Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/UqTwAwB1_B12lXhec4W7nA9j3Bk.roa
File: UqTwAwB1_B12lXhec4W7nA9j3Bk.roa (raw, json)
Hash identifier: JmowswgVPySqZAfc4/gdr2/5PmIu1ZyeEbqACvubLUA=
Subject key identifier: 52:A4:F0:03:00:75:FC:1D:76:95:78:5E:73:85:BB:9C:0F:63:DC:19
Certificate issuer: /CN=3829d131be52810e47c9cbbf83a3ffbd4f7cbdbf
Certificate serial: 0185719E77BDD0110F2AFD737BF10D362A3F
Authority key identifier: 38:29:D1:31:BE:52:81:0E:47:C9:CB:BF:83:A3:FF:BD:4F:7C:BD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCnRMb5SgQ5Hycu_g6P_vU98vb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/UqTwAwB1_B12lXhec4W7nA9j3Bk.roa
Signing time: Mon 02 Jan 2023 08:34:48 +0000
ROA not before: Mon 02 Jan 2023 08:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62350
IP address blocks: 2001:678:f50::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:77:bd:d0:11:0f:2a:fd:73:7b:f1:0d:36:2a:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3829d131be52810e47c9cbbf83a3ffbd4f7cbdbf
Validity
Not Before: Jan 2 08:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52a4f0030075fc1d7695785e7385bb9c0f63dc19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:a0:cc:e3:bd:e4:2b:ad:df:90:96:f1:3a:c9:
c7:27:35:d9:f1:64:fc:28:76:09:e6:e9:e3:1c:c0:
57:d7:50:c5:bc:67:0c:b1:94:bb:19:f2:67:3f:22:
1d:ca:ae:2a:68:3d:66:1b:ea:af:c7:02:d9:6f:ae:
07:b3:f0:78:a5:ac:8b:aa:40:f5:52:9c:f3:65:63:
ce:20:0b:85:21:b3:7f:bf:38:c8:62:37:43:b2:9c:
c8:ba:40:6a:0b:5f:8c:e8:6c:ac:4f:1c:52:ef:ab:
da:f1:23:f9:51:e3:5e:0b:97:54:46:07:58:f8:e4:
a2:ba:be:c9:01:d8:24:d0:74:a2:02:11:14:74:89:
f3:26:52:5f:f2:da:14:d7:bb:12:ab:f8:b1:c7:f8:
ed:06:db:12:4f:3f:61:9d:c3:de:f4:49:5f:73:88:
d0:7d:06:f5:73:01:93:57:23:a7:a6:72:72:02:f6:
20:ec:68:58:5f:c9:7f:42:38:43:5b:ed:14:79:e2:
7c:a7:6a:0b:65:7c:7f:5b:0a:d2:52:53:3e:ed:66:
32:d4:1d:fb:67:e5:96:2c:1b:0f:70:40:9e:ca:b9:
69:cb:80:8c:5e:76:c4:f7:fb:6e:61:8b:2e:26:44:
fe:93:34:14:3a:3b:15:24:17:0d:7c:7a:06:ee:62:
ed:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A4:F0:03:00:75:FC:1D:76:95:78:5E:73:85:BB:9C:0F:63:DC:19
X509v3 Authority Key Identifier:
keyid:38:29:D1:31:BE:52:81:0E:47:C9:CB:BF:83:A3:FF:BD:4F:7C:BD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCnRMb5SgQ5Hycu_g6P_vU98vb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/UqTwAwB1_B12lXhec4W7nA9j3Bk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b1a4e1-877b-4380-bfbf-b038db898b7e/1/OCnRMb5SgQ5Hycu_g6P_vU98vb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f50::/48
Signature Algorithm: sha256WithRSAEncryption
07:24:68:dd:1b:e7:cb:03:7a:94:ff:cf:5a:a8:48:25:7e:b2:
b2:92:fb:7c:8e:c6:1a:f5:1e:11:93:1b:4e:23:33:c8:90:69:
49:0a:de:92:c2:f2:75:1f:5c:e0:f1:d0:94:c5:07:9e:31:bb:
f4:04:d6:71:a6:1d:3b:8a:95:17:52:08:d4:0d:6a:4c:f5:04:
e4:cb:fe:ce:a0:28:b9:81:cb:6e:30:05:12:c3:58:18:b9:f9:
24:b9:ff:5a:17:bb:85:91:3b:b2:ac:32:5f:de:c4:f3:68:0f:
16:bd:03:8b:3f:36:6c:b8:06:ee:f1:14:20:cf:96:ef:95:74:
70:cf:20:9f:4e:1e:6e:7c:11:e1:1b:4a:4f:a8:0a:af:8a:17:
33:51:38:a1:ad:18:42:52:8f:ae:1f:ff:25:14:16:85:a0:83:
31:84:91:ac:52:c5:ab:26:10:63:c8:fd:bb:85:fd:28:c3:99:
d9:86:d8:3f:59:99:ce:28:8f:9a:fe:49:52:65:ae:97:f2:b8:
81:ab:ef:5f:91:da:e9:bd:1d:c3:f9:c4:c0:ea:78:e5:d2:04:
14:8f:92:25:69:f2:0f:a2:d3:cc:b5:36:f8:2a:22:34:4b:df:
2e:b4:52:d7:e9:cf:b7:87:4d:01:7c:1c:8a:9b:b9:61:0f:36:
d5:d2:05:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:15:13 2024 by rpki-client on console.sobornost.net