Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/UqR0saD74th9nLcdHSHhI5WHiMs.roa
File: UqR0saD74th9nLcdHSHhI5WHiMs.roa (raw, json)
Hash identifier: rIMJNRqICvSTNdsMNopO3iPPnfxDurYjDGB2hDKwBhg=
Subject key identifier: 52:A4:74:B1:A0:FB:E2:D8:7D:9C:B7:1D:1D:21:E1:23:95:87:88:CB
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 01892C9AD16DB4BDDFEDE826224AD738864E
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/UqR0saD74th9nLcdHSHhI5WHiMs.roa
Signing time: Thu 06 Jul 2023 19:08:10 +0000
ROA not before: Thu 06 Jul 2023 19:08:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44486
IP address blocks: 2a0f:5707:aae0::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2c:9a:d1:6d:b4:bd:df:ed:e8:26:22:4a:d7:38:86:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jul 6 19:08:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52a474b1a0fbe2d87d9cb71d1d21e123958788cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:3b:a9:75:7e:52:96:09:c4:f4:f8:3d:5e:e9:
47:63:24:d5:da:e8:f1:0d:5c:9c:d7:74:e4:78:ac:
22:96:08:29:f4:ee:63:4d:b6:03:a3:82:74:5b:9c:
b8:a5:b7:36:95:04:b6:c2:79:7d:8f:a9:18:a9:bf:
cd:87:f6:9e:b4:e9:e9:11:93:b1:45:cd:dc:52:d6:
ee:00:5f:f7:cf:66:b9:91:f0:09:95:c9:aa:24:d9:
17:75:ee:65:23:7a:d3:46:5e:51:a7:ce:a1:f7:ba:
6e:d1:6f:9a:de:a5:58:1b:09:ed:57:35:8d:07:3c:
19:1e:d2:c5:d8:ac:a5:8a:ed:af:af:d4:6f:58:33:
99:7a:28:32:2b:f8:e1:55:ff:54:17:72:cb:85:3e:
ed:5a:69:1c:63:c1:44:6e:44:b5:30:1d:59:75:99:
32:cf:07:22:3a:a1:a9:9b:99:5b:78:01:d5:10:74:
bd:98:d5:57:ec:16:95:91:0d:8f:85:a7:0b:76:e8:
71:f7:8d:ad:c5:16:7a:aa:26:f9:6c:45:c0:bf:fd:
0e:fa:05:b9:24:47:c7:13:db:0f:d3:d0:5e:13:94:
dd:51:d5:4f:bb:5e:36:7c:2a:53:d4:b8:d6:73:b1:
dc:1c:2c:79:80:b7:a3:53:41:be:97:29:40:01:73:
ca:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A4:74:B1:A0:FB:E2:D8:7D:9C:B7:1D:1D:21:E1:23:95:87:88:CB
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/UqR0saD74th9nLcdHSHhI5WHiMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:aae0::/44
Signature Algorithm: sha256WithRSAEncryption
53:6f:47:89:c9:ef:8c:3c:c5:a8:0a:b2:55:2d:12:d4:29:a1:
77:03:b4:bd:09:1f:fc:1c:39:82:10:52:6b:d1:3c:8c:0a:03:
04:d6:29:ef:8b:af:c5:2f:1c:9a:bd:9c:b8:b4:74:12:f6:d1:
39:3e:49:6f:b2:b6:31:fe:19:07:c3:71:e0:8c:6e:2a:07:26:
8c:71:75:d3:70:81:29:ac:cf:15:5c:34:18:8c:88:db:6b:eb:
08:e8:1b:0b:96:bf:96:2a:e9:7b:d4:3a:f5:41:de:fb:e9:87:
a3:3c:e7:48:12:4d:f2:76:76:7c:8e:22:1a:ca:3d:0d:de:67:
e9:c5:78:eb:b5:f1:a3:e1:4e:cb:a1:51:53:52:44:1e:d4:23:
6b:82:6e:1a:29:08:f7:96:4d:d6:19:04:c4:3c:d6:0f:d4:4d:
3d:4e:7f:2a:fd:2f:2e:67:62:a9:32:c6:34:96:09:3d:c9:eb:
ce:a2:d0:91:cc:07:97:51:49:2f:a0:6c:55:44:40:5a:a3:51:
21:01:e0:35:f0:0f:c7:92:11:77:d3:8b:10:55:e8:65:84:4c:
d1:32:59:2d:58:90:40:fa:bc:da:f8:6a:1e:ea:20:35:d7:42:
66:0a:03:bb:39:66:63:e0:d6:e2:e6:8b:cd:c9:e4:7b:8a:5f:
1d:f6:07:1b
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYksmtFttL3f7egmIkrXOIZOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNjQ0YzExNTY4NTE4MDNmMzdhZGVlYzA4NzZjY2Y5ODlk
NWFlZjAwHhcNMjMwNzA2MTkwODEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MmE0NzRiMWEwZmJlMmQ4N2Q5Y2I3MWQxZDIxZTEyMzk1ODc4OGNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAijupdX5SlgnE9Pg9XulHYyTV2ujx
DVyc13TkeKwilggp9O5jTbYDo4J0W5y4pbc2lQS2wnl9j6kYqb/Nh/aetOnpEZOx
Rc3cUtbuAF/3z2a5kfAJlcmqJNkXde5lI3rTRl5Rp86h97pu0W+a3qVYGwntVzWN
BzwZHtLF2Kyliu2vr9RvWDOZeigyK/jhVf9UF3LLhT7tWmkcY8FEbkS1MB1ZdZky
zwciOqGpm5lbeAHVEHS9mNVX7BaVkQ2PhacLduhx942txRZ6qib5bEXAv/0O+gW5
JEfHE9sP09BeE5TdUdVPu142fCpT1LjWc7HcHCx5gLejU0G+lylAAXPKuQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFKkdLGg++LYfZy3HR0h4SOVh4jLMB8GA1UdIwQY
MBaAFEpkTBFWhRgD83re7Ah2zPmJ1a7wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU21STUVWYUZHQVB6ZXQ3c0NIYk0tWW5WcnZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS82YjA3OTgtM2Q0Zi00MGU2LWI3Mzkt
Y2MxYzliNWY2NjQwLzEvVXFSMHNhRDc0dGg5bkxjZEhTSGhJNVdIaU1zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS82YjA3OTgtM2Q0Zi00MGU2LWI3MzktY2MxYzliNWY2NjQw
LzEvU21STUVWYUZHQVB6ZXQ3c0NIYk0tWW5WcnZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg9XB6rg
MA0GCSqGSIb3DQEBCwUAA4IBAQBTb0eJye+MPMWoCrJVLRLUKaF3A7S9CR/8HDmC
EFJr0TyMCgME1invi6/FLxyavZy4tHQS9tE5PklvsrYx/hkHw3HgjG4qByaMcXXT
cIEprM8VXDQYjIjba+sI6BsLlr+WKul71Dr1Qd776YejPOdIEk3ydnZ8jiIayj0N
3mfpxXjrtfGj4U7LoVFTUkQe1CNrgm4aKQj3lk3WGQTEPNYP1E09Tn8q/S8uZ2Kp
MsY0lgk9yevOotCRzAeXUUkvoGxVREBao1EhAeA18A/HkhF304sQVehlhEzRMlkt
WJBA+rza+Goe6iA110JmCgO7OWZj4Nbi5ovNyeR7il8d9gcb
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org