Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/U6wYNOcBz1K9xXt8gr34d2xKyo8.roa
File: U6wYNOcBz1K9xXt8gr34d2xKyo8.roa (raw, json)
Hash identifier: dssrW+D/UOvVbLeYRrKk8m01NorB8IX1XCHIhEtgDDA=
Subject key identifier: 53:AC:18:34:E7:01:CF:52:BD:C5:7B:7C:82:BD:F8:77:6C:4A:CA:8F
Certificate issuer: /CN=5659b0ba8407be11cfc911bd31ed140cd1c6046c
Certificate serial: 01856E267C7F0C96D60A977BAA4493D43143
Authority key identifier: 56:59:B0:BA:84:07:BE:11:CF:C9:11:BD:31:ED:14:0C:D1:C6:04:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/U6wYNOcBz1K9xXt8gr34d2xKyo8.roa
Signing time: Sun 01 Jan 2023 16:24:53 +0000
ROA not before: Sun 01 Jan 2023 16:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48878
IP address blocks: 2a10:fa81:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:7c:7f:0c:96:d6:0a:97:7b:aa:44:93:d4:31:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5659b0ba8407be11cfc911bd31ed140cd1c6046c
Validity
Not Before: Jan 1 16:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53ac1834e701cf52bdc57b7c82bdf8776c4aca8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:67:63:d2:0d:8a:3e:64:8b:dd:a0:f5:4b:fe:
cc:71:1f:b4:5b:c8:a6:d1:90:bd:09:83:8e:7b:3b:
c2:70:0c:12:10:41:64:98:64:fb:e9:d2:04:06:a6:
35:7a:aa:67:1e:e8:96:a5:6f:d6:83:92:72:8c:4f:
cc:47:c7:a6:4e:47:7f:c0:3b:cf:7a:bb:cb:50:c9:
39:a9:c8:be:2d:37:85:db:ef:1d:af:25:b0:61:eb:
b6:e4:8f:68:8c:a2:92:cd:d0:e9:0f:19:82:dd:22:
ee:2f:81:1e:eb:78:e5:3f:32:20:34:ab:78:55:68:
5d:49:42:cd:2d:00:c2:c3:f5:0f:8f:98:f3:63:e5:
e9:f3:31:b6:3f:91:3a:08:e1:83:1c:a6:fd:1a:9d:
fd:e0:b2:61:ff:e9:51:db:4e:f5:e9:e1:03:55:a0:
d2:2d:93:ca:62:65:9e:87:7f:00:fe:db:76:7f:16:
7f:95:36:cb:12:23:55:9f:25:17:b8:bf:5d:8b:a0:
ce:e1:f8:85:69:c0:32:a0:9f:3b:36:96:fa:06:b0:
76:d2:21:90:a7:c9:f2:d4:39:d6:2a:21:57:c5:b5:
e2:7d:30:6d:e9:34:fb:9f:b8:dc:0e:3a:bd:d9:78:
be:d6:de:51:96:6e:04:cb:b6:9d:61:59:68:bb:08:
fd:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:AC:18:34:E7:01:CF:52:BD:C5:7B:7C:82:BD:F8:77:6C:4A:CA:8F
X509v3 Authority Key Identifier:
keyid:56:59:B0:BA:84:07:BE:11:CF:C9:11:BD:31:ED:14:0C:D1:C6:04:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/U6wYNOcBz1K9xXt8gr34d2xKyo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/VlmwuoQHvhHPyRG9Me0UDNHGBGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:fa81:1::/48
Signature Algorithm: sha256WithRSAEncryption
08:8b:97:e3:de:7a:0f:5d:3f:0e:b4:eb:95:1b:91:e1:8d:20:
0f:64:04:75:54:f8:8e:23:13:17:f8:fb:d6:e9:9f:b4:54:94:
82:9d:89:16:b4:e4:13:22:5c:b0:f6:a2:2a:88:92:98:49:50:
a6:2b:f1:d3:44:ba:c6:54:aa:24:a4:1f:71:68:00:c1:96:a3:
7a:f1:59:b1:df:1c:4a:f4:81:fb:6a:27:da:6b:7a:4c:fb:13:
67:45:f1:53:f1:36:48:c3:15:da:80:76:1e:e3:ee:75:db:e7:
60:27:2b:d7:2c:bd:de:26:3f:d3:fc:1e:34:cb:1b:7b:d0:2d:
1c:a6:60:35:38:d3:38:3d:4b:3a:73:64:06:3a:7e:cd:43:20:
53:9a:ea:dd:61:53:16:c2:0c:6b:a5:d4:29:ef:c9:72:cd:cd:
37:8f:20:98:07:67:e1:bc:7f:34:2d:57:b5:95:b2:81:1a:5b:
fb:95:f0:4d:93:e0:5e:e0:a8:cc:ea:78:ba:b9:9e:cb:79:52:
13:ac:99:d2:4d:43:be:19:d5:14:6d:ba:94:7c:43:ca:59:a2:
37:11:70:58:a5:10:47:79:ee:2b:00:89:d2:4f:ca:8e:df:74:
68:77:1c:a2:62:5d:2f:48:5a:f4:68:08:2f:ae:73:1a:f6:72:
ba:36:38:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:38 2024 by rpki-client on console-fra.rpki-client.org