Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/uqfWDI5zqPREn1tUZodJ7OCZJg8.roa
File: uqfWDI5zqPREn1tUZodJ7OCZJg8.roa (raw, json)
Hash identifier: Tgyz2mmB60MxU1D5X3D6UOH6wRJ73Yvsol9xD5EiJv0=
Subject key identifier: BA:A7:D6:0C:8E:73:A8:F4:44:9F:5B:54:66:87:49:EC:E0:99:26:0F
Certificate issuer: /CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8
Certificate serial: 01856FD534CAF29AD421855FAD0757A162E9
Authority key identifier: 38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/uqfWDI5zqPREn1tUZodJ7OCZJg8.roa
Signing time: Mon 02 Jan 2023 00:15:21 +0000
ROA not before: Mon 02 Jan 2023 00:15:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211071
IP address blocks: 2a0a:d6c0:202::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:34:ca:f2:9a:d4:21:85:5f:ad:07:57:a1:62:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8
Validity
Not Before: Jan 2 00:15:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=baa7d60c8e73a8f4449f5b54668749ece099260f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f6:ec:f8:c4:b1:65:84:36:f9:46:5e:9c:d6:
23:61:1a:c6:bb:0b:18:15:16:1d:a5:70:52:51:33:
07:0a:7c:38:af:2b:03:a4:7d:72:df:a8:9f:0b:cb:
9e:5c:ea:b4:14:a1:fe:83:a6:58:a5:63:38:29:af:
ae:a0:bd:78:40:21:b5:25:19:21:3d:44:15:74:0e:
08:10:c4:2a:3c:14:1c:dc:8c:8e:bc:7d:df:ad:1c:
b6:88:2d:57:24:1c:b6:6a:27:25:87:fd:10:8f:ec:
70:ed:66:66:51:11:99:65:61:3c:ec:31:d4:cc:10:
5a:04:1a:e8:c0:56:c5:90:77:f1:04:b2:74:98:37:
3a:04:34:75:99:bb:59:0e:0a:1f:ea:2a:93:9a:21:
21:36:a1:9c:86:48:c9:56:d1:a2:c1:b7:10:5a:76:
df:c9:99:e3:dc:a7:be:84:bc:5d:f7:bf:bf:7e:51:
22:ff:a2:81:7d:94:5f:6e:10:bc:ea:4a:cc:95:4b:
51:e9:21:a4:25:24:b8:90:07:1b:a6:be:d3:c7:40:
b1:4d:02:47:82:c2:fd:fd:29:e6:bd:f6:f9:5e:93:
19:93:10:d1:22:60:cf:7b:45:f0:24:8a:07:7f:84:
b8:64:98:b3:dd:b4:01:87:45:e2:38:16:cf:65:98:
8a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:A7:D6:0C:8E:73:A8:F4:44:9F:5B:54:66:87:49:EC:E0:99:26:0F
X509v3 Authority Key Identifier:
keyid:38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/uqfWDI5zqPREn1tUZodJ7OCZJg8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:d6c0:202::/48
Signature Algorithm: sha256WithRSAEncryption
4c:aa:7d:9d:b0:e2:a7:f5:21:38:d1:b1:ea:80:73:f9:4b:3a:
4c:8d:22:fa:e5:3a:6b:26:f7:ad:63:24:72:17:35:77:1b:20:
ce:55:13:28:04:e1:b1:95:3a:4d:44:ac:26:0d:21:10:46:75:
67:56:92:4e:55:58:24:3c:a6:41:26:bc:4b:e9:ef:bd:29:07:
22:71:59:c0:c1:66:f1:dd:ca:e8:f9:87:39:4f:46:ee:c5:f2:
c8:6c:53:5e:3f:f2:c5:f2:09:9f:92:71:3f:1c:ce:77:1a:6a:
10:31:45:19:a9:f7:80:47:fd:be:08:f1:a9:26:fe:c8:c2:1e:
11:c5:f6:73:5a:68:71:ee:c5:20:6a:71:a5:f1:b9:14:19:44:
f9:96:e5:7c:76:b3:22:01:3f:7b:2a:cd:c2:32:ba:aa:10:6a:
dd:16:02:bd:23:cc:3c:35:35:fe:27:26:40:2c:d3:a3:f9:01:
74:bf:5e:fa:bb:2d:51:ac:f3:d4:6c:a6:88:29:c9:6d:1a:8d:
ef:a2:ce:27:40:03:8a:5d:35:2d:d6:11:20:0d:b6:f4:8c:65:
ca:02:d1:60:53:19:f3:2c:89:75:04:90:cf:c7:a9:f4:9f:68:
3d:fa:6a:98:97:0f:79:85:17:25:3a:d5:e1:62:65:90:f6:65:
68:57:68:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:53 2024 by rpki-client on console-ams.rpki-client.org