Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ui6_tRThA9uCPcnHWmhwH6g9LEQ.roa
File: ui6_tRThA9uCPcnHWmhwH6g9LEQ.roa (raw, json)
Hash identifier: fRpxw97jR4DqXyRtEFGYszFcVohYy3W+71Etuyci1Uk=
Subject key identifier: BA:2E:BF:B5:14:E1:03:DB:82:3D:C9:C7:5A:68:70:1F:A8:3D:2C:44
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018C734D7B73F3CD8392125411928CCAEED8
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ui6_tRThA9uCPcnHWmhwH6g9LEQ.roa
Signing time: Sat 16 Dec 2023 15:45:06 +0000
ROA not before: Sat 16 Dec 2023 15:45:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198055
IP address blocks: 2a0e:b107:28a8::/48 maxlen: 48
2a0e:b107:1d12::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 18 Dec 2023 13:06:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:73:4d:7b:73:f3:cd:83:92:12:54:11:92:8c:ca:ee:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 16 15:45:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba2ebfb514e103db823dc9c75a68701fa83d2c44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1e:e1:80:01:95:23:2d:12:14:67:de:88:dd:
c8:e1:ae:9e:0d:34:6b:85:b3:f3:ac:27:cc:ba:b1:
dc:64:e2:cb:97:f6:44:b8:0b:1c:32:4b:cc:3b:27:
a2:0c:3a:02:0f:7a:09:78:a4:bb:bb:c4:6e:8c:fc:
29:70:5e:e3:76:cb:a7:46:15:9b:b5:29:2b:10:62:
3b:42:92:28:0b:ec:a4:31:eb:9e:35:91:33:2c:40:
6f:1c:fd:7f:00:79:f2:87:54:83:4e:e3:73:7b:11:
00:55:2c:2d:bc:88:19:6c:5f:64:c0:ac:56:af:71:
86:a6:14:4a:0f:c4:e6:8d:2c:0e:40:18:4b:0b:55:
39:5a:d9:eb:27:aa:2f:b6:3c:7b:17:07:7d:48:49:
57:17:db:c1:84:6e:fa:4f:57:7f:b8:74:7b:5a:92:
8c:9f:97:6e:c8:74:12:fa:c1:82:45:b4:cf:2c:89:
4e:f5:9d:54:00:6a:a4:ab:c3:fe:25:0b:83:81:af:
b5:96:be:4f:50:96:f7:29:83:91:9c:0f:4a:16:2b:
ce:77:a2:54:71:9d:26:2d:55:22:fd:d1:53:72:33:
37:4d:65:b1:e2:7e:de:23:30:20:b3:29:ad:53:df:
ec:7f:78:7b:9a:f4:0f:1e:23:32:ef:ad:20:29:76:
49:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:2E:BF:B5:14:E1:03:DB:82:3D:C9:C7:5A:68:70:1F:A8:3D:2C:44
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ui6_tRThA9uCPcnHWmhwH6g9LEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1d12::/48
2a0e:b107:28a8::/48
Signature Algorithm: sha256WithRSAEncryption
5e:86:cd:58:a7:eb:d6:82:c7:44:6e:12:65:4b:46:7d:c7:e6:
a7:a8:87:57:a0:de:d9:d2:fe:a6:3c:4a:4e:ef:5e:a5:68:e1:
a8:80:5d:ec:5b:9b:79:32:24:a9:6e:eb:4c:6d:ab:a9:2a:c6:
4b:3e:ad:eb:56:a5:66:ed:47:9b:a1:51:b9:f6:42:b8:4d:92:
11:aa:b5:18:c3:97:6f:e5:cf:1e:29:bb:27:c1:52:d1:fa:8f:
af:52:a3:33:87:08:e7:f3:a2:a8:0f:0a:e2:2f:68:3b:b1:7a:
69:35:4b:c7:02:46:47:a4:a0:7b:2c:16:d2:4b:43:43:ab:5d:
1b:cc:2d:5b:b7:4b:56:13:84:5c:0c:46:ae:6b:06:50:71:be:
06:48:25:8f:6b:d4:f1:53:7e:9a:72:39:fd:fa:b1:1a:e2:51:
58:9a:31:cc:e0:1c:ba:f9:d0:40:7e:d7:1b:fe:15:9b:df:e1:
d0:da:50:4b:8c:67:1c:d9:75:1b:54:ac:bc:44:15:18:4a:7c:
c2:6f:e0:ac:97:54:01:a4:6a:24:56:ed:bf:0a:5d:e0:97:d5:
8f:44:9b:f7:aa:f2:1d:91:9f:e6:3d:c7:df:90:13:8c:71:e6:
1e:db:40:18:42:0e:54:f6:65:a4:96:18:31:c0:90:cb:e5:58:
b7:85:26:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:33 2024 by rpki-client on console-ams.rpki-client.org