Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/853ee3-3a4f-4d95-9bdb-b03c2fbdc644/1/ughLRjDPx_5HHO7nLqj9oNDdgIQ.roa
File: ughLRjDPx_5HHO7nLqj9oNDdgIQ.roa (raw, json)
Hash identifier: BN7MUzSjcWxf+6483Gnn1iekI60JXIl5g1vMhiyvzOw=
Subject key identifier: BA:08:4B:46:30:CF:C7:FE:47:1C:EE:E7:2E:A8:FD:A0:D0:DD:80:84
Certificate issuer: /CN=ee0739d0528dcb4fce578d11f7ec34b0e37452cf
Certificate serial: 01856ED4A8182960E12B010B33D00515C395
Authority key identifier: EE:07:39:D0:52:8D:CB:4F:CE:57:8D:11:F7:EC:34:B0:E3:74:52:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7gc50FKNy0_OV40R9-w0sON0Us8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/853ee3-3a4f-4d95-9bdb-b03c2fbdc644/1/ughLRjDPx_5HHO7nLqj9oNDdgIQ.roa
Signing time: Sun 01 Jan 2023 19:35:08 +0000
ROA not before: Sun 01 Jan 2023 19:35:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212024
IP address blocks: 2001:67c:17fc::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:a8:18:29:60:e1:2b:01:0b:33:d0:05:15:c3:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee0739d0528dcb4fce578d11f7ec34b0e37452cf
Validity
Not Before: Jan 1 19:35:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba084b4630cfc7fe471ceee72ea8fda0d0dd8084
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:13:ea:1f:2f:ec:4d:a4:f9:d2:67:e8:8d:ab:
c2:6b:93:05:6a:54:64:27:9b:01:13:a3:d4:db:02:
21:8c:38:0d:fc:e7:c3:d4:20:5a:bb:1b:8e:c1:20:
e7:24:fd:3a:70:87:00:72:b6:5d:e6:bf:c0:91:ce:
c6:1e:12:98:69:b8:c4:62:d9:0c:e4:42:01:d6:0a:
58:bd:36:d4:00:90:74:ef:74:f5:4f:05:cb:03:7e:
22:50:79:42:64:82:69:f1:40:52:f5:9c:2c:eb:87:
c1:fc:53:0b:98:fb:89:59:98:a3:af:a6:b1:3e:d5:
94:42:69:1a:f6:63:78:cd:3b:0f:64:79:c5:35:c4:
36:ae:58:bb:fa:6c:be:de:5b:e8:91:13:9a:82:bc:
63:93:7a:84:80:87:e1:e1:98:aa:3a:86:b5:32:6e:
db:f0:55:79:63:7b:23:c9:ea:65:34:e5:0b:de:b8:
d8:75:45:eb:a2:a7:3e:f6:d9:be:04:12:41:4d:20:
a1:08:9d:fd:dc:dd:1c:fd:8c:32:e5:3f:ce:84:3e:
8a:51:ce:cb:d4:f2:f0:19:b4:f1:b4:14:42:f3:72:
03:d0:01:ad:35:92:b4:55:3f:08:42:3e:e0:80:06:
30:94:14:c6:df:47:e2:6d:78:71:1d:86:3f:2d:2d:
3c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:08:4B:46:30:CF:C7:FE:47:1C:EE:E7:2E:A8:FD:A0:D0:DD:80:84
X509v3 Authority Key Identifier:
keyid:EE:07:39:D0:52:8D:CB:4F:CE:57:8D:11:F7:EC:34:B0:E3:74:52:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7gc50FKNy0_OV40R9-w0sON0Us8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/853ee3-3a4f-4d95-9bdb-b03c2fbdc644/1/ughLRjDPx_5HHO7nLqj9oNDdgIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/853ee3-3a4f-4d95-9bdb-b03c2fbdc644/1/7gc50FKNy0_OV40R9-w0sON0Us8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:17fc::/48
Signature Algorithm: sha256WithRSAEncryption
ab:05:36:e5:46:d9:bc:19:b0:7e:90:0c:35:5b:ba:a7:96:6f:
0d:86:d0:8a:c1:99:55:ed:92:dc:2b:30:71:a0:04:27:91:ef:
96:cb:2e:02:a9:9e:26:97:9a:01:6a:32:07:bc:d4:50:fc:f2:
7b:b3:02:10:d6:88:c1:32:f0:0a:3a:2a:14:a9:12:fe:da:63:
06:65:0f:d8:a9:2f:05:d0:06:64:d8:f8:43:a9:2c:64:20:d7:
d7:22:40:99:ed:99:0a:ec:d1:6f:ca:1c:13:84:6a:f7:93:0a:
c6:26:30:e2:a2:b8:d4:13:7d:80:3b:3a:ef:25:0a:a9:7d:94:
2a:b0:fc:70:6a:ae:13:cf:93:fd:68:25:be:81:d4:cd:ae:60:
17:ea:00:9a:2b:58:e5:88:d9:e3:2d:35:ea:5b:75:c3:86:34:
05:c0:83:05:96:82:39:cc:e5:34:73:82:50:8d:62:a0:7d:fe:
58:52:07:55:7e:3c:87:f1:c9:da:db:eb:5b:09:11:a4:af:49:
8d:5d:4b:b4:ba:02:aa:e2:30:06:59:14:6b:86:87:8b:ae:88:
55:1b:4c:bb:d2:57:14:ea:67:93:d4:9c:91:bc:2a:9f:4f:f7:
39:7f:f0:1c:c1:ee:77:e3:b0:e8:49:05:bb:00:0a:53:d9:25:
a7:82:fc:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:14 2024 by rpki-client on console-ams.rpki-client.org