Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/7113df-e0e8-440e-a118-8beadaaad0b1/1/uPcOsMbZTBOox4_Wke4Qq0nSkQg.roa
File: uPcOsMbZTBOox4_Wke4Qq0nSkQg.roa (raw, json)
Hash identifier: Z4NjgZlKBgepAfVie0bxt38JcSwD+zXqy+elSSqC9io=
Subject key identifier: B8:F7:0E:B0:C6:D9:4C:13:A8:C7:8F:D6:91:EE:10:AB:49:D2:91:08
Certificate issuer: /CN=251e7871fd38f2df918242dda1c6fc35688423ca
Certificate serial: 018B1437CCD49EF1D3B00A436CC92CF41278
Authority key identifier: 25:1E:78:71:FD:38:F2:DF:91:82:42:DD:A1:C6:FC:35:68:84:23:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JR54cf048t-RgkLdocb8NWiEI8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/7113df-e0e8-440e-a118-8beadaaad0b1/1/uPcOsMbZTBOox4_Wke4Qq0nSkQg.roa
Signing time: Mon 09 Oct 2023 11:34:42 +0000
ROA not before: Mon 09 Oct 2023 11:34:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25151
IP address blocks: 2001:678:c50::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:14:37:cc:d4:9e:f1:d3:b0:0a:43:6c:c9:2c:f4:12:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=251e7871fd38f2df918242dda1c6fc35688423ca
Validity
Not Before: Oct 9 11:34:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8f70eb0c6d94c13a8c78fd691ee10ab49d29108
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:97:ce:ab:f3:5d:4b:70:5c:da:52:8e:a8:2c:
17:c2:f4:a5:e0:78:62:ef:3e:45:fc:b7:91:f3:c4:
9e:79:cd:c9:f4:fd:96:29:77:49:19:10:4a:6a:ef:
b5:bc:07:7f:45:d5:53:d4:5a:c2:83:04:5e:76:8a:
1b:ae:ae:7d:88:48:74:4e:9d:66:70:ea:b6:1f:37:
74:41:19:82:d4:1e:5f:34:88:30:4e:24:28:70:12:
3b:d2:18:ce:71:40:a2:01:24:ba:94:da:bd:84:e9:
36:1b:8e:bb:e2:db:aa:8d:a5:d0:07:5f:9d:80:22:
f9:e4:4e:9f:8c:55:67:f7:26:fd:8d:00:25:35:8e:
51:d2:a7:77:90:d0:5b:74:59:83:00:f4:8e:9d:9e:
9a:00:ba:65:db:a6:d7:74:9c:1e:06:96:3d:ad:8b:
9c:af:db:c5:f9:c3:4e:4b:2a:60:9d:80:42:82:ef:
63:f4:ea:a2:1f:9b:3a:fb:b7:34:31:26:5f:71:b8:
14:37:38:ab:0e:3a:5c:d7:1c:28:62:e9:ae:03:56:
16:2e:e4:b6:75:8b:1b:02:ba:37:7d:02:a1:a9:9c:
4c:40:28:4c:17:f9:5f:96:1c:de:3d:ae:ed:24:8b:
52:2d:86:08:98:03:a5:37:83:bb:fb:17:ac:17:f0:
d1:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:F7:0E:B0:C6:D9:4C:13:A8:C7:8F:D6:91:EE:10:AB:49:D2:91:08
X509v3 Authority Key Identifier:
keyid:25:1E:78:71:FD:38:F2:DF:91:82:42:DD:A1:C6:FC:35:68:84:23:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JR54cf048t-RgkLdocb8NWiEI8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/7113df-e0e8-440e-a118-8beadaaad0b1/1/uPcOsMbZTBOox4_Wke4Qq0nSkQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/7113df-e0e8-440e-a118-8beadaaad0b1/1/JR54cf048t-RgkLdocb8NWiEI8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:c50::/48
