Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3361393a3a2f34382d3438203d3e20323135313737.roa
File: 326130663a383563313a3361393a3a2f34382d3438203d3e20323135313737.roa (raw, json)
Hash identifier: Kqm7XRI6FCZAG5Vu5JmF7aR8czFFGO+IpvgM+ypNmj8=
Subject key identifier: 58:AA:C0:A9:83:7B:55:18:10:81:C5:21:66:C2:83:A4:72:2F:1C:C6
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 3B64612D6365D5BDF1185D65AF1B8E6102A01BA7
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3361393a3a2f34382d3438203d3e20323135313737.roa
Signing time: Mon 08 Apr 2024 17:05:27 +0000
ROA not before: Mon 08 Apr 2024 17:00:27 +0000
ROA not after: Mon 07 Apr 2025 17:05:27 +0000
asID: 215177
IP address blocks: 2a0f:85c1:3a9::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:64:61:2d:63:65:d5:bd:f1:18:5d:65:af:1b:8e:61:02:a0:1b:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Apr 8 17:00:27 2024 GMT
Not After : Apr 7 17:05:27 2025 GMT
Subject: CN=58AAC0A9837B55181081C52166C283A4722F1CC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:07:98:d1:e4:9a:5d:14:fc:b6:be:e0:03:98:
99:56:8a:10:f8:6f:f8:a4:39:92:78:c9:23:8e:e9:
d3:44:b9:ea:d1:4d:24:dd:f2:8e:dd:69:12:c4:1a:
4a:d8:80:18:fd:b6:6c:df:55:73:16:34:f0:21:4a:
04:d9:55:3e:39:89:94:48:07:84:ca:8e:9b:91:29:
a2:ef:db:03:a2:a9:8b:30:c6:77:97:7d:ab:ed:20:
99:e4:31:93:09:4b:f8:10:d2:aa:c6:80:46:35:70:
e1:47:a5:d2:08:1d:8d:71:61:62:c9:7f:ba:5f:7b:
7e:3c:83:96:8c:6d:7a:31:21:76:e5:16:7f:f8:ee:
bd:66:e7:13:68:68:9b:86:9b:80:5d:25:3f:bb:18:
20:ad:d9:4b:6f:4a:87:d4:a8:f9:1d:ee:21:e3:33:
6a:72:5e:e9:7c:d5:98:9c:04:47:cf:bf:ab:e8:44:
bb:bb:41:e7:58:bb:bf:93:59:42:a2:26:69:84:d0:
14:eb:7a:56:f1:de:62:81:36:a6:1d:fd:7a:79:a9:
02:5b:38:97:bb:9b:86:b8:15:ea:52:ab:32:d1:f5:
e5:08:63:07:b5:a9:92:1f:b8:cb:84:dd:83:48:2e:
91:c2:a8:d8:51:b6:9e:64:de:42:43:b3:62:86:60:
44:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:AA:C0:A9:83:7B:55:18:10:81:C5:21:66:C2:83:A4:72:2F:1C:C6
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3361393a3a2f34382d3438203d3e20323135313737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:3a9::/48
Signature Algorithm: sha256WithRSAEncryption
0a:4f:b6:e5:1a:a4:3f:5f:86:1e:90:a8:69:62:9b:0f:ba:09:
d0:c8:10:3c:45:7f:a2:4b:6c:ea:83:40:9b:32:4a:64:1b:84:
fe:83:bc:9b:d1:8e:15:dc:44:52:1b:2d:b0:54:fb:81:8e:b0:
49:3e:d2:dc:f0:db:d5:d0:28:43:41:ed:ce:3d:e4:bb:4b:fe:
b9:ff:b3:be:5b:89:cf:36:8e:f0:fc:a9:91:4c:50:28:a0:c2:
2f:01:65:25:55:aa:5f:34:6a:62:a3:2e:f2:4c:81:06:4f:63:
51:23:c4:73:69:13:a7:c0:db:90:8b:93:04:57:11:72:6d:bc:
1a:3e:7f:ea:cd:e9:b9:2d:b7:1d:54:2f:b9:d2:94:63:ae:7a:
1e:74:2f:53:f8:87:06:18:34:19:64:e9:fe:62:a5:91:dd:d6:
54:e1:a6:fd:ea:a0:5a:b7:8a:a6:59:bb:c0:2e:fd:23:ba:b6:
ae:ef:e5:4d:b4:a5:d2:ee:43:92:b1:4f:ba:63:a6:d9:76:c2:
a8:66:14:84:25:36:4e:ac:91:30:9d:4b:c9:be:d2:e4:15:fd:
1a:a9:b8:71:ff:3a:ac:52:4a:dd:92:b3:34:c2:cb:19:b6:fd:
7e:75:3d:fe:99:95:c7:f5:36:15:95:54:94:63:2c:ba:75:36:
c2:e7:bb:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org