Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3334303a3a2f34382d3438203d3e20323135383130.roa
File: 326130663a383563313a3334303a3a2f34382d3438203d3e20323135383130.roa (raw, json)
Hash identifier: BjY9pZ5zYn25PeQja1rEU/K0Hm4kSxOcx+k7ofQkD3I=
Subject key identifier: 83:18:CD:05:0E:A3:C1:2C:85:69:03:D7:E1:86:FC:F4:D6:7A:27:A7
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 1CAF7F49017FB5A1DE927DD77F7202D93B190C5C
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3334303a3a2f34382d3438203d3e20323135383130.roa
Signing time: Fri 29 Dec 2023 11:19:27 +0000
ROA not before: Fri 29 Dec 2023 11:14:27 +0000
ROA not after: Fri 27 Dec 2024 11:19:27 +0000
asID: 215810
IP address blocks: 2a0f:85c1:340::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:af:7f:49:01:7f:b5:a1:de:92:7d:d7:7f:72:02:d9:3b:19:0c:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Dec 29 11:14:27 2023 GMT
Not After : Dec 27 11:19:27 2024 GMT
Subject: CN=8318CD050EA3C12C856903D7E186FCF4D67A27A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:47:ed:57:63:8c:01:9c:1f:74:95:45:2b:ff:
85:a1:60:7b:b3:73:80:50:67:96:35:57:c0:30:42:
90:46:73:89:e6:eb:c1:6a:5e:1a:0b:9d:29:f8:19:
03:cb:70:32:14:18:3d:a8:4f:82:5d:99:dd:2f:68:
72:3d:ed:ad:0d:6a:a7:e2:7f:59:44:e5:7a:68:ee:
c4:49:06:9b:0f:e4:da:42:eb:40:df:22:4d:94:ae:
df:fd:95:a9:11:db:6b:9a:5b:8c:c5:18:ae:d3:73:
ae:b8:b1:7f:18:fa:48:6a:dd:ec:7b:5f:37:2f:06:
0a:47:7e:88:b2:83:96:7b:12:4c:b3:ea:bd:d3:f5:
1c:7a:d8:87:56:9d:cb:1b:9b:d7:67:2a:d1:9b:a3:
dc:1b:40:69:61:e9:79:38:6a:d5:e9:59:d6:e3:31:
11:f7:07:ee:5f:44:54:8c:fa:02:4f:83:43:d7:ce:
cf:18:9f:7d:a6:58:fb:64:55:53:50:5f:02:d7:42:
aa:1e:fc:bd:44:82:c5:52:54:df:a8:93:b9:69:84:
41:a9:3d:45:c7:fb:74:70:0d:b5:98:d8:fb:94:cb:
e6:0b:f6:8b:e7:e1:74:2f:ac:27:1e:a4:c8:4a:9c:
7f:48:db:8b:fc:97:fe:54:53:aa:ac:f1:77:45:58:
0d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:18:CD:05:0E:A3:C1:2C:85:69:03:D7:E1:86:FC:F4:D6:7A:27:A7
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3334303a3a2f34382d3438203d3e20323135383130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:340::/48
Signature Algorithm: sha256WithRSAEncryption
86:bf:00:2e:c5:16:ad:80:60:ad:ea:1e:94:39:58:8c:a1:f6:
2b:8e:01:df:df:d2:4d:2a:31:6a:c1:16:e1:0d:3f:20:64:88:
fc:73:c8:8e:e3:b6:6f:8b:37:98:22:68:71:38:2b:ea:ca:6f:
ca:00:5f:54:3c:e6:63:e6:f5:f6:f7:86:85:39:a1:dd:83:f5:
