Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3236303a3a2f34342d3438203d3e20323035333938.roa
File: 326130663a383563313a3236303a3a2f34342d3438203d3e20323035333938.roa (raw, json)
Hash identifier: 7pSPmgrf0j15eWh8dw0g/MXceOhkbNSks3DJs4HPnaQ=
Subject key identifier: 91:66:3E:16:76:D8:9A:B5:B6:AC:10:A9:21:F7:72:4A:C7:83:F7:FC
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 6895F9CF80FEBC107A0A616151A261F382C082C8
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3236303a3a2f34342d3438203d3e20323035333938.roa
Signing time: Tue 10 Oct 2023 15:14:30 +0000
ROA not before: Tue 10 Oct 2023 15:09:30 +0000
ROA not after: Tue 08 Oct 2024 15:14:30 +0000
asID: 205398
IP address blocks: 2a0f:85c1:260::/44 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:95:f9:cf:80:fe:bc:10:7a:0a:61:61:51:a2:61:f3:82:c0:82:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Oct 10 15:09:30 2023 GMT
Not After : Oct 8 15:14:30 2024 GMT
Subject: CN=91663E1676D89AB5B6AC10A921F7724AC783F7FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:d5:71:18:f5:bd:15:4c:63:bd:b1:2a:00:74:
c2:ad:0d:de:e0:a5:b2:a9:1a:fa:bc:32:b7:44:a4:
d0:66:f1:d3:70:1e:1f:00:1e:a2:53:c4:de:66:54:
e0:e7:8f:44:92:18:6d:89:48:b4:84:68:cd:88:4d:
da:cc:9f:1a:0a:0a:7f:bd:8d:9c:c3:b5:95:0c:99:
92:2f:b1:f3:f2:cf:2b:8c:11:97:a8:49:32:4d:63:
aa:2a:47:a6:0b:63:ff:cc:57:80:12:a9:8a:94:c1:
34:a6:20:ce:f3:ce:1e:b4:9e:35:67:b7:a3:fb:76:
88:bf:f1:c8:76:d1:69:91:17:a2:d9:62:f4:a1:fb:
b9:c2:12:32:66:d4:9f:8b:08:0c:29:45:5e:79:d4:
04:d4:ec:ee:0d:81:9b:5a:5d:ae:ef:cf:fe:10:fe:
66:23:18:fd:29:e3:a4:9b:47:15:48:57:51:c2:39:
50:e9:d7:23:5e:4f:77:d1:f3:18:b0:b3:d4:bd:87:
1e:31:61:4f:de:4d:21:83:d9:76:6b:4b:e8:97:d4:
40:e8:ff:a7:40:4e:f4:d4:6f:12:e5:58:6e:8f:27:
93:0a:f7:e7:1a:b2:ae:ac:23:b6:d5:66:99:43:2d:
1f:11:04:ae:11:80:fd:c1:d8:16:7c:08:fd:9e:39:
e9:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:66:3E:16:76:D8:9A:B5:B6:AC:10:A9:21:F7:72:4A:C7:83:F7:FC
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3236303a3a2f34342d3438203d3e20323035333938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:260::/44
Signature Algorithm: sha256WithRSAEncryption
96:c3:21:82:c5:b4:48:95:e2:1d:9e:48:e0:aa:a7:23:44:93:
05:23:14:9f:28:9f:31:8f:20:0a:8d:bb:72:a0:60:7d:e2:42:
1a:9e:04:0d:af:f9:94:51:72:b0:4e:26:d1:2b:0a:d1:66:e1:
0f:8b:42:0e:51:8d:b2:b2:76:73:20:aa:52:9f:bc:2d:d9:c7:
c1:03:76:74:95:67:71:fd:27:94:67:23:1a:05:11:d0:ca:50:
f2:ad:fa:a6:6f:81:f5:8a:8e:ad:e1:e7:37:f8:78:ce:2c:e4:
3c:40:d8:4b:15:51:14:13:da:42:ef:b4:35:bd:fc:dd:e3:72:
15:ed:bd:7a:77:c0:a6:c9:3d:73:fa:7b:d8:ae:9c:e2:ab:6b:
2f:f6:cf:82:1b:42:af:94:59:0e:f2:57:b9:c8:b9:d8:d3:f3:
5f:f3:98:4a:3b:b9:d4:9f:fe:f7:c4:84:ec:13:ce:a3:77:80:
fa:8c:e9:60:cc:20:99:fe:f3:c5:91:79:5f:d5:17:3d:02:e4:
eb:71:d8:e7:8e:61:89:05:89:4e:6f:f3:b8:fb:16:73:7a:a8:
26:63:cb:7c:5b:33:32:6c:08:e6:75:d6:95:39:2a:2f:88:87:
4d:b3:80:ce:f2:0e:42:70:6c:4a:6d:0c:48:57:ee:52:df:93:
3e:76:83:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 18:17:04 2024 by rpki-client on console-fra.rpki-client.org