Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3335393a3a2f34382d3438203d3e20323135363734.roa
File: 326130663a383563313a3335393a3a2f34382d3438203d3e20323135363734.roa (raw, json)
Hash identifier: humZbulDpoukONYJDk3ArP20sT1HH0hc9L5InCCRlhI=
Subject key identifier: A0:60:CF:97:60:0A:17:90:C2:9E:84:00:3E:40:1B:4C:92:0D:FE:7A
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 17BED45911B3B0F73B83C2F561DE520EE7F060F2
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3335393a3a2f34382d3438203d3e20323135363734.roa
Signing time: Thu 25 Jan 2024 11:08:46 +0000
ROA not before: Thu 25 Jan 2024 11:03:46 +0000
ROA not after: Thu 23 Jan 2025 11:08:46 +0000
asID: 215674
IP address blocks: 2a0f:85c1:359::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:be:d4:59:11:b3:b0:f7:3b:83:c2:f5:61:de:52:0e:e7:f0:60:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Jan 25 11:03:46 2024 GMT
Not After : Jan 23 11:08:46 2025 GMT
Subject: CN=A060CF97600A1790C29E84003E401B4C920DFE7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:0f:ef:d5:87:ac:bc:ff:37:06:e4:05:64:a2:
cc:cc:2a:3d:3e:fc:c3:f3:de:f1:67:a0:6e:24:c2:
a6:3f:f5:f4:0e:63:db:71:a9:92:f2:97:46:4f:76:
67:b8:ab:c2:90:4c:f7:fe:e6:b2:21:4e:11:7d:da:
0d:1d:a7:e2:7b:e3:3c:d7:3d:34:f2:fc:ed:55:00:
4e:11:dd:36:27:d9:70:47:05:f5:e4:be:f8:b2:a2:
c7:1b:cb:30:f7:9a:ca:41:e0:25:53:42:f6:1b:5c:
0b:53:32:75:50:02:41:cf:b9:e1:ff:70:fe:09:26:
49:7b:2a:9b:bb:8e:e5:c9:89:96:20:05:e1:dc:e9:
36:e7:a5:51:48:48:40:55:f1:93:c8:80:5d:0d:ae:
a1:2e:62:e6:9c:1f:20:ae:83:9e:41:fc:74:5c:70:
f0:d5:90:6e:ed:5f:0c:9a:96:97:b8:a6:90:bc:08:
47:6d:f5:26:00:38:d1:d7:4b:a8:5d:e6:06:9b:45:
ee:e3:d5:66:65:4c:2c:1f:08:1a:92:42:b4:f1:96:
9b:27:10:7e:48:b2:0c:e9:a1:51:f0:93:87:3a:2a:
0d:a6:86:94:eb:9d:82:ff:4e:fa:cb:d3:b1:a0:42:
e0:4b:e7:31:00:b7:1d:27:0b:26:b8:3a:c7:08:15:
00:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:60:CF:97:60:0A:17:90:C2:9E:84:00:3E:40:1B:4C:92:0D:FE:7A
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3335393a3a2f34382d3438203d3e20323135363734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:359::/48
Signature Algorithm: sha256WithRSAEncryption
1a:a7:1f:ec:0f:1c:a2:b3:10:86:57:c5:31:74:d2:5f:f2:44:
f8:e7:37:56:89:9d:54:a6:de:e6:83:4f:88:5c:7e:90:85:62:
06:82:83:85:c0:a8:ba:69:48:1a:42:a3:e8:4c:64:4e:6e:98:
60:27:6b:9f:bc:49:6a:08:8e:0e:93:1e:40:a1:ab:ac:c0:d6:
08:83:86:06:e4:3c:ba:bf:46:69:4f:8b:63:53:2c:9b:b0:85:
35:33:4f:74:c5:05:2d:fb:c2:47:44:f3:59:e2:5d:ac:89:d8:
d8:79:ee:16:5e:e4:6f:82:cd:66:92:51:2f:ef:ef:fa:a7:23:
4b:15:57:07:02:30:df:f5:55:83:0e:e0:40:12:4b:72:59:e8:
16:05:29:c6:91:0e:2a:72:1c:0d:23:44:63:7d:bf:a8:e6:3c:
80:00:31:f9:78:ad:71:77:4c:6a:8d:08:5f:a8:a6:60:ef:ed:
a2:cd:a8:0b:b4:e9:75:95:f1:9e:b4:c5:97:0c:55:e8:d3:0b:
d9:76:41:57:11:b0:95:01:83:f6:4a:d9:9c:38:22:28:6b:a8:
dd:54:3d:77:7f:72:3f:e7:e9:53:93:9c:7c:8f:58:fd:e6:1b:
bf:a7:72:0e:be:71:78:73:18:c1:92:b3:80:9a:5c:b5:ed:74:
06:fc:fe:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:10 2024 by rpki-client on console-ams.rpki-client.org