Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3336643a3a2f34382d3438203d3e20323135353332.roa
File: 326130663a383563313a3336643a3a2f34382d3438203d3e20323135353332.roa (raw, json)
Hash identifier: 6M3rYNZXnpEKN5EQU0cOqLUTblxRvlneHCzC43LeHjI=
Subject key identifier: 8A:43:7F:20:8E:87:C1:4E:E6:DA:63:03:DA:4B:77:5A:38:70:CA:D6
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 5B6A52A2D454203F4B595B274F0027A258F272DA
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3336643a3a2f34382d3438203d3e20323135353332.roa
Signing time: Wed 13 Mar 2024 19:20:50 +0000
ROA not before: Wed 13 Mar 2024 19:15:50 +0000
ROA not after: Wed 12 Mar 2025 19:20:50 +0000
asID: 215532
IP address blocks: 2a0f:85c1:36d::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:6a:52:a2:d4:54:20:3f:4b:59:5b:27:4f:00:27:a2:58:f2:72:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Mar 13 19:15:50 2024 GMT
Not After : Mar 12 19:20:50 2025 GMT
Subject: CN=8A437F208E87C14EE6DA6303DA4B775A3870CAD6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:29:45:40:48:dc:e4:a8:81:27:ef:3d:81:9b:
47:98:3c:a0:a8:1e:3d:ee:94:5e:e0:6b:8d:52:9f:
0a:1b:a3:35:f0:f8:a3:1c:39:a7:18:44:ef:25:39:
00:09:b2:9e:56:46:bb:13:57:eb:de:6c:11:49:e8:
15:e9:ca:5d:71:fe:2b:7e:ae:5c:79:91:36:6f:b7:
1a:c1:a6:0c:1f:f8:0c:17:83:b4:38:e5:8c:ff:27:
7f:5e:54:75:10:fb:a9:79:18:c6:0a:7c:ba:27:55:
5a:25:a5:ed:00:b0:e7:47:f5:40:ff:80:ea:04:6c:
92:bc:7a:0a:b1:0d:bf:b2:f1:a2:b3:fd:6b:8d:04:
57:8f:60:a2:a0:fe:ee:3e:ea:cf:cd:86:c7:06:1d:
90:2a:42:9c:74:87:a0:b6:2d:db:4d:6c:40:28:97:
40:a0:f8:37:62:4e:d4:80:36:68:de:7b:47:bb:a3:
4a:4c:2a:5f:a2:b7:37:79:0d:7d:0b:6e:08:f8:3b:
55:7d:93:6f:dd:c2:42:4d:a1:fd:7c:0d:da:86:f3:
ff:ee:b2:cb:cd:36:16:31:91:49:2b:63:e2:27:ec:
1f:4a:72:fa:18:c1:c1:b7:d7:e4:d1:d0:28:8a:e7:
0a:eb:e8:8d:1a:fd:48:b1:d8:c9:c9:57:f9:db:a3:
37:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:43:7F:20:8E:87:C1:4E:E6:DA:63:03:DA:4B:77:5A:38:70:CA:D6
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3336643a3a2f34382d3438203d3e20323135353332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:36d::/48
Signature Algorithm: sha256WithRSAEncryption
07:10:54:07:b2:e1:43:3e:d9:70:63:7a:a5:e4:51:ae:ce:a2:
5a:f4:bc:f5:d8:23:d6:11:7f:0f:f5:cf:8d:48:81:7e:24:e8:
1a:f5:69:35:3f:cf:21:b8:74:a4:72:f5:23:48:bf:9a:d0:73:
e6:11:f4:cb:0b:11:a4:eb:ec:36:b2:90:86:a3:59:03:53:e0:
