Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a313a3a2f34382d3438203d3e20323135333638.roa
File: 326130663a383563313a313a3a2f34382d3438203d3e20323135333638.roa (raw, json)
Hash identifier: hyDXcTfvo5kDPKUQ9r7veeO+cU7HHQcPJIR9MMuvibQ=
Subject key identifier: DF:9C:7A:CE:04:F8:8D:F6:FB:D9:74:94:3E:5B:CB:9E:DE:F6:11:C2
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 0A203BA3F6CF03177EAD1F9DCB830C7F227DE946
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a313a3a2f34382d3438203d3e20323135333638.roa
Signing time: Wed 06 Mar 2024 00:13:05 +0000
ROA not before: Wed 06 Mar 2024 00:08:05 +0000
ROA not after: Wed 05 Mar 2025 00:13:05 +0000
asID: 215368
IP address blocks: 2a0f:85c1:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:20:3b:a3:f6:cf:03:17:7e:ad:1f:9d:cb:83:0c:7f:22:7d:e9:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Mar 6 00:08:05 2024 GMT
Not After : Mar 5 00:13:05 2025 GMT
Subject: CN=DF9C7ACE04F88DF6FBD974943E5BCB9EDEF611C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:73:78:2b:a5:5d:5d:de:4c:d4:fb:73:f7:cc:
d5:a2:84:9a:e6:14:19:00:3b:75:87:1f:76:09:7b:
2f:f0:b5:dc:18:f3:30:d1:4f:bf:3d:8d:0a:6d:1b:
d2:58:52:0b:b6:a2:43:31:a5:0e:f8:c9:2a:31:55:
57:c5:2e:26:e1:8d:4a:d7:dc:a1:9a:40:af:63:be:
51:89:5b:ab:21:13:2d:cc:a4:f3:94:5b:3d:20:d2:
2a:58:e5:4f:8c:41:be:22:5f:09:5c:b9:85:84:2e:
46:79:b3:b0:61:7b:d9:d1:af:35:96:8e:4e:55:e3:
f6:64:0e:e2:a5:ef:f4:7c:4b:41:7c:aa:74:40:8b:
8b:0f:31:01:f5:16:80:6d:c4:55:d8:47:09:23:09:
a0:e2:c7:69:f2:f1:61:62:e6:b3:b5:8a:5b:43:1f:
93:a8:0c:25:9d:a7:01:25:41:11:e3:25:5a:6f:f3:
05:34:8d:76:47:c2:48:3d:94:bc:73:a8:04:fa:ae:
07:b8:87:6c:7c:7c:ae:74:f8:a9:52:0d:54:e5:3b:
22:98:a2:0b:ce:b2:89:46:ec:eb:34:34:21:e9:03:
6f:fd:de:da:29:cf:1c:2f:2c:b4:ef:2f:92:bf:42:
3a:73:f7:d1:d4:a2:0c:35:3b:b9:2a:90:85:96:bc:
53:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:9C:7A:CE:04:F8:8D:F6:FB:D9:74:94:3E:5B:CB:9E:DE:F6:11:C2
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a313a3a2f34382d3438203d3e20323135333638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:1::/48
Signature Algorithm: sha256WithRSAEncryption
91:94:e5:f4:ef:70:26:51:8a:ee:a5:e6:d7:60:3b:ab:fe:9c:
43:cb:ba:26:1f:63:1a:cb:51:3c:0c:4d:52:0e:6b:0e:00:f1:
5d:21:b8:90:39:62:20:1d:45:53:ef:fd:b6:48:fa:ce:c9:fa:
eb:59:df:7b:87:6f:06:58:c6:1c:bb:69:74:50:3c:ae:95:ac:
c6:51:39:45:1c:41:6d:5f:72:d7:fa:a5:01:4f:95:61:56:ac:
db:e5:55:c8:29:03:89:72:48:ae:00:bb:2e:c1:3c:3e:e8:4e:
34:a4:0a:03:ad:9e:f4:af:c5:0c:c4:50:fc:60:e2:5e:14:f0:
fe:f9:95:ca:49:ab:c0:b2:08:e0:31:10:5c:f4:80:0f:3b:f2:
d2:03:b9:2a:43:4b:43:2b:c3:51:c4:90:37:fd:4b:68:e0:46:
ca:31:2c:7d:a9:a0:d9:0f:5f:ad:fb:f3:cf:52:14:5a:70:20:
7d:5c:45:34:75:cf:b5:99:07:4d:27:e7:88:d1:f4:d6:e5:85:
24:f7:b9:b5:bf:a8:e7:a8:b9:43:00:f7:85:70:21:10:f2:9a:
f0:c7:19:83:2d:6f:f2:77:45:35:fb:5f:a6:03:19:8b:d4:4f:
87:76:a0:0c:ba:5d:e9:75:d1:2e:88:e7:0b:6c:1d:59:a8:60:
4f:10:0e:06
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu May 23 21:03:47 2024 by rpki-client on console-ams.rpki-client.org