Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3335353a3a2f34382d3438203d3e20323135363736.roa
File: 326130663a383563313a3335353a3a2f34382d3438203d3e20323135363736.roa (raw, json)
Hash identifier: qw5No+BpK+AmUHbVoqLtisns7E/TM+TuQnQJveUe16E=
Subject key identifier: 82:18:B6:E2:F4:75:7D:14:8B:39:DD:95:5D:7F:D6:B7:84:25:59:3E
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 26C83708CBEF5B0BC6A5B1871934289831DE2CDF
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3335353a3a2f34382d3438203d3e20323135363736.roa
Signing time: Thu 14 Mar 2024 14:33:14 +0000
ROA not before: Thu 14 Mar 2024 14:28:14 +0000
ROA not after: Thu 13 Mar 2025 14:33:14 +0000
asID: 215676
IP address blocks: 2a0f:85c1:355::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:c8:37:08:cb:ef:5b:0b:c6:a5:b1:87:19:34:28:98:31:de:2c:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Mar 14 14:28:14 2024 GMT
Not After : Mar 13 14:33:14 2025 GMT
Subject: CN=8218B6E2F4757D148B39DD955D7FD6B78425593E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2d:97:15:78:e1:56:ac:8b:38:00:bf:a3:fe:
c7:48:df:d4:b5:00:31:cc:d9:4a:76:e5:17:77:10:
9e:87:ac:9a:3f:8d:b0:76:da:db:6e:19:ef:d0:c2:
69:b6:fd:21:54:c4:c4:e9:0b:3c:86:d2:88:85:39:
9d:3c:6d:3a:b2:3e:28:17:0a:4e:31:50:ad:b2:4d:
10:29:e1:e9:01:87:bc:2c:f7:79:ad:19:fb:d2:be:
76:35:c3:c2:80:df:3f:3e:34:ba:10:86:02:4f:e3:
b2:02:8b:97:24:5d:df:f7:41:1f:b8:d4:6c:3f:cb:
62:ae:f0:90:54:87:e7:9a:d3:0e:71:68:d3:78:97:
65:e6:ab:29:76:d9:0f:43:f6:ec:7e:2b:cf:2a:d6:
1c:5b:c9:d8:3a:d0:dc:c8:25:e9:02:0a:c6:6a:3f:
52:d9:b9:a2:70:83:c7:6e:00:17:79:6e:ff:ad:8b:
2b:1f:93:ff:ea:2c:0c:58:8e:8b:a1:92:3b:95:2a:
a1:8e:c1:c9:50:39:a6:46:ea:57:de:ae:84:87:71:
07:48:05:6b:ff:b8:34:6c:24:eb:9e:4b:4c:4d:e7:
3e:38:9a:eb:e3:14:31:dd:30:00:0f:6c:3e:40:d6:
89:4f:1f:54:41:bd:6f:a3:0b:4c:b6:72:b1:b1:17:
d7:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:18:B6:E2:F4:75:7D:14:8B:39:DD:95:5D:7F:D6:B7:84:25:59:3E
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3335353a3a2f34382d3438203d3e20323135363736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:355::/48
Signature Algorithm: sha256WithRSAEncryption
6c:c8:3a:15:a3:1b:86:a3:45:88:84:b6:ac:e4:59:bf:65:8a:
6c:bb:87:25:63:1a:e4:6b:f7:60:da:fb:4f:6b:4d:4e:eb:6d:
0e:ce:50:ea:3b:00:40:48:d7:6c:08:06:70:d6:f8:57:95:e1:
46:2a:6f:08:d1:4d:08:e7:6d:73:8f:67:7c:7e:9b:19:59:a2:
