Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3237303a3a2f34342d3434203d3e203536363535.roa
File: 326130663a383563313a3237303a3a2f34342d3434203d3e203536363535.roa (raw, json)
Hash identifier: dlNbPVZHwJxE35GqyzCFDuQ8IP/F3xtISlj8sCg1wVM=
Subject key identifier: 55:79:D0:2D:14:11:9B:AA:57:D7:3A:B9:01:D1:14:25:C8:C1:DA:77
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 7B6AF4DBE434866319AF1B10B21B9A996619DD1F
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3237303a3a2f34342d3434203d3e203536363535.roa
Signing time: Tue 10 Oct 2023 15:14:02 +0000
ROA not before: Tue 10 Oct 2023 15:09:02 +0000
ROA not after: Tue 08 Oct 2024 15:14:02 +0000
asID: 56655
IP address blocks: 2a0f:85c1:270::/44 maxlen: 44
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:6a:f4:db:e4:34:86:63:19:af:1b:10:b2:1b:9a:99:66:19:dd:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Oct 10 15:09:02 2023 GMT
Not After : Oct 8 15:14:02 2024 GMT
Subject: CN=5579D02D14119BAA57D73AB901D11425C8C1DA77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:90:15:df:99:16:1e:a9:b0:bc:99:55:20:fe:
53:1c:92:e5:2e:10:35:c2:90:27:ef:12:9b:c2:73:
cf:2e:0e:3e:0c:04:d3:bf:70:d6:e2:30:52:6b:fc:
d5:21:75:9c:3b:5f:09:78:21:32:9b:97:2a:60:8d:
5f:6a:a3:5d:cd:14:37:81:32:a8:75:8e:b1:5e:f1:
ba:a7:51:a9:c0:ac:c9:17:3d:aa:22:d3:18:fd:27:
10:c3:d3:ca:03:f0:23:59:cf:b2:e1:fc:ff:c6:de:
61:bf:98:f5:b3:f4:3a:67:c1:8c:7e:ef:01:17:73:
5d:c1:55:c4:18:5c:c3:a8:59:33:50:db:aa:e6:6f:
06:f4:99:e5:bb:72:9e:1b:75:c7:d6:48:9e:2e:f5:
12:eb:7e:23:80:81:bb:e4:87:e1:13:53:65:bb:65:
45:d1:a6:86:8a:e8:1f:df:ba:8f:89:d2:c3:c7:51:
ac:6a:29:63:db:92:87:45:24:7c:5d:23:cf:28:01:
e5:f9:f4:d7:22:f2:07:7f:4f:59:3d:93:23:3e:0d:
e3:d5:d4:32:ed:95:4b:9b:2b:65:ce:94:c4:fa:e9:
22:1b:4f:b5:84:4e:52:d2:5d:e6:cf:fd:17:fd:0d:
74:37:b7:84:bf:9a:ec:1a:42:46:68:e3:34:f6:3b:
11:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:79:D0:2D:14:11:9B:AA:57:D7:3A:B9:01:D1:14:25:C8:C1:DA:77
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3237303a3a2f34342d3434203d3e203536363535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:270::/44
Signature Algorithm: sha256WithRSAEncryption
ac:15:90:b3:ca:bc:b6:52:62:a7:00:0a:96:5b:64:32:5b:fe:
a7:2a:20:8b:f3:d1:dc:64:49:77:c8:73:29:dc:07:33:83:87:
84:6e:af:52:49:7c:57:fd:3d:e0:2d:14:d1:6b:42:1c:6a:9a:
46:a8:0c:43:21:81:0c:88:42:5c:a8:da:76:45:d5:70:a9:77:
91:a4:ab:ae:c6:26:3f:90:df:88:6c:7b:ee:50:c1:d4:90:e8:
e1:47:83:a1:0a:0b:77:42:cc:d2:ee:e1:30:b1:13:16:37:a8:
f7:0e:e3:84:d9:06:bf:c0:a2:6a:d2:41:02:17:4e:2d:f0:34:
a8:4a:50:28:10:41:05:39:fd:87:7b:d3:b6:39:f1:f1:ca:0f:
ff:c7:fd:d8:4c:7f:82:f1:a1:5a:2a:1a:12:06:f4:84:c1:f1:
32:6b:c9:04:48:e5:ac:3c:1c:80:4b:1a:a1:af:e3:9c:b3:31:
0c:81:3c:06:71:78:22:c9:ae:bd:98:3d:8e:04:74:a7:e3:50:
be:55:81:1b:47:33:f4:39:74:f4:5f:fb:d7:9f:0f:cc:cd:87:
47:a3:97:68:7d:36:be:63:17:e4:36:6e:d7:97:75:b9:dd:9d:
c3:e9:da:d7:be:b5:6a:ef:8a:b9:dd:34:12:03:a0:14:31:07:
5c:ef:79:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 18:17:04 2024 by rpki-client on console-fra.rpki-client.org