Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a32323a3a2f34382d3438203d3e20323036363238.roa
File: 326130663a383563313a32323a3a2f34382d3438203d3e20323036363238.roa (raw, json)
Hash identifier: iNs5l7KGTfXMzg5o3m1tgyEoiWd8qGHZQ9t+1BNhN2o=
Subject key identifier: D4:CE:C3:90:FB:38:85:D8:B6:9A:12:0E:05:BA:E2:D6:AF:F7:0B:96
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 6AF43A7EAD9EAC8C755ACCC7E98BCB3E2E062428
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a32323a3a2f34382d3438203d3e20323036363238.roa
Signing time: Tue 10 Oct 2023 15:15:09 +0000
ROA not before: Tue 10 Oct 2023 15:10:09 +0000
ROA not after: Tue 08 Oct 2024 15:15:09 +0000
asID: 206628
IP address blocks: 2a0f:85c1:22::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:f4:3a:7e:ad:9e:ac:8c:75:5a:cc:c7:e9:8b:cb:3e:2e:06:24:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Oct 10 15:10:09 2023 GMT
Not After : Oct 8 15:15:09 2024 GMT
Subject: CN=D4CEC390FB3885D8B69A120E05BAE2D6AFF70B96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:17:90:11:85:77:55:75:2c:98:00:10:f8:e7:
d8:a5:e3:80:12:57:35:5b:09:6f:96:0a:90:4b:3b:
a1:17:b0:ee:23:35:cc:2f:c2:83:6f:f8:41:60:c8:
81:4e:cb:4f:a5:e1:b5:cd:69:a6:93:e5:ab:3e:2c:
04:10:40:cb:36:76:d2:ca:69:27:3f:21:1f:0e:52:
f3:82:82:a1:a4:f5:95:9f:41:fe:d5:b0:70:a4:93:
0d:97:e4:00:ae:c7:d2:35:4e:82:1d:dc:68:d6:d0:
70:6f:e7:02:6b:f1:fd:7f:dc:a0:31:69:ef:6f:19:
7e:8a:b9:03:e0:bb:bf:31:6d:03:ab:6c:df:4a:bf:
c6:5c:4e:d0:fd:3b:cc:cb:19:f5:cc:66:55:2f:8f:
54:3a:0c:e4:4d:94:21:32:62:96:40:19:fc:0b:56:
83:ec:01:02:0e:92:9e:c6:e8:75:74:46:77:ae:77:
3d:a5:69:4d:d9:e3:f2:c4:84:22:de:d3:f0:87:7d:
2b:28:37:91:40:ef:75:22:68:a0:d9:3b:f7:63:17:
eb:8f:9f:ea:4f:f2:53:3a:79:77:eb:33:be:d7:1a:
04:cb:4a:8b:b0:11:82:3f:bf:2e:0c:d5:94:7f:ea:
4c:1d:b2:35:dd:40:15:c6:97:1e:72:24:13:00:0e:
0c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:CE:C3:90:FB:38:85:D8:B6:9A:12:0E:05:BA:E2:D6:AF:F7:0B:96
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a32323a3a2f34382d3438203d3e20323036363238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:22::/48
Signature Algorithm: sha256WithRSAEncryption
5e:89:2d:48:8d:32:fb:92:c9:de:6e:fa:57:38:dd:b0:a0:d9:
2b:d3:a0:c3:01:cb:b5:e7:ac:7a:62:9a:a2:2c:de:df:f7:92:
30:86:3e:55:7f:76:7b:17:e5:2b:26:b5:21:4f:16:30:cb:6d:
10:21:44:5b:8a:51:6b:cf:e3:82:53:3f:b9:e8:41:c9:d2:4b:
34:6d:f3:1c:0b:66:16:fc:3a:10:c1:84:97:f5:c0:8b:8c:6c:
01:99:9c:c8:3c:b3:6d:03:e6:68:3d:ad:aa:7e:cd:ce:0a:f7:
6a:4d:af:c2:49:cb:37:25:1c:e6:d6:23:8f:da:74:ec:74:f3:
f8:5c:b7:f2:78:55:3d:b5:df:59:c7:3e:bc:a5:ee:51:36:ca:
e4:0b:ce:48:2c:73:2a:09:65:3c:ab:5f:a7:e2:01:92:f9:56:
15:3e:8e:f9:15:e5:90:69:c4:a0:4f:f5:14:7e:fb:37:91:af:
17:80:ac:dc:93:75:9a:c0:d6:cf:08:ec:7e:d8:29:91:39:02:
3b:bc:94:10:f7:64:83:8f:ac:c5:b7:c5:31:3f:a8:b4:6e:56:
b7:e0:a3:25:f7:d8:e9:22:cc:e6:0a:84:c0:ab:ab:d3:12:41:
3d:da:e3:2f:4b:c2:7a:2d:0e:1a:dd:d2:81:05:0e:0d:0b:f8:
15:be:08:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 18:17:04 2024 by rpki-client on console-fra.rpki-client.org