52:45:b9:b4:92:d6:f4:00:cf:cf:96:4c:58:be:ef:fa:0c:bb:
3a:a7:22:e1:46:dd:30:7b:1d:82:05:8a:ca:25:7e:e8:a0:c6:
bd:0e:1c:c0:f8:97:17:a4:29:d8:b0:ba:28:69:c9:18:ca:73:
b8:60:3d:3e:fd:61:f9:85:6e:77:6e:89:df:6c:8f:4f:7b:76:
85:17:94:a1:39:e9:74:fd:22:5b:ca:e7:19:09:75:9d:ea:8e:
d0:2e:4b:78:4d:4f:f9:00:fc:e2:5c:a5:29:a1:d1:ad:2a:85:
92:0f:b8:a0:62:64:f2:e4:ef:56:04:30:8e:f4:8d:9f:fb:f3:
70:ec:f6:65:b2:e1:ae:47:16:44:5d:16:a7:4d:51:5b:4a:15:
88:d4:e0:1c:ca:32:8d:b7:13:1f:cc:bb:0d:26:28:6c:be:25:
48:de:c9:bf:0c:d1:fc:ac:bf:68:bf:0e:dc:0b:1f:96:84:b1:
91:04:74:b7
-----BEGIN CERTIFICATE-----
MIIFPjCCBCagAwIBAgIUJsg3CMvvWwvGpbGHGTQomDHeLN8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWFlNDQzNzAyOTY1OTUzOWY1NGY5MDBiMzVlNDNiZTA2
YTk0YjM3YjAeFw0yNDAzMTQxNDI4MTRaFw0yNTAzMTMxNDMzMTRaMDMxMTAvBgNV
BAMTKDgyMThCNkUyRjQ3NTdEMTQ4QjM5REQ5NTVEN0ZENkI3ODQyNTU5M0UwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYLZcVeOFWrIs4AL+j/sdI39S1
ADHM2Up25Rd3EJ6HrJo/jbB22ttuGe/Qwmm2/SFUxMTpCzyG0oiFOZ08bTqyPigX
Ck4xUK2yTRAp4ekBh7ws93mtGfvSvnY1w8KA3z8+NLoQhgJP47ICi5ckXd/3QR+4
1Gw/y2Ku8JBUh+ea0w5xaNN4l2Xmqyl22Q9D9ux+K88q1hxbydg60NzIJekCCsZq
P1LZuaJwg8duABd5bv+tiysfk//qLAxYjouhkjuVKqGOwclQOaZG6lferoSHcQdI
BWv/uDRsJOueS0xN5z44muvjFDHdMAAPbD5A1olPH1RBvW+jC0y2crGxF9cHAgMB
AAGjggJIMIICRDAdBgNVHQ4EFgQUghi24vR1fRSLOd2VXX/Wt4QlWT4wHwYDVR0j
BBgwFoAUWuRDcClllTn1T5ALNeQ74GqUs3swDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmMyMGFkZDMtYTg4ZS00YmIyLWE4NGQtNTVkYTIxMjhm
MTk2LzAvNUFFNDQzNzAyOTY1OTUzOUY1NEY5MDBCMzVFNDNCRTA2QTk0QjM3Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1d1UkRjQ2xsbFRuMVQ1QUxOZVE3NEdx
VXMzcy5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmMyMGFkZDMt
YTg4ZS00YmIyLWE4NGQtNTVkYTIxMjhmMTk2LzAvMzI2MTMwNjYzYTM4MzU2MzMx
M2EzMzM1MzUzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzNjM3MzYucm9h
MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E
AgACMAkDBwAqD4XBA1UwDQYJKoZIhvcNAQELBQADggEBAGzIOhWjG4ajRYiEtqzk
Wb9limy7hyVjGuRr92Da+09rTU7rbQ7OUOo7AEBI12wIBnDW+FeV4UYqbwjRTQjn
bXOPZ3x+mxlZolJFubSS1vQAz8+WTFi+7/oMuzqnIuFG3TB7HYIFisolfuigxr0O
HMD4lxekKdiwuihpyRjKc7hgPT79YfmFbnduid9sj097doUXlKE56XT9IlvK5xkJ
dZ3qjtAuS3hNT/kA/OJcpSmh0a0qhZIPuKBiZPLk71YEMI70jZ/783Ds9mWy4a5H
FkRdFqdNUVtKFYjU4BzKMo23Ex/Muw0mKGy+JUjeyb8M0fysv2i/DtwLH5aEsZEE
dLc=
-----END CERTIFICATE-----
Generated at Thu May 23 18:17:04 2024 by rpki-client on console-fra.rpki-client.org