Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3361653a3a2f34382d3438203d3e20323135313731.roa
File: 326130663a383563313a3361653a3a2f34382d3438203d3e20323135313731.roa (raw, json)
Hash identifier: HOmEnVKs9KA2ZhlWmVzP+mT/tdx8qyuybksbQhTOZoY=
Subject key identifier: 5B:E5:23:A6:0E:AE:27:D8:A5:4A:22:18:70:42:5D:8E:56:67:EF:8B
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 31F1F1DA51B9B2EFE79666D010156A5C17A92441
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3361653a3a2f34382d3438203d3e20323135313731.roa
Signing time: Sun 14 Apr 2024 19:02:50 +0000
ROA not before: Sun 14 Apr 2024 18:57:50 +0000
ROA not after: Sun 13 Apr 2025 19:02:50 +0000
asID: 215171
IP address blocks: 2a0f:85c1:3ae::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:f1:f1:da:51:b9:b2:ef:e7:96:66:d0:10:15:6a:5c:17:a9:24:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Apr 14 18:57:50 2024 GMT
Not After : Apr 13 19:02:50 2025 GMT
Subject: CN=5BE523A60EAE27D8A54A221870425D8E5667EF8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:66:96:5f:b0:31:ec:7e:e9:80:3e:99:d8:89:
44:df:fe:18:06:65:46:f2:92:7c:67:c9:27:80:79:
a5:7f:77:cc:1b:17:b2:be:50:93:05:0d:ea:1f:86:
18:8a:e0:a2:6d:70:fc:37:00:5b:5b:ce:50:b2:12:
a3:a5:7d:c7:a9:2a:15:e8:b5:2e:7e:c5:10:2c:50:
ba:ac:81:5a:0a:bb:96:f5:62:a7:ff:44:bf:bd:3a:
a8:db:ce:3b:c7:ef:2c:7d:57:a0:c8:9f:3b:e4:a5:
3b:38:fc:89:b3:ec:5f:5f:f7:78:7f:6d:c6:fc:b3:
d9:a0:53:14:8f:e2:4d:c9:28:7b:2c:8d:6d:21:c6:
83:84:56:79:d6:61:e7:48:c7:61:37:7a:a8:3d:65:
fa:04:37:5c:1d:c0:58:9f:38:09:dd:15:a4:f2:8f:
48:5c:a8:b8:15:e0:6e:57:99:03:67:a1:b0:7e:f7:
75:f8:a3:76:1b:43:67:51:b4:6d:51:e4:2e:e1:47:
16:51:b0:f4:f7:22:55:b8:51:99:89:d2:0f:37:6a:
05:42:91:e3:fb:8e:c9:77:a7:01:c6:86:62:53:96:
11:50:33:b1:58:bb:ff:08:ce:ec:5a:92:16:91:64:
2e:47:d1:94:ae:0f:25:d6:46:fb:55:7e:d4:2e:54:
3e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:E5:23:A6:0E:AE:27:D8:A5:4A:22:18:70:42:5D:8E:56:67:EF:8B
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3361653a3a2f34382d3438203d3e20323135313731.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:3ae::/48
Signature Algorithm: sha256WithRSAEncryption
14:39:d0:b2:60:95:41:4a:ca:f9:5a:4c:b0:3e:cd:03:fa:71:
ba:a8:8b:46:84:d1:64:a2:45:27:32:a2:45:21:e6:47:63:49:
ac:b2:10:34:e3:69:9f:ca:3f:0a:17:17:45:09:98:af:f7:e5:
d5:ed:eb:9f:5a:87:20:51:14:3a:da:1d:f0:ac:d5:ad:00:ac:
d6:8b:46:8f:03:13:50:f8:2e:d3:7d:0f:85:e0:1b:3e:01:ae:
7f:8e:b2:97:8b:1a:8e:30:83:32:e8:45:99:5d:bf:26:c8:69:
8f:32:b0:c7:e2:e4:28:57:bc:58:16:66:0a:01:b0:79:c8:b4:
16:8f:cc:20:10:03:c4:ea:84:74:04:9d:26:1c:bf:ed:fe:de:
fb:46:1c:15:81:5f:b2:5c:df:47:dd:ba:53:fa:9f:11:ca:20:
0a:07:ed:61:df:38:de:78:77:d5:c9:e5:ed:96:88:b3:38:07:
ba:1e:50:17:1d:08:f2:5b:52:7b:7c:35:a7:2a:ba:4f:95:9f:
8b:51:19:7d:cc:7e:9c:07:a2:2d:9e:25:89:1a:62:72:57:d4:
e4:50:76:80:ad:ed:f1:34:4a:b9:89:de:65:2f:98:5a:3d:33:
bb:f4:6e:61:92:35:97:e3:31:74:dd:80:43:2a:9c:04:7f:b8:
fc:5b:92:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 18:17:04 2024 by rpki-client on console-fra.rpki-client.org