Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/UUkLXHkMsTlzgUoVBgXvCMRD5uo.roa
File: UUkLXHkMsTlzgUoVBgXvCMRD5uo.roa (raw, json)
Hash identifier: bGEadvjcp8ZDwhy9ypxOIGWFcwCu73Fn70loVXvDAMc=
Subject key identifier: 51:49:0B:5C:79:0C:B1:39:73:81:4A:15:06:05:EF:08:C4:43:E6:EA
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 0185720C41493414F1151485806C6DFD42D2
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/UUkLXHkMsTlzgUoVBgXvCMRD5uo.roa
Signing time: Mon 02 Jan 2023 10:34:43 +0000
ROA not before: Mon 02 Jan 2023 10:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 17818
IP address blocks: 2a0e:9300::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:41:49:34:14:f1:15:14:85:80:6c:6d:fd:42:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 2 10:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51490b5c790cb13973814a150605ef08c443e6ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:cf:e6:52:59:81:7c:19:9b:53:db:45:62:b4:
8c:64:ce:6b:ce:87:c1:86:7a:40:ca:ef:d5:c0:42:
c2:5d:61:5d:5a:c0:5f:64:00:25:3a:67:1d:98:15:
39:38:ab:1a:29:54:52:ef:ff:68:0b:11:b4:f2:ac:
2b:dc:11:36:c6:d7:17:6d:33:8a:5d:bf:17:8a:c7:
c2:73:4b:14:79:24:45:eb:75:6e:23:6f:11:e4:d6:
51:55:76:b3:b2:59:d9:ef:a0:83:e4:92:0c:8b:38:
a1:72:a0:42:1d:4a:06:a7:38:46:44:1c:57:89:92:
38:05:2f:b8:76:b4:6d:5d:5a:92:d2:bc:42:05:6e:
5d:85:83:2f:a1:c4:61:ac:3e:c5:52:3f:af:7d:b3:
d5:3a:cd:a2:0f:ea:20:e8:76:96:2c:96:87:64:5d:
94:8c:cd:ba:d8:23:93:a1:e8:1f:b8:d3:a7:40:12:
78:6f:a1:77:18:6a:f8:a3:b1:45:e6:69:a9:c5:02:
2a:01:8e:1b:55:ac:c1:4e:37:7a:e5:51:df:d3:82:
50:f4:3e:6d:29:fb:8a:b0:bc:ea:23:26:87:af:fd:
f2:48:80:4c:c4:fb:f5:7c:55:03:72:3e:fd:b2:0e:
86:e2:b0:e1:e2:b7:f5:fb:03:36:2c:15:a6:25:16:
7e:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:49:0B:5C:79:0C:B1:39:73:81:4A:15:06:05:EF:08:C4:43:E6:EA
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/UUkLXHkMsTlzgUoVBgXvCMRD5uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:9300::/48
Signature Algorithm: sha256WithRSAEncryption
3a:db:5a:cc:bd:c9:32:a2:df:a7:8b:c3:74:99:f8:5f:55:67:
60:ff:01:66:25:21:34:c9:b8:51:ff:23:85:66:a6:1c:e5:10:
88:68:26:85:d2:09:51:2e:e1:6e:27:a6:c0:94:18:26:d4:25:
7f:65:90:a4:f7:89:2b:35:07:cf:4f:34:1d:ba:c3:f8:e5:94:
8e:8b:9d:19:2c:b7:04:f9:af:e8:71:ab:34:7b:fe:a4:35:63:
48:5e:e7:af:fc:b3:70:14:39:4c:f0:98:3a:2e:c8:d1:ae:d3:
a4:f4:ce:a1:9e:2c:34:91:5e:3a:4c:a1:ea:4d:e1:2e:f5:53:
5e:a4:e2:8c:a8:ba:80:5b:01:67:78:24:0a:67:85:e6:00:be:
04:01:09:e3:44:b8:06:57:d6:44:d9:ca:56:d6:77:49:61:0b:
e2:21:13:a4:98:74:7b:42:bd:4b:6f:78:4b:99:89:b6:0e:59:
72:08:88:55:cd:fd:fe:55:14:f5:d9:4b:24:bd:69:b9:f6:4d:
b5:d9:36:0b:39:24:91:f3:38:d2:d8:00:39:8c:cb:38:fb:4e:
ee:c0:da:99:f2:76:40:eb:a9:cb:10:6d:b7:cf:1d:7a:59:fb:
4d:d6:c0:a8:90:d6:52:4b:a6:35:4d:f7:6d:ad:0b:79:59:c8:
c3:e1:dc:fb
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVyDEFJNBTxFRSFgGxt/ULSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2NmQ5ZDUwYjNiODlkNTFjOGFhMjQ5M2U3ZWY0NzAxZDYy
NTFkYWQwHhcNMjMwMTAyMTAzNDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTQ5MGI1Yzc5MGNiMTM5NzM4MTRhMTUwNjA1ZWYwOGM0NDNlNmVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAns/mUlmBfBmbU9tFYrSMZM5rzofB
hnpAyu/VwELCXWFdWsBfZAAlOmcdmBU5OKsaKVRS7/9oCxG08qwr3BE2xtcXbTOK
Xb8XisfCc0sUeSRF63VuI28R5NZRVXazslnZ76CD5JIMizihcqBCHUoGpzhGRBxX
iZI4BS+4drRtXVqS0rxCBW5dhYMvocRhrD7FUj+vfbPVOs2iD+og6HaWLJaHZF2U
jM262COToegfuNOnQBJ4b6F3GGr4o7FF5mmpxQIqAY4bVazBTjd65VHf04JQ9D5t
KfuKsLzqIyaHr/3ySIBMxPv1fFUDcj79sg6G4rDh4rf1+wM2LBWmJRZ+VQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFFJC1x5DLE5c4FKFQYF7wjEQ+bqMB8GA1UdIwQY
MBaAFMZtnVCzuJ1RyKokk+fvRwHWJR2tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG0yZFVMTzRuVkhJcWlTVDUtOUhBZFlsSGEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS80YmI3NGItOGQ2ZC00NTE0LWEzOWMt
YjdjNTc4Yjc0ZTM1LzEvVVVrTFhIa01zVGx6Z1VvVkJnWHZDTVJENXVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS80YmI3NGItOGQ2ZC00NTE0LWEzOWMtYjdjNTc4Yjc0ZTM1
LzEveG0yZFVMTzRuVkhJcWlTVDUtOUhBZFlsSGEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6TAAAA
MA0GCSqGSIb3DQEBCwUAA4IBAQA621rMvckyot+ni8N0mfhfVWdg/wFmJSE0ybhR
/yOFZqYc5RCIaCaF0glRLuFuJ6bAlBgm1CV/ZZCk94krNQfPTzQdusP45ZSOi50Z
LLcE+a/ocas0e/6kNWNIXuev/LNwFDlM8Jg6LsjRrtOk9M6hniw0kV46TKHqTeEu
9VNepOKMqLqAWwFneCQKZ4XmAL4EAQnjRLgGV9ZE2cpW1ndJYQviIROkmHR7Qr1L
b3hLmYm2DllyCIhVzf3+VRT12UskvWm59k212TYLOSSR8zjS2AA5jMs4+07uwNqZ
8nZA66nLEG23zx16WftN1sCokNZSS6Y1TfdtrQt5WcjD4dz7
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org