Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/UqITyY4IeWRAF1KMhmzHbV3R9g0.roa
File: UqITyY4IeWRAF1KMhmzHbV3R9g0.roa (raw, json)
Hash identifier: uoNs4XMkz3R7wBDy39ZP8/5N4AHrE5ZN3lVKz13QYFU=
Subject key identifier: 52:A2:13:C9:8E:08:79:64:40:17:52:8C:86:6C:C7:6D:5D:D1:F6:0D
Certificate issuer: /CN=62becc4ba8a4d52498a0d2983a68b61383aa7fd7
Certificate serial: 018CC349616D3345CD503B824377DF4389D9
Authority key identifier: 62:BE:CC:4B:A8:A4:D5:24:98:A0:D2:98:3A:68:B6:13:83:AA:7F:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/UqITyY4IeWRAF1KMhmzHbV3R9g0.roa
Signing time: Mon 01 Jan 2024 04:30:15 +0000
ROA not before: Mon 01 Jan 2024 04:30:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400842
IP address blocks: 2a12:a6c0::/29 maxlen: 32
2a12:7240::/29 maxlen: 32
2a12:a1c0::/29 maxlen: 32
2a12:a240::/29 maxlen: 32
2a12:a740::/29 maxlen: 32
2a12:73c0::/29 maxlen: 32
2a12:a2c0::/29 maxlen: 32
2a11:f900::/29 maxlen: 32
2a12:74c0::/29 maxlen: 32
2a11:f900::/30 maxlen: 30
2a12:9ec0::/29 maxlen: 32
2a12:9f40::/29 maxlen: 32
2a12:7540::/29 maxlen: 32
2a12:a540::/29 maxlen: 32
2a12:9fc0::/29 maxlen: 32
2a11:fb00::/29 maxlen: 32
2a12:a040::/29 maxlen: 32
2a12:a640::/29 maxlen: 32
2a12:a140::/29 maxlen: 32
Validation: Failed, certificate revoked on Sat 13 Apr 2024 16:29:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:61:6d:33:45:cd:50:3b:82:43:77:df:43:89:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62becc4ba8a4d52498a0d2983a68b61383aa7fd7
Validity
Not Before: Jan 1 04:30:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52a213c98e0879644017528c866cc76d5dd1f60d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:2a:d3:e1:e8:3e:8f:64:50:0c:4c:bc:84:c5:
50:3f:91:89:b1:4e:f2:20:7f:60:b7:8d:90:24:44:
ff:76:bb:5e:17:37:66:88:34:16:da:42:7d:9a:a0:
07:41:aa:97:63:9d:ba:2a:ed:06:e2:30:56:51:f0:
07:8d:70:70:2a:99:42:8e:4a:71:0d:bb:8f:c7:3e:
61:a3:f9:e6:ac:d7:4c:c0:5b:9a:9c:42:6a:84:5a:
e3:71:e5:83:5a:9f:c8:9c:88:d8:1f:7f:11:6b:cc:
47:d5:76:fc:9e:e1:b4:84:68:5b:e7:b6:37:e8:a3:
23:8b:15:cd:fb:7e:0a:ac:19:88:41:74:41:b2:ea:
70:6c:4c:2d:9d:90:85:a7:9c:c7:0a:43:4a:bf:e4:
41:67:4d:50:af:28:0f:84:44:6b:a4:0f:82:bd:05:
dc:d5:df:da:98:0d:a8:3c:2a:bb:85:b1:3f:ec:37:
6f:d7:82:de:61:e6:f4:a9:e8:49:1b:26:52:1f:85:
c3:f6:35:3c:6e:89:02:06:19:9a:5b:0f:6c:37:78:
31:0a:3f:0b:5e:68:4c:f1:ad:d7:14:a0:19:df:c0:
1f:61:8f:86:62:80:d7:13:29:6e:4d:89:71:3e:af:
eb:a1:90:f1:d7:c6:95:d1:cc:4c:3c:e0:98:c5:f6:
29:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A2:13:C9:8E:08:79:64:40:17:52:8C:86:6C:C7:6D:5D:D1:F6:0D
X509v3 Authority Key Identifier:
keyid:62:BE:CC:4B:A8:A4:D5:24:98:A0:D2:98:3A:68:B6:13:83:AA:7F:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/UqITyY4IeWRAF1KMhmzHbV3R9g0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f900::/29
2a11:fb00::/29
2a12:7240::/29
2a12:73c0::/29
2a12:74c0::/29
2a12:7540::/29
2a12:9ec0::/29
2a12:9f40::/29
2a12:9fc0::/29
2a12:a040::/29
2a12:a140::/29
2a12:a1c0::/29
2a12:a240::/29
2a12:a2c0::/29
2a12:a540::/29
2a12:a640::/29
2a12:a6c0::/29
2a12:a740::/29
Signature Algorithm: sha256WithRSAEncryption
4f:f6:76:0e:d4:86:31:5e:3b:86:48:db:71:c2:fe:bd:f2:00:
5f:33:06:54:a2:5a:07:48:74:49:a6:85:10:27:00:bd:a2:c8:
35:4f:b9:f8:d6:37:28:80:0f:37:3f:31:05:3f:f1:28:2a:2c:
25:06:79:df:2d:f4:ed:bd:94:5d:c4:07:f5:e6:35:6b:00:c4:
f9:d4:01:56:e2:34:e8:67:2c:52:25:00:55:f3:2a:48:bb:03:
b7:9a:d9:2b:e6:a3:2a:7e:d1:06:9c:2a:b8:a6:9f:07:40:6c:
93:04:3c:6a:b1:46:aa:d6:78:b5:03:67:e1:21:b0:39:cc:fb:
cf:2e:3f:d1:19:11:3d:71:c0:92:15:12:33:18:e7:2d:5b:bd:
c5:70:04:1e:be:16:ac:02:77:1a:42:94:a7:5b:cc:0c:f4:44:
3a:c2:a9:69:c0:1e:c6:a0:c1:db:d2:b0:22:60:cb:7b:49:6c:
16:c7:c0:af:e4:8d:3a:f9:70:eb:6a:40:8d:52:88:73:42:4d:
32:75:69:20:07:bf:3e:7e:0a:b3:e9:4e:59:c1:c8:d1:b2:20:
95:f7:78:7e:75:1c:50:fe:70:0a:f1:7a:97:9e:d3:6e:27:a1:
0e:5b:a5:c1:82:9a:c1:4f:fe:53:3e:ca:d9:1f:81:ed:15:3f:
8c:6e:5b:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 13 18:03:16 2024 by rpki-client on console-ams.rpki-client.org