Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/39e5c5-431c-4375-b7e1-7aae52176d8b/1/UxgsEHnIbOc47U4mi0uidTHB610.roa
File: UxgsEHnIbOc47U4mi0uidTHB610.roa (raw, json)
Hash identifier: 5RRKmVpSC5DunG7SjcLDd1mZbVsXborZiAgwooGqLL0=
Subject key identifier: 53:18:2C:10:79:C8:6C:E7:38:ED:4E:26:8B:4B:A2:75:31:C1:EB:5D
Certificate issuer: /CN=6743e5de39c21f8a78be6a457a3b86d5822bc17c
Certificate serial: 018F48D605E6CD1F3DFC792868EAA6815DA0
Authority key identifier: 67:43:E5:DE:39:C2:1F:8A:78:BE:6A:45:7A:3B:86:D5:82:2B:C1:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0Pl3jnCH4p4vmpFejuG1YIrwXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/39e5c5-431c-4375-b7e1-7aae52176d8b/1/UxgsEHnIbOc47U4mi0uidTHB610.roa
Signing time: Sun 05 May 2024 12:58:56 +0000
ROA not before: Sun 05 May 2024 12:58:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57358
IP address blocks: 2001:67c:5f8::/48 maxlen: 48
2a13:9d40::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 05 May 2024 20:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:48:d6:05:e6:cd:1f:3d:fc:79:28:68:ea:a6:81:5d:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6743e5de39c21f8a78be6a457a3b86d5822bc17c
Validity
Not Before: May 5 12:58:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53182c1079c86ce738ed4e268b4ba27531c1eb5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:65:75:66:76:6f:e3:0a:59:43:37:39:89:8c:
8d:be:b6:88:c1:56:27:b9:cf:d5:72:be:74:b1:50:
0b:2d:4b:80:03:99:ec:f2:59:44:ae:35:04:8a:e6:
aa:32:11:1f:59:7f:6a:28:9a:cc:8c:0e:81:bb:dc:
55:ff:08:f6:e0:44:01:3f:1e:79:54:a3:f1:d4:46:
20:67:5f:65:6e:1b:ff:d7:6d:eb:3a:e9:7f:3e:76:
5f:1a:be:ec:db:0e:c9:5b:9c:91:c3:f1:51:11:33:
9d:51:11:73:e5:67:a0:65:79:83:fb:9b:9b:6f:75:
89:e1:b7:11:28:20:75:ac:46:53:12:8e:20:73:72:
b0:35:7f:57:da:2c:35:0d:b3:b3:35:c5:89:de:8b:
e4:5b:54:ba:f7:2e:84:ce:f5:ba:3d:4a:ef:37:67:
ed:59:0a:15:89:aa:3a:42:67:8d:24:e1:3c:13:f2:
ec:55:98:2f:f3:a3:e7:12:a8:00:37:db:96:fd:d2:
47:7c:55:06:31:1e:26:d0:85:4d:66:dd:79:6c:33:
0a:0a:9d:be:61:8f:c1:31:cd:1b:2e:67:f4:73:07:
ec:52:38:34:5b:f6:98:5b:01:87:73:bc:26:0b:16:
3d:84:25:f8:49:03:ee:85:ef:13:74:e5:37:33:18:
16:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:18:2C:10:79:C8:6C:E7:38:ED:4E:26:8B:4B:A2:75:31:C1:EB:5D
X509v3 Authority Key Identifier:
keyid:67:43:E5:DE:39:C2:1F:8A:78:BE:6A:45:7A:3B:86:D5:82:2B:C1:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0Pl3jnCH4p4vmpFejuG1YIrwXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/39e5c5-431c-4375-b7e1-7aae52176d8b/1/UxgsEHnIbOc47U4mi0uidTHB610.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/39e5c5-431c-4375-b7e1-7aae52176d8b/1/Z0Pl3jnCH4p4vmpFejuG1YIrwXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:5f8::/48
2a13:9d40::/29
Signature Algorithm: sha256WithRSAEncryption
a7:65:3a:7a:b2:3f:5e:6f:d5:e2:16:c6:8a:0f:14:b5:c1:60:
ba:23:51:88:3e:b8:79:29:ac:cd:06:62:1f:a7:45:77:61:7f:
fe:54:e4:28:7e:21:62:40:3e:61:cf:1c:61:ab:4d:50:a6:33:
d6:e9:ef:39:d2:de:78:3a:27:c1:10:a3:9e:f3:11:b0:e2:bf:
a6:8d:04:95:75:50:73:fd:d2:f3:42:82:32:a5:f7:9d:66:48:
58:fe:f0:50:b0:57:ea:a1:cb:ba:3c:61:37:ca:d7:b7:c2:ca:
0e:e6:6b:5e:d1:63:be:c4:7e:a9:22:0c:4d:1e:81:07:2f:92:
8d:10:da:60:68:57:51:fd:95:da:67:6f:3d:5c:76:1d:28:b7:
ba:26:c8:50:fb:0f:48:74:40:be:77:a5:5f:58:60:6c:a4:08:
da:c8:dc:64:f0:58:e0:26:77:44:ea:02:76:a4:b4:bd:22:6c:
5c:51:36:83:18:f5:1c:09:63:f1:61:75:f9:48:ac:e6:1c:d1:
eb:af:5c:82:0b:de:fa:c0:e5:73:51:20:6b:21:9a:15:cd:06:
39:85:1b:df:93:dc:76:8c:31:80:aa:76:c1:fe:b2:5e:df:4b:
18:c6:51:aa:04:73:a1:c8:3a:8a:d9:3d:77:59:3c:32:8a:cc:
12:a5:2e:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:06 2024 by rpki-client on console-ams.rpki-client.org