Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a32393a3a2f34382d3438203d3e20323130333736.roa
File: 326130663a383563313a32393a3a2f34382d3438203d3e20323130333736.roa (raw, json)
Hash identifier: HoXcWdUva9gJgwTb+OEAqEOdE3VP0NGTOWvm0o2IZ5E=
Subject key identifier: 30:6E:E9:35:36:8E:EB:E4:4F:44:F9:47:64:F9:78:9C:33:2C:C6:C1
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 3A18B0DB45B4D2575FD0A3E82D1B31F20769F333
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a32393a3a2f34382d3438203d3e20323130333736.roa
Signing time: Tue 10 Oct 2023 15:19:17 +0000
ROA not before: Tue 10 Oct 2023 15:14:17 +0000
ROA not after: Tue 08 Oct 2024 15:19:17 +0000
asID: 210376
IP address blocks: 2a0f:85c1:29::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:18:b0:db:45:b4:d2:57:5f:d0:a3:e8:2d:1b:31:f2:07:69:f3:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Oct 10 15:14:17 2023 GMT
Not After : Oct 8 15:19:17 2024 GMT
Subject: CN=306EE935368EEBE44F44F94764F9789C332CC6C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d3:3d:72:20:f7:35:86:77:36:8c:b0:0b:1a:
27:f9:12:70:d7:06:3e:12:05:79:97:19:f2:29:20:
69:61:7c:f2:83:84:3a:73:ab:95:27:13:c7:0c:1d:
13:0d:59:62:6f:be:00:9b:37:25:29:72:70:bd:ff:
59:e4:72:90:4c:4a:4f:d1:5c:04:d1:82:fa:16:df:
2d:54:82:77:4d:e6:82:07:98:ae:b6:3b:c9:74:41:
64:a0:65:51:2a:b9:2c:3c:e8:9c:1f:f5:43:cc:86:
5f:cd:2b:34:dc:f1:8e:f6:40:f9:2a:a5:f1:64:b7:
74:66:c6:1d:36:19:b5:dc:ca:a9:c6:36:58:75:17:
e0:f3:7f:1f:36:70:b4:13:ed:50:5f:c6:c5:3e:e0:
e2:83:b4:d3:6b:63:8b:95:fc:b4:3d:31:c2:79:77:
33:74:b9:fe:a3:ec:c2:58:69:79:d9:4d:40:a2:e7:
ec:ed:22:2b:12:c4:6c:33:c8:5d:ba:ac:9d:ca:06:
55:22:f3:02:fd:c5:56:a5:bd:9c:e8:51:b2:f7:4b:
3b:0c:c2:1a:06:d9:43:ba:d0:27:5b:67:6a:2d:7e:
3b:73:cf:09:65:6a:c2:82:6b:7a:e3:78:79:cd:92:
1b:ca:13:e1:48:8e:f5:f9:b8:ee:35:8a:86:e3:d6:
57:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:6E:E9:35:36:8E:EB:E4:4F:44:F9:47:64:F9:78:9C:33:2C:C6:C1
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a32393a3a2f34382d3438203d3e20323130333736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:29::/48
Signature Algorithm: sha256WithRSAEncryption
6d:41:dd:cf:09:db:7d:c2:d2:dc:df:15:56:84:9f:49:2c:b1:
e5:07:d5:18:dc:8d:8f:42:e1:ae:6b:e2:52:cd:f6:dd:10:e7:
1a:00:62:c8:db:40:b3:ee:02:5d:db:4c:74:3e:9c:63:7e:8a:
19:87:71:d9:6e:b3:55:ef:86:67:57:d0:9f:fa:c0:7f:03:0d:
27:0c:aa:26:d3:cf:14:2a:5f:ec:7f:ce:82:09:be:6c:8a:57:
62:0d:62:d6:18:ba:c4:c9:ef:38:81:8d:2b:2b:0b:60:82:25:
42:0e:c3:62:1d:90:df:d8:34:39:75:bb:a4:be:5c:c6:2d:2b:
6e:a6:fd:85:df:cf:44:20:43:d0:a5:4e:f8:59:f4:d8:e5:f9:
d5:84:f6:2b:c8:a3:0d:bc:20:df:de:87:d4:8a:ac:f7:f2:be:
af:06:de:65:e8:ba:78:40:bd:87:57:94:02:0b:4a:3a:58:82:
54:a4:d0:5f:57:ca:15:fc:24:de:24:62:e7:10:71:39:92:9f:
18:42:22:f8:70:82:fa:bf:b8:10:b8:12:bc:8d:97:b3:7a:1e:
93:cf:23:25:6e:bf:78:68:68:0b:51:ac:42:2b:12:6b:b7:1f:
97:22:98:bc:25:93:39:46:71:63:b0:57:ad:ef:21:80:3a:d0:
f2:01:ad:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 18:17:04 2024 by rpki-client on console-fra.rpki-client.org