f2:88:b1:3b:ad:57:25:e6:
5e:d0:50:f9:f2:db:bc:71:e3:e6:fe:1b:94:2f:5f:
ed:cb:08:f5:3d:bb:bb:5e:8e:5a:e8:93:d6:4a:10:
f8:a9:59:4e:00:79:58:02:2b:7c:7b:6b:e7:0c:2b:
c4:17:c2:68:88:a6:8d:11:6a:35:b6:3e:d6:1b:e6:
4b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:64:D8:8B:73:CF:15:8B:25:C3:F6:AB:84:C1:70:12:05:95:18:4C
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UmTYi3PPFYslw_arhMFwEgWVGEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc46:101::/48
Signature Algorithm: sha256WithRSAEncryption
67:4d:b5:ec:0f:53:14:33:5f:f2:14:ce:97:85:2a:2f:48:ba:
48:f0:b5:8c:37:04:5f:15:ff:f8:22:c0:96:6d:e1:5c:03:64:
9c:fd:49:b8:e1:7c:ba:f9:b9:b4:c3:87:b1:1c:7c:8d:44:9a:
4b:63:bf:05:ea:de:8d:5e:ac:26:01:78:b1:7e:6a:54:54:d7:
7b:c4:5b:d7:5f:4d:94:17:7f:d9:23:06:58:7f:fc:99:da:a8:
cf:87:7d:f6:68:54:2c:d9:2f:f9:6b:19:45:90:ae:5c:52:09:
1f:2f:46:b0:f6:f5:f5:7c:31:93:cc:f8:47:16:4d:61:e5:83:
34:76:3c:9c:b9:f4:99:a6:0b:32:1a:26:69:93:95:bd:15:c2:
8c:a3:13:bd:ad:cf:9a:5e:6d:82:a8:90:06:2a:f0:82:4f:fd:
1c:a0:9e:ae:73:e3:d8:80:2e:af:ea:3b:de:d7:cf:19:c1:20:
42:69:0e:37:56:54:14:f2:a8:d8:e5:60:a1:0f:91:83:07:cd:
f7:e4:60:f7:35:f7:14:0c:7d:15:7b:60:88:42:21:ce:04:42:
5c:6e:3c:de:55:08:79:72:f4:15:73:3e:a0:7b:2a:2e:a8:25:
1a:ca:39:a4:5c:d2:69:b8:46:44:b4:aa:6f:eb:a1:da:e7:50:
5b:81:0a:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 14 23:13:31 2023 by rpki-client on console-ams.rpki-client.org