Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/Ujy-Cj6xHrbdWzetIMYerv4ytv8.roa
File: Ujy-Cj6xHrbdWzetIMYerv4ytv8.roa (raw, json)
Hash identifier: vyl2rDLJLgleFXjRZ2C9tZ9exau++iCpUcsYI3V8zuk=
Subject key identifier: 52:3C:BE:0A:3E:B1:1E:B6:DD:5B:37:AD:20:C6:1E:AE:FE:32:B6:FF
Certificate issuer: /CN=b8c68cda65f66962ccb9683f1550d14e56107a0a
Certificate serial: 018AACCBC5608BBAC364D2FAC1321962B915
Authority key identifier: B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/Ujy-Cj6xHrbdWzetIMYerv4ytv8.roa
Signing time: Tue 19 Sep 2023 09:35:50 +0000
ROA not before: Tue 19 Sep 2023 09:35:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 2001:67c:d1c::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ac:cb:c5:60:8b:ba:c3:64:d2:fa:c1:32:19:62:b9:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8c68cda65f66962ccb9683f1550d14e56107a0a
Validity
Not Before: Sep 19 09:35:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=523cbe0a3eb11eb6dd5b37ad20c61eaefe32b6ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:1b:5b:a2:c9:ad:34:54:22:4c:70:ca:7a:9d:
df:f8:9e:16:1f:55:60:f6:b9:20:1f:fe:e0:df:7e:
bf:5a:45:1a:71:8b:fa:fe:1d:35:a3:75:0e:90:54:
35:4d:e0:d9:fb:82:2e:77:18:25:d4:f3:7d:5a:75:
0a:e1:ad:c7:b5:36:b0:2e:d8:d8:62:bf:f5:7a:45:
39:3e:87:8f:58:22:2a:75:f4:e9:51:6a:95:7f:87:
ca:93:17:ad:31:25:04:f7:4f:39:cc:21:59:6a:7a:
0a:a9:ce:ae:8b:bd:e2:79:7b:35:b1:70:8d:e1:8f:
1f:2e:02:57:e0:af:4f:d2:56:ee:08:2d:9f:cf:1f:
7f:4d:12:72:15:2d:db:3f:50:97:c9:eb:db:1d:44:
07:df:95:72:1f:25:61:75:5c:1e:67:e9:d9:b6:80:
35:c7:21:d1:81:80:1c:6f:d7:e8:d5:77:b1:43:b0:
90:5f:5b:86:48:52:54:c9:91:1b:11:0e:8f:4b:cd:
02:a6:da:30:c6:56:bc:88:f9:14:01:29:2a:b0:82:
1e:fe:2c:43:ff:63:22:82:ff:4e:6d:b1:c9:65:c2:
39:d7:1f:a1:a5:d9:6f:13:35:9f:4d:07:bd:26:b4:
6c:6b:a6:54:c7:c2:c3:7d:b3:e1:b4:46:83:12:35:
3f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:3C:BE:0A:3E:B1:1E:B6:DD:5B:37:AD:20:C6:1E:AE:FE:32:B6:FF
X509v3 Authority Key Identifier:
keyid:B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/Ujy-Cj6xHrbdWzetIMYerv4ytv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:d1c::/48
Signature Algorithm: sha256WithRSAEncryption
88:a4:55:a0:cd:6e:82:5b:03:d9:11:81:99:59:fd:3e:de:b4:
f1:40:8e:c3:09:fc:f3:b1:d7:08:94:ac:98:ba:86:e5:d2:6e:
ac:b8:e8:3c:cd:b6:54:5a:de:01:08:7c:32:bf:dc:77:17:8b:
5b:e2:73:d3:84:0e:82:ed:41:10:33:36:3e:59:f6:62:16:7c:
7c:08:1c:db:4f:2f:db:9b:43:3e:c3:08:ed:cd:8c:aa:ac:24:
9a:85:c0:f5:50:c3:21:42:8a:9d:c6:b4:29:1f:57:13:4c:bf:
d6:16:93:bf:20:53:7b:49:02:34:3c:02:82:7a:1b:9e:19:3f:
b6:bb:2f:c6:ae:5c:d0:cf:b7:38:8c:01:cc:62:af:27:e6:2b:
67:26:f3:b5:11:39:dd:40:66:b6:50:7c:e0:1c:e1:22:f6:fa:
bc:fc:7d:ef:9f:b6:56:4d:2d:ec:3c:25:05:fd:f4:90:3c:56:
cf:a4:6f:26:a3:6c:5d:a8:51:57:35:79:36:59:6e:48:be:0f:
d9:dd:30:d0:b9:ef:d0:15:58:a2:3a:75:74:fd:d1:a4:7c:90:
4b:d6:fb:23:16:88:36:eb:f9:05:af:67:d5:c2:14:5a:83:57:
00:b6:75:c9:d3:f5:3f:08:61:4f:d9:da:dd:08:8d:cd:b7:26:
4c:7f:f2:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:52 2024 by rpki-client on console-fra.rpki-client.org