Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/ce4671-3f43-433f-8445-bd80475762d5/1/uJb4RxFiMb99w2Z3pxT8Tb2xiC8.roa
File: uJb4RxFiMb99w2Z3pxT8Tb2xiC8.roa (raw, json)
Hash identifier: 4Rris2hC9CYAwKhRbvYSSSRhLEvGIxDlPhYgAdyB0d8=
Subject key identifier: B8:96:F8:47:11:62:31:BF:7D:C3:66:77:A7:14:FC:4D:BD:B1:88:2F
Certificate issuer: /CN=8fe502397dd6439c068bd053f28187dd77574578
Certificate serial: 0189FE8D0E287C4C205F593C033E5D0F9842
Authority key identifier: 8F:E5:02:39:7D:D6:43:9C:06:8B:D0:53:F2:81:87:DD:77:57:45:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-UCOX3WQ5wGi9BT8oGH3XdXRXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/ce4671-3f43-433f-8445-bd80475762d5/1/uJb4RxFiMb99w2Z3pxT8Tb2xiC8.roa
Signing time: Wed 16 Aug 2023 13:33:24 +0000
ROA not before: Wed 16 Aug 2023 13:33:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13040
IP address blocks: 2001:67c:1b60::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:fe:8d:0e:28:7c:4c:20:5f:59:3c:03:3e:5d:0f:98:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe502397dd6439c068bd053f28187dd77574578
Validity
Not Before: Aug 16 13:33:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b896f847116231bf7dc36677a714fc4dbdb1882f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:4f:c3:96:93:94:1e:4d:1c:54:21:77:31:69:
31:3b:ec:27:1b:82:8a:6d:d2:59:41:34:97:06:f6:
fb:55:ea:82:a2:b1:58:19:07:56:f8:5a:fa:51:6b:
ac:91:9e:61:09:84:75:2d:02:51:da:90:23:2a:05:
70:6a:03:a4:8e:b5:de:d3:04:19:6f:13:0e:f0:fa:
94:c0:75:8e:e9:49:46:88:65:bd:70:66:41:e0:a4:
b4:06:24:cd:88:d0:67:69:fd:a4:8d:79:e4:53:47:
35:5d:40:cc:e8:74:7e:31:87:28:ec:d9:d4:24:85:
ae:27:71:7c:d1:83:4f:7c:bc:d5:dc:9b:9f:46:7c:
9b:b2:79:e9:f2:be:0f:70:75:ca:37:48:51:3a:8b:
8f:70:32:bb:d6:8c:2e:11:61:7f:21:14:1e:e9:99:
38:54:fd:2a:23:85:76:5e:09:22:7a:51:fd:d3:8f:
2c:7b:4a:7e:9c:5d:8c:5b:ae:d1:e1:a1:0e:ed:34:
04:7e:0a:94:2e:9e:96:15:a7:f1:9a:67:26:ff:05:
bd:8a:9b:bf:ce:02:da:11:dd:4d:83:c7:de:63:e1:
6b:03:2b:fc:b5:be:34:81:8e:00:56:8a:41:9a:a6:
0c:81:61:cf:a8:61:2c:43:27:a7:1c:6d:55:01:ef:
c9:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:96:F8:47:11:62:31:BF:7D:C3:66:77:A7:14:FC:4D:BD:B1:88:2F
X509v3 Authority Key Identifier:
keyid:8F:E5:02:39:7D:D6:43:9C:06:8B:D0:53:F2:81:87:DD:77:57:45:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-UCOX3WQ5wGi9BT8oGH3XdXRXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/ce4671-3f43-433f-8445-bd80475762d5/1/uJb4RxFiMb99w2Z3pxT8Tb2xiC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/ce4671-3f43-433f-8445-bd80475762d5/1/j-UCOX3WQ5wGi9BT8oGH3XdXRXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1b60::/48
Signature Algorithm: sha256WithRSAEncryption
56:36:1e:bc:53:48:b2:67:70:71:fd:88:ee:03:35:6a:5d:fc:
48:8d:ea:96:e5:fa:75:37:bb:b5:15:7d:90:19:b9:5b:6e:6a:
b0:ef:4b:df:8f:e5:f5:5b:0d:38:fd:92:f2:78:3a:4e:b0:fc:
74:0e:ef:29:af:24:18:5d:fe:66:a8:b9:64:f2:07:7d:b7:ad:
a1:31:cf:bd:06:c9:39:4e:d9:57:cc:fb:b4:5f:74:1f:4d:0d:
72:26:25:27:72:36:4b:ac:1a:2a:bc:00:81:b1:d7:03:ba:88:
65:97:8b:bc:12:39:da:01:80:55:b6:f0:43:7d:b7:53:55:40:
41:99:43:68:8d:e0:24:67:8d:06:0d:05:bd:79:c6:99:e1:1d:
3f:a7:35:a2:c2:97:48:8f:58:49:39:2a:0d:43:72:b3:6c:d3:
b7:61:46:9b:b3:f3:df:24:14:7d:9c:80:82:08:44:40:cc:b8:
1e:76:57:03:9c:db:ed:ed:79:ea:52:bb:5e:6a:45:30:2f:47:
9f:e9:63:7b:61:15:26:a5:7c:d6:f9:3d:d8:22:54:e5:40:91:
0d:9a:e2:c2:b6:13:e4:50:59:02:d4:0d:63:03:56:1a:6c:77:
cb:59:46:8e:81:0c:f9:a3:5a:af:34:72:cb:96:fe:3e:de:99:
28:43:2c:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:09 2024 by rpki-client on console-fra.rpki-client.org