Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3239393a3a2f34382d3438203d3e203530333338.roa
File: 326130663a383563313a3239393a3a2f34382d3438203d3e203530333338.roa (raw, json)
Hash identifier: tqVKLt5WBGLiozm9KXXYmNOicfIGVXv3Jenrup49XMc=
Subject key identifier: C3:E3:3D:2F:3F:3C:3F:D5:AF:C8:84:67:A7:41:92:35:78:B5:76:47
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 71FE8230E3BC0F4CC28C1B47005A4F0695860395
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3239393a3a2f34382d3438203d3e203530333338.roa
Signing time: Thu 14 Mar 2024 15:17:38 +0000
ROA not before: Thu 14 Mar 2024 15:12:38 +0000
ROA not after: Thu 13 Mar 2025 15:17:38 +0000
asID: 50338
IP address blocks: 2a0f:85c1:299::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:fe:82:30:e3:bc:0f:4c:c2:8c:1b:47:00:5a:4f:06:95:86:03:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Mar 14 15:12:38 2024 GMT
Not After : Mar 13 15:17:38 2025 GMT
Subject: CN=C3E33D2F3F3C3FD5AFC88467A741923578B57647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:94:f1:4c:9e:5a:e6:c2:f6:d8:38:02:2e:b3:
5c:75:d4:8d:cb:1a:bc:eb:47:5c:9d:93:a0:4d:44:
e2:50:da:9a:e3:9c:ef:ae:eb:9b:87:c5:da:df:80:
6a:c7:00:97:47:8c:4f:bf:37:08:35:75:21:3e:c7:
d3:e9:b1:a9:5c:21:c4:fe:47:93:e5:45:41:af:61:
20:e4:6e:53:65:a2:d3:e1:4b:56:63:49:08:c6:24:
0e:31:25:50:34:9b:b6:a8:69:0c:59:55:2d:91:59:
e9:28:24:b4:ab:01:6c:0a:c7:a0:67:2d:71:92:c3:
c2:bc:58:f6:72:0b:8d:ea:07:0c:29:eb:4a:c5:27:
59:92:7b:b2:86:1f:97:ef:0a:e0:95:81:14:ac:ed:
cd:2f:76:7c:be:b2:1a:b9:a3:42:73:f1:15:ce:39:
b3:58:ad:87:5f:f8:e2:60:c9:4b:22:21:45:3e:ae:
6c:58:a6:82:5f:95:d0:b9:38:ae:5b:fc:82:27:43:
43:9f:60:e7:ef:8e:51:d8:af:67:47:57:12:bb:ee:
97:07:23:2b:e3:94:a8:93:5c:94:b7:36:89:1c:68:
db:05:9c:7f:c7:7e:91:a7:9b:11:5a:a5:ef:a4:1d:
a8:b9:c3:e2:b1:2c:38:03:8e:00:bd:5c:4b:8e:4d:
89:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:E3:3D:2F:3F:3C:3F:D5:AF:C8:84:67:A7:41:92:35:78:B5:76:47
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3239393a3a2f34382d3438203d3e203530333338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:299::/48
Signature Algorithm: sha256WithRSAEncryption
3c:4d:e3:e9:50:b8:47:4c:27:16:08:e8:49:c7:9d:0b:54:a9:
10:f2:d9:4e:bd:82:ea:a9:39:41:0d:4c:ed:76:be:7a:7b:8d:
d6:8d:a9:8d:3e:0b:bc:c2:da:0b:7b:1f:0b:be:cd:89:db:19:
d0:b8:07:94:1b:c9:5d:e2:c8:97:02:54:ab:2b:67:5a:90:fd:
