Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/UmT5l4NNc7uRftv6T9gj5iTh6Ck.roa
File: UmT5l4NNc7uRftv6T9gj5iTh6Ck.roa (raw, json)
Hash identifier: pZP83PXn/5scOHvkRo+WkIexMuJgehiHYf+je674lbc=
Subject key identifier: 52:64:F9:97:83:4D:73:BB:91:7E:DB:FA:4F:D8:23:E6:24:E1:E8:29
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 018571C314A0C6C4097974F2E9B5E660E038
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/UmT5l4NNc7uRftv6T9gj5iTh6Ck.roa
Signing time: Mon 02 Jan 2023 09:14:48 +0000
ROA not before: Mon 02 Jan 2023 09:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2a06:e881:73ef::/48 maxlen: 48
2a06:e881:73ff::/48 maxlen: 48
2a06:e881:650f::/48 maxlen: 48
2a06:e881:9208::/45 maxlen: 48
2a06:e881:9200::/45 maxlen: 48
2a06:e881:9700::/44 maxlen: 44
2a06:e881:9300::/44 maxlen: 48
2a06:e881:9700::/48 maxlen: 48
2a06:e881:9600::/48 maxlen: 48
2a06:e881:9701::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 15 Aug 2023 01:48:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:c3:14:a0:c6:c4:09:79:74:f2:e9:b5:e6:60:e0:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 2 09:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5264f997834d73bb917edbfa4fd823e624e1e829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:cf:3f:33:f9:3b:7e:e0:5d:04:77:60:16:12:
53:34:cf:63:e3:9a:ba:0c:7f:ed:fe:30:fb:f2:6c:
2a:f0:d4:65:16:cd:13:49:92:d8:0a:0a:3b:1b:dd:
37:ee:ab:01:e1:67:80:a3:5c:a9:06:a1:bf:3a:ea:
79:f3:aa:e2:ed:80:7c:d1:28:57:c3:65:b6:e0:eb:
10:59:20:4d:1b:c8:91:0d:ae:12:50:65:a9:dd:7b:
2f:fc:88:cc:57:80:e7:07:58:2f:c7:e0:31:e3:f7:
d5:1a:5f:30:17:70:31:b8:fb:93:61:86:8a:82:d8:
d5:3b:a1:31:9d:9b:41:10:d1:f2:84:07:72:8e:fb:
8e:c1:dd:9f:bb:d7:16:f2:d3:63:69:e3:00:1f:a0:
fd:c9:61:64:00:71:0e:d3:6a:e2:e0:9c:4e:18:f1:
92:fa:7d:bc:5a:10:a1:2e:fe:db:b5:dd:71:90:15:
93:ac:25:9f:72:d4:7f:71:d4:0c:c8:d6:0e:b8:e6:
54:f7:79:26:35:f0:f6:4e:de:68:b9:7a:e6:38:4c:
77:bd:07:4a:6b:81:a9:a3:cd:17:a7:cf:7f:45:da:
72:41:55:8f:28:a2:4d:15:be:65:f5:be:83:21:47:
67:33:8a:0a:9c:1e:af:7e:18:85:98:f0:b8:c7:35:
4b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:64:F9:97:83:4D:73:BB:91:7E:DB:FA:4F:D8:23:E6:24:E1:E8:29
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/UmT5l4NNc7uRftv6T9gj5iTh6Ck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:650f::/48
2a06:e881:73ef::/48
2a06:e881:73ff::/48
2a06:e881:9200::/44
2a06:e881:9300::/44
2a06:e881:9600::/48
2a06:e881:9700::/44
Signature Algorithm: sha256WithRSAEncryption
a9:b3:e3:53:41:72:96:65:e6:48:56:79:41:2f:c3:ce:f6:f5:
23:a2:a8:cd:c0:b7:8b:91:4c:64:55:ca:1e:6f:3f:16:1f:0a:
ad:47:d2:5a:df:61:92:09:ab:90:2e:ef:b1:44:4d:01:35:cd:
c5:20:87:db:2a:02:31:8e:b8:bd:df:63:72:02:c5:30:38:e2:
b7:9a:d6:80:cc:c9:76:18:b5:cf:8c:9d:df:ed:fd:9b:c4:c1:
36:80:e3:b1:10:3b:87:1f:7c:00:76:ba:f3:8b:10:92:97:52:
29:05:5e:fc:35:c2:68:89:85:10:68:2b:e5:34:9d:21:9b:fb:
b2:76:63:39:3a:d2:03:8f:0b:83:de:d7:34:e1:a8:da:a7:65:
cf:76:71:b9:59:5f:fe:10:ac:41:c3:97:9b:a5:f7:ba:74:f3:
a7:16:cc:0d:35:5f:16:51:b8:0e:df:d4:64:00:3a:cd:1e:5e:
7d:41:ac:df:4c:1e:da:56:1a:3d:0e:ce:17:c3:68:7b:7e:d6:
26:3e:cc:df:4a:ca:ac:45:86:f4:27:16:06:b1:9a:7f:52:32:
97:ff:6c:c9:3d:46:9d:9b:f4:74:b8:48:d8:1d:20:32:e6:9c:
d5:63:8d:ca:25:e6:ec:83:c9:cb:40:ca:40:d7:c4:f5:c3:ef:
2c:d5:87:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:38 2024 by rpki-client on console-fra.rpki-client.org