Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/UlxWI4OOwMFEsqE6Ow-_kVOihSE.roa
File: UlxWI4OOwMFEsqE6Ow-_kVOihSE.roa (raw, json)
Hash identifier: 7cOvZ9YMBDjl3TdOYsWmDtqO0om6F+Zid6ukVh9uREw=
Subject key identifier: 52:5C:56:23:83:8E:C0:C1:44:B2:A1:3A:3B:0F:BF:91:53:A2:85:21
Certificate issuer: /CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Certificate serial: 01856BDC688A2ABECB6A0012234855284F74
Authority key identifier: 0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/UlxWI4OOwMFEsqE6Ow-_kVOihSE.roa
Signing time: Sun 01 Jan 2023 05:44:44 +0000
ROA not before: Sun 01 Jan 2023 05:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 18041
IP address blocks: 2a0f:607:1051::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:68:8a:2a:be:cb:6a:00:12:23:48:55:28:4f:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Validity
Not Before: Jan 1 05:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=525c5623838ec0c144b2a13a3b0fbf9153a28521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:04:f1:2b:ab:19:9d:93:c5:ab:0b:7e:c7:1d:
f3:57:17:18:6d:50:e5:bc:24:af:fa:16:9a:fb:c6:
88:8c:dc:c3:3c:5f:aa:35:49:ea:80:66:df:18:de:
c4:82:cd:7d:59:b5:da:64:a3:13:79:18:09:e3:b2:
30:e1:a7:5b:79:64:d7:67:bd:63:0e:d7:9a:60:1c:
70:8b:bf:54:65:74:a4:54:b3:78:45:20:95:c4:70:
f8:03:1c:4d:b8:f8:72:51:3a:19:c3:bf:a8:4a:e7:
3f:59:19:97:f3:c5:ef:b3:49:d0:79:a9:92:5b:55:
ad:cd:76:4a:36:15:9f:a6:30:7e:01:ce:43:d1:be:
85:f8:53:10:5d:3a:8b:39:ab:c7:d8:bf:68:93:9b:
ed:1d:a7:1f:fd:ce:99:59:b2:8d:19:5c:df:f2:a7:
09:dc:1e:d6:10:01:31:a2:6d:ce:08:8b:e2:cd:b0:
7a:3d:56:a2:04:4c:1c:b8:f6:a1:5f:7c:bc:41:42:
ae:77:93:95:e5:aa:56:4a:67:6d:35:17:54:a9:0a:
34:eb:db:2f:16:b4:d1:14:5c:f0:ca:82:65:76:15:
fc:7f:46:e0:a8:92:ed:18:a9:d2:f9:ae:53:bc:20:
f0:84:4d:cc:f1:50:1a:a8:b0:31:71:a4:8f:1a:e0:
30:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:5C:56:23:83:8E:C0:C1:44:B2:A1:3A:3B:0F:BF:91:53:A2:85:21
X509v3 Authority Key Identifier:
keyid:0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/UlxWI4OOwMFEsqE6Ow-_kVOihSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:607:1051::/48
Signature Algorithm: sha256WithRSAEncryption
64:f2:9b:81:fd:22:87:24:2a:4d:47:48:f0:91:16:26:30:f2:
4c:21:10:46:37:72:dd:45:bc:ec:d4:a4:a6:25:54:81:7f:71:
64:95:69:9a:9a:54:7f:d8:61:22:f4:fc:7a:2e:3e:61:20:af:
fe:18:17:cd:02:a3:8b:61:09:86:0b:f3:22:97:0d:14:17:05:
62:d3:3c:25:10:2c:c9:b6:f6:79:ca:e8:04:90:10:82:e9:b5:
5c:75:e8:61:31:5e:9d:ab:4b:0c:45:57:29:b9:a0:5b:aa:10:
e6:93:a5:50:b0:92:5f:55:26:1b:9e:f4:32:49:94:dc:c3:25:
97:45:b8:34:09:a2:3d:9b:8a:52:1f:df:af:c8:18:9d:23:2d:
79:41:b9:d4:fa:94:cf:3f:39:79:22:3e:14:80:a2:21:6a:09:
3e:28:3a:eb:a6:a1:66:7e:d4:74:ec:48:06:0f:98:d0:11:6a:
86:50:aa:9b:b4:a7:f2:d2:05:90:f2:3d:ab:1a:94:cc:60:59:
94:41:05:16:ef:a2:86:44:d7:d7:43:9f:de:05:02:fb:67:db:
8e:f8:12:e9:44:57:d6:84:19:d3:3d:73:fc:d4:20:65:63:34:
e1:17:41:fa:8c:e7:15:8f:b2:6d:e6:c1:b5:d3:2e:5b:c1:dc:
5b:10:96:84
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVr3GiKKr7LagASI0hVKE90MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjMjFiOTI1YjRjNGJjYzMwZjc3YzljNDFiYThkMDQwYWM5
NWRmYzYwHhcNMjMwMTAxMDU0NDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MjVjNTYyMzgzOGVjMGMxNDRiMmExM2EzYjBmYmY5MTUzYTI4NTIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApATxK6sZnZPFqwt+xx3zVxcYbVDl
vCSv+haa+8aIjNzDPF+qNUnqgGbfGN7Egs19WbXaZKMTeRgJ47Iw4adbeWTXZ71j
DteaYBxwi79UZXSkVLN4RSCVxHD4AxxNuPhyUToZw7+oSuc/WRmX88Xvs0nQeamS
W1WtzXZKNhWfpjB+Ac5D0b6F+FMQXTqLOavH2L9ok5vtHacf/c6ZWbKNGVzf8qcJ
3B7WEAExom3OCIvizbB6PVaiBEwcuPahX3y8QUKud5OV5apWSmdtNRdUqQo069sv
FrTRFFzwyoJldhX8f0bgqJLtGKnS+a5TvCDwhE3M8VAaqLAxcaSPGuAwCwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFJcViODjsDBRLKhOjsPv5FTooUhMB8GA1UdIwQY
MBaAFAwhuSW0xLzDD3fJxBuo0ECsld/GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRENHNUpiVEV2TU1QZDhuRUc2alFRS3lWMzhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9jMGJkNjctZjdkZC00Y2UyLWFiN2Ut
YTM0NzU2NDE1OGY4LzEvVWx4V0k0T093TUZFc3FFNk93LV9rVk9paFNFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9jMGJkNjctZjdkZC00Y2UyLWFiN2UtYTM0NzU2NDE1OGY4
LzEvRENHNUpiVEV2TU1QZDhuRUc2alFRS3lWMzhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg8GBxBR
MA0GCSqGSIb3DQEBCwUAA4IBAQBk8puB/SKHJCpNR0jwkRYmMPJMIRBGN3LdRbzs
1KSmJVSBf3FklWmamlR/2GEi9Px6Lj5hIK/+GBfNAqOLYQmGC/Milw0UFwVi0zwl
ECzJtvZ5yugEkBCC6bVcdehhMV6dq0sMRVcpuaBbqhDmk6VQsJJfVSYbnvQySZTc
wyWXRbg0CaI9m4pSH9+vyBidIy15QbnU+pTPPzl5Ij4UgKIhagk+KDrrpqFmftR0
7EgGD5jQEWqGUKqbtKfy0gWQ8j2rGpTMYFmUQQUW76KGRNfXQ5/eBQL7Z9uO+BLp
RFfWhBnTPXP81CBlYzThF0H6jOcVj7Jt5sG10y5bwdxbEJaE
-----END CERTIFICATE-----
Generated at Mon Jan 1 19:17:01 2024 by rpki-client on console-ams.rpki-client.org