Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a32333a3a2f34382d3438203d3e20323131323234.roa
File: 326130663a383563313a32333a3a2f34382d3438203d3e20323131323234.roa (raw, json)
Hash identifier: voSUk18Lv7SkOhFIJRrohr0twKor03uLMkdkYejnsHU=
Subject key identifier: DE:64:2B:98:F0:B6:12:B5:0D:EB:C5:57:F2:F1:BD:A0:BE:A4:D3:25
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 498A7F65D66AD7F86F2F1C5C8FD0DB53A04162B2
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a32333a3a2f34382d3438203d3e20323131323234.roa
Signing time: Tue 10 Oct 2023 15:19:43 +0000
ROA not before: Tue 10 Oct 2023 15:14:43 +0000
ROA not after: Tue 08 Oct 2024 15:19:43 +0000
asID: 211224
IP address blocks: 2a0f:85c1:23::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:8a:7f:65:d6:6a:d7:f8:6f:2f:1c:5c:8f:d0:db:53:a0:41:62:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Oct 10 15:14:43 2023 GMT
Not After : Oct 8 15:19:43 2024 GMT
Subject: CN=DE642B98F0B612B50DEBC557F2F1BDA0BEA4D325
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7b:34:3c:9d:cf:75:0d:69:cc:77:30:44:90:
51:f0:52:a9:e1:39:2f:a5:39:a1:58:d3:3d:57:0a:
51:3d:2c:61:7b:3f:7c:18:a9:b6:9d:4c:28:fe:b7:
f2:da:72:29:08:b8:10:da:18:05:f2:43:52:17:8e:
f2:58:55:6a:29:cc:ed:d3:7e:c7:0c:64:46:ea:f5:
69:a1:a1:86:e8:2c:d2:da:50:92:82:f9:24:d0:d9:
57:9c:ae:02:4c:12:37:78:d4:0d:5a:fc:58:af:9e:
d5:46:f6:e4:28:42:75:ca:d8:21:68:45:c1:be:fb:
8f:b8:97:05:5b:b6:df:fc:b4:41:eb:8e:1a:94:97:
74:c6:01:14:83:e9:7f:7d:65:18:96:9e:5a:ad:ce:
af:45:9f:fc:20:57:93:79:9f:e3:3f:df:0b:d9:83:
0f:cf:86:52:3e:a1:60:a8:26:3e:d1:db:21:ca:8f:
55:fc:5e:6d:41:67:a8:18:52:03:d0:a8:7e:8a:29:
07:fd:b4:c5:f8:cf:fa:cb:7a:a8:c3:03:2d:75:c8:
19:54:8a:0d:ba:f2:0c:c7:22:3b:bd:ba:17:74:19:
55:9e:b4:5a:10:65:e3:2c:f8:b6:b8:f0:d7:46:a6:
1e:83:44:5d:f1:47:b2:20:73:5b:2b:44:04:01:75:
23:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:64:2B:98:F0:B6:12:B5:0D:EB:C5:57:F2:F1:BD:A0:BE:A4:D3:25
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a32333a3a2f34382d3438203d3e20323131323234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:23::/48
Signature Algorithm: sha256WithRSAEncryption
0d:4e:93:03:e8:8a:d2:9a:05:fd:13:14:5a:19:9d:b6:26:34:
13:5c:8c:e8:96:d3:95:72:ce:ae:9d:7a:91:af:34:22:b9:ab:
20:ae:0b:e4:95:52:51:b2:ee:29:b4:c8:dd:ed:92:d1:2f:f8:
19:d7:be:1f:01:84:14:35:31:31:e0:4b:6c:47:76:81:f3:a0:
e6:b6:0e:f6:99:46:72:21:91:a5:91:1b:b9:86:33:47:c2:a3:
f0:60:ba:1b:48:bd:57:5c:2a:2b:a0:67:a4:a5:2f:33:46:8f:
12:43:82:48:03:f1:70:f9:c2:11:b6:17:7c:05:23:6e:ce:e8:
b1:37:c1:df:2c:f6:64:97:9b:6d:7a:a0:7a:02:5f:58:3e:19:
cb:38:f0:bb:21:a7:ed:bf:a3:e8:75:e6:ad:3c:40:0b:d0:bd:
95:fe:fa:1d:81:63:56:d6:84:25:e4:6e:d0:2a:78:5b:31:2d:
e8:ea:52:78:2e:4e:4a:73:f9:d1:8d:3c:52:bd:18:21:e0:c8:
8f:e7:a8:c0:1c:e0:70:ef:17:40:8f:eb:c1:79:aa:d6:f2:c9:
66:e7:37:a0:1c:75:81:77:68:21:cc:ff:4c:02:ac:e3:1a:ae:
f4:64:88:85:20:6d:b6:ce:37:21:e4:f6:85:19:cb:18:0a:8a:
e0:bf:13:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org