6c:43:99:79:ee:04:91:b6:02:c9:dd:39:fe:4a:64:05:17:e8:
ad:27:45:7b:22:60:19:34:a2:13:5a:c8:0b:7c:b0:a5:ea:4b:
9b:5c:17:64:b5:9e:1b:33:ab:42:79:a5:21:df:a9:4c:67:35:
2e:07:d0:43:88:17:5c:fb:23:46:9e:dd:b0:f3:ef:08:f4:0b:
75:c9:72:69:4f:bf:09:8c:77:ca:52:78:f8:17:e0:b4:0e:2f:
68:98:2f:35:a6:dd:c2:14:9c:9d:eb:54:1d:fa:b9:15:92:a0:
76:0e:c7:fe:06:20:f0:0c:9b:22:2c:39:f4:81:2f:36:81:f5:
fc:f2:35:81:12:ce:14:94:32:7f:61:df:1d:34:83:3c:eb:3a:
71:a3:2d:3e:f4:1a:15:4c:54:c5:c5:aa:b9:9f:e1:f3:24:5b:
b4:e5:a5:0e:d8:e4:2b:51:77:2a:bb:a3:62:4a:84:f5:28:66:
c3:0a:cb:2e
-----BEGIN CERTIFICATE-----
MIIFPDCCBCSgAwIBAgIUcf6CMOO8D0zCjBtHAFpPBpWGA5UwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWFlNDQzNzAyOTY1OTUzOWY1NGY5MDBiMzVlNDNiZTA2
YTk0YjM3YjAeFw0yNDAzMTQxNTEyMzhaFw0yNTAzMTMxNTE3MzhaMDMxMTAvBgNV
BAMTKEMzRTMzRDJGM0YzQzNGRDVBRkM4ODQ2N0E3NDE5MjM1NzhCNTc2NDcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCulPFMnlrmwvbYOAIus1x11I3L
GrzrR1ydk6BNROJQ2prjnO+u65uHxdrfgGrHAJdHjE+/Nwg1dSE+x9PpsalcIcT+
R5PlRUGvYSDkblNlotPhS1ZjSQjGJA4xJVA0m7aoaQxZVS2RWekoJLSrAWwKx6Bn
LXGSw8K8WPZyC43qBwwp60rFJ1mSe7KGH5fvCuCVgRSs7c0vdny+shq5o0Jz8RXO
ObNYrYdf+OJgyUsiIUU+rmxYpoJfldC5OK5b/IInQ0OfYOfvjlHYr2dHVxK77pcH
IyvjlKiTXJS3NokcaNsFnH/HfpGnmxFape+kHai5w+KxLDgDjgC9XEuOTYl9AgMB
AAGjggJGMIICQjAdBgNVHQ4EFgQUw+M9Lz88P9WvyIRnp0GSNXi1dkcwHwYDVR0j
BBgwFoAUWuRDcClllTn1T5ALNeQ74GqUs3swDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmMyMGFkZDMtYTg4ZS00YmIyLWE4NGQtNTVkYTIxMjhm
MTk2LzAvNUFFNDQzNzAyOTY1OTUzOUY1NEY5MDBCMzVFNDNCRTA2QTk0QjM3Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1d1UkRjQ2xsbFRuMVQ1QUxOZVE3NEdx
VXMzcy5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmMyMGFkZDMt
YTg4ZS00YmIyLWE4NGQtNTVkYTIxMjhmMTk2LzAvMzI2MTMwNjYzYTM4MzU2MzMx
M2EzMjM5MzkzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTMwMzMzMzM4LnJvYTAY
BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA
AjAJAwcAKg+FwQKZMA0GCSqGSIb3DQEBCwUAA4IBAQA8TePpULhHTCcWCOhJx50L
VKkQ8tlOvYLqqTlBDUztdr56e43WjamNPgu8wtoLex8Lvs2J2xnQuAeUG8ld4siX
AlSrK2dakP1sQ5l57gSRtgLJ3Tn+SmQFF+itJ0V7ImAZNKITWsgLfLCl6kubXBdk
tZ4bM6tCeaUh36lMZzUuB9BDiBdc+yNGnt2w8+8I9At1yXJpT78JjHfKUnj4F+C0
Di9omC81pt3CFJyd61Qd+rkVkqB2Dsf+BiDwDJsiLDn0gS82gfX88jWBEs4UlDJ/
Yd8dNIM86zpxoy0+9BoVTFTFxaq5n+HzJFu05aUO2OQrUXcqu6NiSoT1KGbDCssu
-----END CERTIFICATE-----
Generated at Thu May 23 18:17:04 2024 by rpki-client on console-fra.rpki-client.org