8d:9e:f3:56:5a:91:83:c8:44:cb:db:42:06:e3:0a:0f:e0:e9:
b5:b5:3c:cb:3d:b4:f7:5c:ba:97:42:48:33:59:08:c4:e4:f1:
a3:ba:01:0f:e3:98:50:a3:0c:51:d2:6a:94:8f:36:5d:01:a2:
24:b5:76:e5:4f:9a:19:b2:ea:cd:0c:aa:b8:b2:93:9d:a3:1d:
4f:17:fa:24:eb:d8:f5:af:35:8c:89:27:86:f7:ce:7f:dc:57:
47:cb:04:b2:ca:6a:ca:d9:3b:d5:38:34:99:b7:f2:03:92:de:
7b:1d:97:c8:e3:c6:54:6e:ca:36:27:84:5b:2f:3a:4f:26:83:
a9:b1:06:9c:c2:cd:c5:6b:65:cb:1e:59:21:0b:f0:a2:de:bc:
30:53:ee:db:0f:9d:1d:fb:8e:27:b7:c5:12:e9:d1:07:56:6d:
a5:0f:d5:b4:58:ab:b6:50:91:4c:12:8f:72:90:19:50:7f:7e:
59:cc:23:6a
-----BEGIN CERTIFICATE-----
MIIFPjCCBCagAwIBAgIUW2pSotRUID9LWVsnTwAnoljyctowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWFlNDQzNzAyOTY1OTUzOWY1NGY5MDBiMzVlNDNiZTA2
YTk0YjM3YjAeFw0yNDAzMTMxOTE1NTBaFw0yNTAzMTIxOTIwNTBaMDMxMTAvBgNV
BAMTKDhBNDM3RjIwOEU4N0MxNEVFNkRBNjMwM0RBNEI3NzVBMzg3MENBRDYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyKUVASNzkqIEn7z2Bm0eYPKCo
Hj3ulF7ga41SnwobozXw+KMcOacYRO8lOQAJsp5WRrsTV+vebBFJ6BXpyl1x/it+
rlx5kTZvtxrBpgwf+AwXg7Q45Yz/J39eVHUQ+6l5GMYKfLonVVolpe0AsOdH9UD/
gOoEbJK8egqxDb+y8aKz/WuNBFePYKKg/u4+6s/NhscGHZAqQpx0h6C2LdtNbEAo
l0Cg+DdiTtSANmjee0e7o0pMKl+itzd5DX0Lbgj4O1V9k2/dwkJNof18DdqG8//u
ssvNNhYxkUkrY+In7B9KcvoYwcG31+TR0CiK5wrr6I0a/Uix2MnJV/nbozeNAgMB
AAGjggJIMIICRDAdBgNVHQ4EFgQUikN/II6HwU7m2mMD2kt3WjhwytYwHwYDVR0j
BBgwFoAUWuRDcClllTn1T5ALNeQ74GqUs3swDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmMyMGFkZDMtYTg4ZS00YmIyLWE4NGQtNTVkYTIxMjhm
MTk2LzAvNUFFNDQzNzAyOTY1OTUzOUY1NEY5MDBCMzVFNDNCRTA2QTk0QjM3Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1d1UkRjQ2xsbFRuMVQ1QUxOZVE3NEdx
VXMzcy5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmMyMGFkZDMt
YTg4ZS00YmIyLWE4NGQtNTVkYTIxMjhmMTk2LzAvMzI2MTMwNjYzYTM4MzU2MzMx
M2EzMzM2NjQzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzNTMzMzIucm9h
MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E
AgACMAkDBwAqD4XBA20wDQYJKoZIhvcNAQELBQADggEBAAcQVAey4UM+2XBjeqXk
Ua7Oolr0vPXYI9YRfw/1z41IgX4k6Br1aTU/zyG4dKRy9SNIv5rQc+YR9MsLEaTr
7DaykIajWQNT4I2e81ZakYPIRMvbQgbjCg/g6bW1PMs9tPdcupdCSDNZCMTk8aO6
AQ/jmFCjDFHSapSPNl0BoiS1duVPmhmy6s0Mqriyk52jHU8X+iTr2PWvNYyJJ4b3
zn/cV0fLBLLKasrZO9U4NJm38gOS3nsdl8jjxlRuyjYnhFsvOk8mg6mxBpzCzcVr
ZcseWSEL8KLevDBT7tsPnR37jie3xRLp0QdWbaUP1bRYq7ZQkUwSj3KQGVB/flnM
I2o=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:10 2024 by rpki-client on console-ams.rpki-client.org