Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3230303a3a2f34342d3438203d3e20323039313838.roa
File: 326130663a383563313a3230303a3a2f34342d3438203d3e20323039313838.roa (raw, json)
Hash identifier: KWLXt5tLK5VoKOJEZXwhufDwOt6iWiJICcn/XuJ55kw=
Subject key identifier: 64:71:7D:82:19:4F:FC:48:7F:5F:4D:14:61:D3:CA:FE:8D:21:99:A9
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 152780FF9305C49D1FA5435827EB8B735F55D541
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3230303a3a2f34342d3438203d3e20323039313838.roa
Signing time: Tue 10 Oct 2023 15:18:14 +0000
ROA not before: Tue 10 Oct 2023 15:13:14 +0000
ROA not after: Tue 08 Oct 2024 15:18:14 +0000
asID: 209188
IP address blocks: 2a0f:85c1:200::/44 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:27:80:ff:93:05:c4:9d:1f:a5:43:58:27:eb:8b:73:5f:55:d5:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Oct 10 15:13:14 2023 GMT
Not After : Oct 8 15:18:14 2024 GMT
Subject: CN=64717D82194FFC487F5F4D1461D3CAFE8D2199A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:3f:fc:81:83:d4:8a:86:25:4a:20:f3:de:52:
89:b2:1f:78:c7:6f:79:8a:ec:4f:cd:e5:60:0e:46:
81:f7:8c:c6:ff:dd:c8:10:7b:bc:13:53:e5:26:6b:
75:83:d8:06:fd:e9:03:8c:5a:b7:6f:2e:b2:5a:37:
73:8e:f0:38:18:b0:e3:5e:ec:ba:0c:9b:ea:a3:62:
f8:c0:8f:ee:34:45:ca:81:fc:1d:eb:2a:07:54:65:
7a:b0:e4:dc:a1:a7:69:a9:88:fa:85:25:d2:fa:5d:
b9:73:b1:39:50:bd:46:6a:bf:31:ab:87:ca:e0:32:
74:88:36:76:e4:32:8f:99:e5:c9:9b:a9:61:f5:6c:
47:1a:2b:05:e0:dd:8e:19:a5:39:3f:79:48:8c:6f:
f1:f1:4a:41:ca:08:b8:c2:94:d7:ac:30:ec:cd:bd:
bb:4e:cb:69:a7:ac:c1:e7:2d:f3:27:93:53:62:9f:
01:7e:6e:35:71:9b:57:76:41:2b:00:35:48:63:36:
a3:ad:88:5e:21:3f:a6:c1:35:b2:5f:3f:a7:7d:8c:
e4:e9:d6:e0:25:8c:33:82:ea:a1:85:52:3a:59:d2:
d0:bf:6b:30:ba:83:e6:f8:fb:00:ce:9c:ae:c3:d0:
a9:51:e1:7c:2a:22:ed:2d:cf:bf:02:ec:02:25:69:
e7:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:71:7D:82:19:4F:FC:48:7F:5F:4D:14:61:D3:CA:FE:8D:21:99:A9
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3230303a3a2f34342d3438203d3e20323039313838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:200::/44
Signature Algorithm: sha256WithRSAEncryption
52:df:83:e4:b2:40:ce:a3:fb:58:5a:cc:ff:27:92:50:f3:39:
6b:36:8e:cf:38:7b:11:b0:41:47:f2:76:5a:d1:7f:51:40:6b:
54:e6:27:aa:39:4e:a0:f0:35:12:0a:16:b5:30:14:42:fd:e3:
0f:75:fb:64:67:eb:05:2a:60:cf:6e:5b:9e:04:bf:81:56:cd:
b9:b6:45:6e:9e:57:ce:4c:3b:9e:7a:a9:be:37:4b:a5:89:34:
f7:c0:4c:eb:25:d6:ea:0b:b3:06:a1:38:c7:1e:71:c7:25:09:
77:16:cf:0b:66:80:d7:84:6d:3c:20:b8:d0:a5:19:fc:a6:87:
81:60:fc:7e:76:7c:7f:a0:cc:69:df:3c:b1:c7:0c:5e:29:06:
98:52:a5:b7:d7:98:f6:95:e8:5c:00:e8:4e:65:a6:4f:24:af:
88:f8:f9:0b:70:1c:4a:70:c2:a5:94:e5:10:99:b3:74:36:bc:
35:12:25:e7:0d:e6:d7:66:55:fa:06:52:ad:1a:0b:4f:f8:71:
bf:ad:5a:8f:e4:7f:99:d0:df:8f:13:28:da:9c:d0:5c:d4:6e:
8c:4e:8a:3d:4e:68:69:6d:09:de:56:40:1a:28:1b:d9:18:2f:
3e:16:ce:1a:66:15:c8:72:c2:a9:6f:10:76:17:66:da:0c:53:
a0:10:c2:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 21:03:47 2024 by rpki-client on console-ams.rpki-client.org