Signature Algorithm: sha256WithRSAEncryption
52:d6:9d:5c:01:b2:aa:cd:0f:2e:2a:a1:d0:11:88:9a:53:08:
ef:db:86:80:12:6d:38:dc:0e:5d:2b:e9:e9:6d:30:5e:d4:07:
9a:d9:0c:52:5d:5b:50:83:69:36:03:a3:e1:e2:48:83:ec:f5:
a0:7e:a4:13:3d:9e:53:78:8f:20:bf:f8:7b:46:85:0c:2b:be:
70:fd:05:28:a0:b9:3b:70:49:2c:27:75:f6:46:cc:75:e7:3d:
2a:3b:8e:6b:ff:4d:e3:54:36:9c:8c:92:70:92:6e:f8:e0:34:
d0:d9:2f:5d:b5:12:51:21:d7:68:13:25:25:13:f7:26:79:ec:
a7:c8:16:65:aa:ce:f0:b1:5d:7d:11:43:bb:9c:32:6f:34:2f:
67:fe:e3:21:37:9a:b2:0b:70:d4:5b:4d:c7:db:75:bf:ab:9b:
3e:f2:9c:52:e4:ae:42:0e:31:57:41:54:e6:ae:26:c3:14:6b:
1e:aa:bb:7b:cc:fa:03:20:7c:79:55:96:ab:af:af:7d:63:59:
dd:c7:75:0e:51:31:ee:91:ef:9f:bf:27:d0:b0:d4:99:97:7d:
58:ad:dc:0e:57:49:99:96:5e:1e:73:20:7f:09:fe:36:bf:7f:
26:2f:30:6c:48:2b:3a:bb:33:7c:4f:33:e1:73:a3:64:f2:8f:
35:85:bd:09
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYsUN8zUnvHTsApDbMks9BJ4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1MWU3ODcxZmQzOGYyZGY5MTgyNDJkZGExYzZmYzM1Njg4
NDIzY2EwHhcNMjMxMDA5MTEzNDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOGY3MGViMGM2ZDk0YzEzYThjNzhmZDY5MWVlMTBhYjQ5ZDI5MTA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkZfOq/NdS3Bc2lKOqCwXwvSl4Hhi
7z5F/LeR88Seec3J9P2WKXdJGRBKau+1vAd/RdVT1FrCgwRedoobrq59iEh0Tp1m
cOq2Hzd0QRmC1B5fNIgwTiQocBI70hjOcUCiASS6lNq9hOk2G4674tuqjaXQB1+d
gCL55E6fjFVn9yb9jQAlNY5R0qd3kNBbdFmDAPSOnZ6aALpl26bXdJweBpY9rYuc
r9vF+cNOSypgnYBCgu9j9OqiH5s6+7c0MSZfcbgUNzirDjpc1xwoYumuA1YWLuS2
dYsbAro3fQKhqZxMQChMF/lflhzePa7tJItSLYYImAOlN4O7+xesF/DRRQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLj3DrDG2UwTqMeP1pHuEKtJ0pEIMB8GA1UdIwQY
MBaAFCUeeHH9OPLfkYJC3aHG/DVohCPKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSlI1NGNmMDQ4dC1SZ2tMZG9jYjhOV2lFSThvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC83MTEzZGYtZTBlOC00NDBlLWExMTgt
OGJlYWRhYWFkMGIxLzEvdVBjT3NNYlpUQk9veDRfV2tlNFFxMG5Ta1FnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZC83MTEzZGYtZTBlOC00NDBlLWExMTgtOGJlYWRhYWFkMGIx
LzEvSlI1NGNmMDQ4dC1SZ2tMZG9jYjhOV2lFSThvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAxQ
MA0GCSqGSIb3DQEBCwUAA4IBAQBS1p1cAbKqzQ8uKqHQEYiaUwjv24aAEm043A5d
K+npbTBe1Aea2QxSXVtQg2k2A6Ph4kiD7PWgfqQTPZ5TeI8gv/h7RoUMK75w/QUo
oLk7cEksJ3X2Rsx15z0qO45r/03jVDacjJJwkm744DTQ2S9dtRJRIddoEyUlE/cm
eeynyBZlqs7wsV19EUO7nDJvNC9n/uMhN5qyC3DUW03H23W/q5s+8pxS5K5CDjFX
QVTmribDFGseqrt7zPoDIHx5VZarr699Y1ndx3UOUTHuke+fvyfQsNSZl31YrdwO
V0mZll4ecyB/Cf42v38mLzBsSCs6uzN8TzPhc6Nk8o81hb0J
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:56 2024 by rpki-client on console-fra.rpki-client.org