Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3332373a3a2f34382d3438203d3e203434383232.roa
File: 326130663a383563313a3332373a3a2f34382d3438203d3e203434383232.roa (raw, json)
Hash identifier: X2rAxRFmj2bYBeF0naiK+MC/hijWKzmPi9z+LiTuHvs=
Subject key identifier: CC:EC:41:9C:3A:15:38:77:A2:17:19:9D:98:B7:9B:EB:C6:FC:D2:67
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 39AF6C914104D281038976D6B87E5DDD4FA1A223
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3332373a3a2f34382d3438203d3e203434383232.roa
Signing time: Sun 19 May 2024 16:14:59 +0000
ROA not before: Sun 19 May 2024 16:09:59 +0000
ROA not after: Sun 18 May 2025 16:14:59 +0000
asID: 44822
IP address blocks: 2a0f:85c1:327::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:af:6c:91:41:04:d2:81:03:89:76:d6:b8:7e:5d:dd:4f:a1:a2:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: May 19 16:09:59 2024 GMT
Not After : May 18 16:14:59 2025 GMT
Subject: CN=CCEC419C3A153877A217199D98B79BEBC6FCD267
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:04:70:b3:d5:f3:af:72:96:6e:d8:67:3d:12:
8a:80:3e:1e:c8:73:ea:0f:84:56:da:ef:c1:66:23:
47:40:a4:1f:82:50:85:c3:bc:db:82:e5:53:62:6f:
31:d1:97:49:f0:77:32:7f:3d:f3:75:7e:0e:66:99:
e8:c1:0e:1e:78:86:90:1e:5a:3c:48:ef:17:b0:6c:
67:17:a4:5f:d8:d8:7b:b3:da:6a:44:49:6e:45:47:
17:f1:40:11:37:bd:f1:2c:07:01:45:60:1f:0c:45:
ee:f7:19:ad:77:ea:81:07:22:d5:ed:c0:49:0f:98:
61:90:df:63:ec:c8:1c:98:2b:d5:d0:3a:b9:42:d1:
08:2a:49:fc:c7:d0:14:79:5d:6d:23:aa:59:ea:6f:
3d:4e:8b:b4:dc:ce:31:b2:b9:3c:6f:9d:3f:3d:be:
40:7b:77:df:90:00:cc:ac:96:12:58:5a:b9:fe:9d:
c0:e1:ac:28:c5:bf:6c:07:b7:af:63:08:19:4d:0d:
1a:3e:ad:a2:78:3a:ce:d2:81:ce:b2:1e:0b:08:19:
ad:66:2f:59:b3:d1:29:a6:18:73:64:71:28:cd:df:
9f:62:b5:e5:26:f2:b3:e8:48:14:ae:40:4a:01:35:
ca:f0:23:27:39:d5:2c:2a:fd:56:36:1e:7a:79:cb:
ae:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:EC:41:9C:3A:15:38:77:A2:17:19:9D:98:B7:9B:EB:C6:FC:D2:67
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3332373a3a2f34382d3438203d3e203434383232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:327::/48
Signature Algorithm: sha256WithRSAEncryption
ae:79:ed:b9:99:3b:13:55:70:bc:62:8a:f9:58:8c:ba:10:35:
db:a5:ef:48:1b:db:c1:1a:3d:6d:49:05:09:46:5b:29:ac:0a:
c8:68:ec:2c:a3:c4:17:33:8d:98:d8:45:9e:5d:e6:08:e7:ee:
89:aa:38:97:35:66:27:c4:62:ed:42:fb:ac:71:6c:5e:33:cb:
a5:41:c0:b2:63:1d:a7:26:88:81:0b:ad:cb:d1:6e:20:cc:8e:
ab:1c:02:32:4d:4e:27:bf:cb:17:7a:92:64:84:46:fa:23:94:
c0:3f:0e:ff:e4:90:f7:9b:0f:68:4a:36:61:ee:f0:70:cf:c4:
35:3b:27:59:a7:d6:82:4a:d2:48:37:92:b2:52:28:7a:1f:29:
fc:c9:d9:fa:1f:f3:82:06:2c:ef:54:fb:fa:74:0b:50:e6:1e:
4c:de:26:3d:2a:96:13:37:5d:a7:4f:d9:1c:bf:c9:af:ed:25:
67:10:f2:9b:ee:3b:04:9e:9b:dd:ef:a3:8d:77:ab:cc:c8:05:
79:22:16:3a:ed:cc:39:86:a4:a1:bb:20:e0:41:c5:9e:5c:6a:
2c:40:38:77:44:03:10:34:d8:30:fe:a0:c3:d1:47:81:2d:22:
40:5c:79:43:18:a2:61:d3:c0:60:79:74:e8:13:af:04:f2:9e:
89:da:53:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org