76:1f:ee:48:3e:0b:41:80:6c:8d:bc:27:db:7b:f9:ae:3f:b4:
6c:bc:61:34:86:f8:34:11:bc:dc:98:98:93:40:c4:d3:00:50:
af:0d:f4:ec:6f:d7:e2:06:83:68:5b:b6:31:cb:38:44:6d:c2:
9c:ab:65:ee:9e:c9:22:02:ea:83:1b:4b:46:8b:14:dd:c9:2e:
7e:09:68:af:56:21:31:37:57:8d:2e:af:8f:8b:7c:5e:3e:a4:
37:29:38:2c:3d:0a:5e:77:aa:08:63:3c:bb:84:78:93:66:a2:
b6:89:ec:ba:69:42:03:21:9d:c8:10:ad:54:4d:4f:96:c0:e3:
cb:0d:3e:22:07:8d:c0:f7:6c:50:af:21:a9:77:a7:26:46:58:
fd:0d:82:05:93:c4:25:d4:12:fc:58:24:ce:17:84:9c:d4:f8:
a1:cc:22:9a:0b:b3:bb:a5:b5:19:2f:fe:29:73:a7:99:6e:68:
1d:12:fe:f9
-----BEGIN CERTIFICATE-----
MIIFPjCCBCagAwIBAgIUHK9/SQF/taHekn3Xf3IC2TsZDFwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWFlNDQzNzAyOTY1OTUzOWY1NGY5MDBiMzVlNDNiZTA2
YTk0YjM3YjAeFw0yMzEyMjkxMTE0MjdaFw0yNDEyMjcxMTE5MjdaMDMxMTAvBgNV
BAMTKDgzMThDRDA1MEVBM0MxMkM4NTY5MDNEN0UxODZGQ0Y0RDY3QTI3QTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5R+1XY4wBnB90lUUr/4WhYHuz
c4BQZ5Y1V8AwQpBGc4nm68FqXhoLnSn4GQPLcDIUGD2oT4Jdmd0vaHI97a0Naqfi
f1lE5Xpo7sRJBpsP5NpC60DfIk2Urt/9lakR22uaW4zFGK7Tc664sX8Y+khq3ex7
XzcvBgpHfoiyg5Z7Ekyz6r3T9Rx62IdWncsbm9dnKtGbo9wbQGlh6Xk4atXpWdbj
MRH3B+5fRFSM+gJPg0PXzs8Yn32mWPtkVVNQXwLXQqoe/L1EgsVSVN+ok7lphEGp
PUXH+3RwDbWY2PuUy+YL9ovn4XQvrCcepMhKnH9I24v8l/5UU6qs8XdFWA1TAgMB
AAGjggJIMIICRDAdBgNVHQ4EFgQUgxjNBQ6jwSyFaQPX4Yb89NZ6J6cwHwYDVR0j
BBgwFoAUWuRDcClllTn1T5ALNeQ74GqUs3swDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmMyMGFkZDMtYTg4ZS00YmIyLWE4NGQtNTVkYTIxMjhm
MTk2LzAvNUFFNDQzNzAyOTY1OTUzOUY1NEY5MDBCMzVFNDNCRTA2QTk0QjM3Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1d1UkRjQ2xsbFRuMVQ1QUxOZVE3NEdx
VXMzcy5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmMyMGFkZDMt
YTg4ZS00YmIyLWE4NGQtNTVkYTIxMjhmMTk2LzAvMzI2MTMwNjYzYTM4MzU2MzMx
M2EzMzM0MzAzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzODMxMzAucm9h
MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E
AgACMAkDBwAqD4XBA0AwDQYJKoZIhvcNAQELBQADggEBAIa/AC7FFq2AYK3qHpQ5
WIyh9iuOAd/f0k0qMWrBFuENPyBkiPxzyI7jtm+LN5giaHE4K+rKb8oAX1Q85mPm
9fb3hoU5od2D9XYf7kg+C0GAbI28J9t7+a4/tGy8YTSG+DQRvNyYmJNAxNMAUK8N
9Oxv1+IGg2hbtjHLOERtwpyrZe6eySIC6oMbS0aLFN3JLn4JaK9WITE3V40ur4+L
fF4+pDcpOCw9Cl53qghjPLuEeJNmoraJ7LppQgMhncgQrVRNT5bA48sNPiIHjcD3
bFCvIal3pyZGWP0NggWTxCXUEvxYJM4XhJzU+KHMIpoLs7ultRkv/ilzp5luaB0S
/vk=
-----END CERTIFICATE-----
Generated at Thu May 23 18:17:04 2024 by rpki-client on console-fra.rpki-client.org