Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3237303a3a2f34342d3434203d3e203232343339.roa
File: 326130663a383563313a3237303a3a2f34342d3434203d3e203232343339.roa (raw, json)
Hash identifier: KET5pF/IHAL5Z9CIf++L88XoBKWFaBqxGEB9bYQAXzc=
Subject key identifier: E2:EC:46:99:81:87:E9:17:8B:19:C4:67:44:F9:A7:5D:C3:5A:E5:FE
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 048874B3371B4434602EF14D66BF1529AED96E3B
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3237303a3a2f34342d3434203d3e203232343339.roa
Signing time: Tue 10 Oct 2023 15:13:28 +0000
ROA not before: Tue 10 Oct 2023 15:08:28 +0000
ROA not after: Tue 08 Oct 2024 15:13:28 +0000
asID: 22439
IP address blocks: 2a0f:85c1:270::/44 maxlen: 44
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:88:74:b3:37:1b:44:34:60:2e:f1:4d:66:bf:15:29:ae:d9:6e:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Oct 10 15:08:28 2023 GMT
Not After : Oct 8 15:13:28 2024 GMT
Subject: CN=E2EC46998187E9178B19C46744F9A75DC35AE5FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:40:08:8a:0b:d6:3b:20:e3:04:7f:a3:ee:9f:
b8:61:ef:75:77:e2:1b:d8:bd:4e:a7:bd:a2:d5:47:
8e:21:cd:ac:21:e7:0e:2a:f6:0f:66:a5:6e:bd:0e:
cd:8c:98:68:51:10:8d:e7:18:1d:21:47:ae:1a:53:
46:af:fd:d8:64:53:9a:50:28:68:a8:81:30:b3:c5:
da:25:0c:5a:3e:5c:46:5f:be:db:d5:06:30:1e:5a:
33:51:21:db:94:7b:b9:77:5b:de:b1:6c:20:eb:c5:
45:b6:09:84:94:22:75:43:e2:87:2c:52:fe:fc:73:
61:3b:70:32:5e:22:c1:09:6c:78:4e:d8:7c:97:ac:
df:12:bc:54:18:b7:54:c8:3f:3d:96:91:64:2e:48:
3a:db:1c:74:fb:83:9c:aa:8d:70:9a:3e:3e:32:a3:
a0:f3:d7:01:72:be:6b:79:ce:94:e8:92:33:30:44:
29:85:c2:19:b9:e5:a5:13:94:29:4b:7f:70:04:48:
cc:b7:bd:f7:8d:1f:12:38:9b:4f:36:c6:84:8f:0d:
73:60:a5:cd:18:22:86:fa:c1:b2:3e:c7:89:00:26:
ef:46:fe:51:12:30:a0:d3:07:83:8f:d0:3a:d1:19:
5d:86:3f:be:86:fd:2e:22:21:3b:ba:8b:3c:98:ed:
0c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:EC:46:99:81:87:E9:17:8B:19:C4:67:44:F9:A7:5D:C3:5A:E5:FE
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3237303a3a2f34342d3434203d3e203232343339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:270::/44
Signature Algorithm: sha256WithRSAEncryption
3f:96:0a:d4:61:d7:d1:06:69:a6:4b:45:2b:25:a1:63:51:5d:
17:cd:e0:ee:62:22:40:c8:67:ee:01:7b:26:0c:87:11:40:e4:
d0:06:14:a7:6f:16:16:30:50:5c:8e:81:63:df:97:be:b8:97:
bb:92:40:1a:81:b1:4c:54:c7:6b:c9:43:a6:18:96:a0:c4:3c:
df:1a:c7:0d:cf:7a:1f:e0:95:7f:bb:37:39:66:c9:28:5e:49:
d1:8b:26:1f:8d:50:e7:c9:15:0f:8d:4d:7d:4b:91:ab:ec:f3:
1f:74:6e:79:90:74:83:8b:75:25:8d:0a:ec:92:bc:90:4b:36:
0e:91:73:95:af:b2:cc:cf:96:b3:35:ca:88:72:36:f7:1f:dc:
9e:a4:b0:eb:1d:62:25:77:82:84:1e:61:a1:94:9f:e2:16:6c:
04:69:3e:3f:b1:8d:bb:7e:4a:c6:67:64:07:d4:85:18:e4:58:
fe:64:83:0c:63:f5:5c:77:a8:71:bf:77:18:3a:16:a4:38:30:
f4:13:1e:cd:14:b5:fd:1f:ab:b7:e7:b5:6b:92:3c:d3:1e:a0:
63:3c:00:17:52:84:55:dd:a6:bd:e9:e3:37:74:97:03:81:8d:
2e:86:df:34:84:f3:f0:96:9e:9b:04:e0:49:dc:6d:e9:ef:47:
ac:3c:bb:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:10 2024 by rpki-client on console-ams.rpki-client.org