Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/_uqtEHoSIItLvn_TQUpdJqVN2H8.roa
File: _uqtEHoSIItLvn_TQUpdJqVN2H8.roa (raw, json)
Hash identifier: O8Sv1ByaJrv6gpWZsijxopEna1Z3FICw+OkrK5ggTuE=
Subject key identifier: FE:EA:AD:10:7A:12:20:8B:4B:BE:7F:D3:41:4A:5D:26:A5:4D:D8:7F
Certificate issuer: /CN=526f9c0d97d6367e0ca72d1624c5850a610d65ae
Certificate serial: 0185738FE3B2F5C3535C478960D9D4BEE843
Authority key identifier: 52:6F:9C:0D:97:D6:36:7E:0C:A7:2D:16:24:C5:85:0A:61:0D:65:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Um-cDZfWNn4Mpy0WJMWFCmENZa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/_uqtEHoSIItLvn_TQUpdJqVN2H8.roa
Signing time: Mon 02 Jan 2023 17:38:07 +0000
ROA not before: Mon 02 Jan 2023 17:38:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210881
IP address blocks: 2001:67c:82c::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:8f:e3:b2:f5:c3:53:5c:47:89:60:d9:d4:be:e8:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=526f9c0d97d6367e0ca72d1624c5850a610d65ae
Validity
Not Before: Jan 2 17:38:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=feeaad107a12208b4bbe7fd3414a5d26a54dd87f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:db:29:fe:13:f1:3c:bb:51:5a:79:0e:20:c0:
dd:ea:69:3a:3b:aa:74:94:f9:41:ec:80:a4:17:00:
55:c3:6c:87:80:bb:07:4c:9a:d9:d9:eb:0b:48:cb:
c0:da:f3:85:ff:95:2c:18:3f:99:a2:31:4a:17:a6:
b4:d4:ca:dc:41:fa:97:c4:13:c7:17:46:e6:b7:85:
05:98:03:95:66:6d:09:7a:90:f1:00:b9:df:ef:70:
e5:72:75:2d:d8:f8:a5:03:37:21:0f:3c:85:3f:94:
18:22:bd:12:d2:dc:64:ff:3e:39:fc:93:f8:ea:8a:
c6:9a:cf:dc:1a:11:1c:d7:15:a6:5a:5e:12:62:cb:
34:b0:a0:97:ad:83:92:73:45:43:95:e6:95:57:ab:
a5:0e:36:68:c9:9c:b0:7e:12:f6:19:a1:8d:74:70:
59:7b:03:f3:bc:fe:cf:11:d0:67:05:18:04:83:06:
cf:d8:b4:d5:e8:74:8c:9a:6e:87:75:07:97:cc:7e:
bd:70:9f:cf:34:25:a9:75:49:39:78:f9:69:9a:9c:
fe:93:33:47:87:77:d6:22:5d:f0:ea:1a:dd:e7:d5:
a2:c1:ea:6f:7b:a0:3d:04:63:d9:ca:7c:0a:88:31:
dd:7c:5a:c0:42:03:96:34:db:8d:09:2a:bc:80:17:
ac:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:EA:AD:10:7A:12:20:8B:4B:BE:7F:D3:41:4A:5D:26:A5:4D:D8:7F
X509v3 Authority Key Identifier:
keyid:52:6F:9C:0D:97:D6:36:7E:0C:A7:2D:16:24:C5:85:0A:61:0D:65:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Um-cDZfWNn4Mpy0WJMWFCmENZa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/_uqtEHoSIItLvn_TQUpdJqVN2H8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/Um-cDZfWNn4Mpy0WJMWFCmENZa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:82c::/48
Signature Algorithm: sha256WithRSAEncryption
6f:12:f4:c3:30:42:27:96:4c:72:5c:44:86:76:d6:3a:23:9b:
c5:6f:93:35:2b:70:1f:7e:a7:cb:7a:cb:e7:2f:dd:08:9d:ce:
c4:e3:bc:62:a7:1e:02:ff:13:74:89:3a:68:80:a7:e8:b0:ca:
ed:5c:89:36:92:f8:4a:51:6d:8b:fe:47:2f:d9:7d:2e:93:cd:
6e:47:84:7d:ce:8d:6a:87:87:ad:ee:5d:49:b8:19:e2:ae:64:
69:18:bf:16:98:c2:66:53:ea:26:a9:de:ca:d5:d6:40:90:b8:
f7:05:25:f3:96:55:6f:a2:fc:60:31:d1:a8:76:1d:24:2a:f4:
a5:73:a2:5a:dd:60:4f:90:b1:0c:3c:a7:ba:6d:f7:ec:e4:6a:
18:69:f6:99:4f:51:18:e2:69:f6:2b:90:11:76:9b:c7:f7:7e:
2a:a0:e0:e8:ec:70:07:61:42:52:08:bf:0c:4f:76:f4:9b:1f:
df:7b:65:5d:3d:43:7e:f6:c8:54:28:78:ec:85:f5:f0:ec:a1:
1c:33:4f:d0:7b:df:93:63:01:2f:ca:40:5d:8d:62:e3:48:e6:
ba:58:53:9b:60:46:71:17:af:67:e9:de:47:9a:15:75:68:8c:
87:03:08:6c:f9:e2:4b:b2:09:14:a4:2b:b1:43:b2:39:41:98:
77:4f:62:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:25 2024 by rpki-client on console-fra.rpki-client.org