Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3362353a3a2f34382d3438203d3e20323135313035.roa
File: 326130663a383563313a3362353a3a2f34382d3438203d3e20323135313035.roa (raw, json)
Hash identifier: Rx3wN7WezB9L9nMWSylsXT7MC8YpM2ivhDTXgILOiE4=
Subject key identifier: EE:57:FD:D3:E2:1F:85:C2:9E:67:61:AC:AB:F9:85:4D:EF:C1:2A:7B
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 66103982DE499AB56D30B4B886E311445D8E46A4
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3362353a3a2f34382d3438203d3e20323135313035.roa
Signing time: Fri 19 Apr 2024 16:59:38 +0000
ROA not before: Fri 19 Apr 2024 16:54:38 +0000
ROA not after: Fri 18 Apr 2025 16:59:38 +0000
asID: 215105
IP address blocks: 2a0f:85c1:3b5::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:10:39:82:de:49:9a:b5:6d:30:b4:b8:86:e3:11:44:5d:8e:46:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Apr 19 16:54:38 2024 GMT
Not After : Apr 18 16:59:38 2025 GMT
Subject: CN=EE57FDD3E21F85C29E6761ACABF9854DEFC12A7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:10:d7:db:06:11:8f:eb:c6:04:ed:74:2d:cd:
31:66:71:92:47:8c:66:7f:1a:70:a2:77:b0:2b:7e:
8c:00:ff:be:7b:3d:f3:ef:cb:c2:4c:0f:8b:4f:b8:
07:4a:e8:df:dd:af:fb:9a:2f:ed:dc:4f:c8:46:8c:
c4:b9:9b:b6:5c:bd:d7:ae:f6:76:90:b4:e0:33:3d:
a2:e7:d3:50:2a:29:dc:85:a1:eb:ad:53:ea:14:da:
ba:a0:84:41:04:40:d5:75:d7:ed:0d:60:32:82:fa:
22:f6:5b:c2:01:98:76:5a:e5:05:17:d9:37:7d:dd:
dd:92:9a:c2:89:e8:4a:fb:9c:ae:5a:e1:59:e6:13:
d5:c7:00:d3:ac:9f:cd:51:26:c7:56:30:9a:83:36:
a5:d1:24:d9:f7:cc:38:60:a3:ef:27:94:76:4f:3e:
b5:b4:f5:d5:03:94:db:24:34:bf:ce:8b:7a:2c:60:
ed:11:f1:3d:7e:38:e7:eb:1c:a6:14:c9:da:72:85:
18:2f:56:be:8e:e5:d7:29:9a:a9:4e:bc:10:85:1a:
67:f9:9b:25:cd:bf:14:f9:db:ee:bb:06:4e:6e:3a:
e5:62:32:f8:b9:5d:55:9c:24:3b:f5:c3:89:e7:7a:
d5:0a:46:47:32:cc:66:c7:b5:58:71:7c:85:f3:e6:
e8:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:57:FD:D3:E2:1F:85:C2:9E:67:61:AC:AB:F9:85:4D:EF:C1:2A:7B
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3362353a3a2f34382d3438203d3e20323135313035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:3b5::/48
Signature Algorithm: sha256WithRSAEncryption
01:ca:4c:c1:0d:a1:21:f0:d9:97:a4:b2:c4:dd:83:8e:8f:e9:
da:48:b0:8d:2a:6e:76:96:ed:4b:6f:43:1a:3d:b3:6f:61:6f:
30:f8:6b:23:03:d6:2c:5d:1a:f3:12:e7:e9:26:e2:5f:0e:02:
e2:21:6e:7a:bf:59:4f:0c:72:58:7d:85:c1:81:d0:62:ba:ce:
67:ff:c6:8d:a0:a0:dd:7e:cd:3f:9c:aa:9f:dc:4b:e7:ae:0c:
2c:ca:cf:0f:71:38:0c:bd:2c:e3:ab:b2:1f:86:ea:4b:33:5a:
64:24:09:23:99:fb:19:f9:6e:af:8d:a0:98:70:37:31:8b:2f:
2e:8a:5c:06:98:e2:f1:78:93:50:fd:69:45:84:7d:33:d7:52:
21:71:ee:e9:cb:6d:12:aa:24:ba:03:5f:4d:0b:b5:63:49:b3:
d7:71:c2:3b:ca:d0:34:c6:df:3f:fb:8b:c7:d3:1f:1a:03:75:
b3:ea:11:8d:07:ea:9c:1c:d3:c3:59:2f:ca:44:33:fd:a0:19:
bf:1a:93:e3:16:55:26:9c:04:19:80:20:cb:50:c4:54:91:62:
27:4a:28:ff:22:43:a0:9c:ec:6f:e3:db:db:c3:b8:35:0c:5f:
22:be:29:5e:5d:45:9f:19:35:f3:58:c6:1a:35:3e:02:6c:ac:
e4:27:e0:02
-----BEGIN CERTIFICATE-----
MIIFPjCCBCagAwIBAgIUZhA5gt5JmrVtMLS4huMRRF2ORqQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWFlNDQzNzAyOTY1OTUzOWY1NGY5MDBiMzVlNDNiZTA2
YTk0YjM3YjAeFw0yNDA0MTkxNjU0MzhaFw0yNTA0MTgxNjU5MzhaMDMxMTAvBgNV
BAMTKEVFNTdGREQzRTIxRjg1QzI5RTY3NjFBQ0FCRjk4NTRERUZDMTJBN0IwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUENfbBhGP68YE7XQtzTFmcZJH
jGZ/GnCid7ArfowA/757PfPvy8JMD4tPuAdK6N/dr/uaL+3cT8hGjMS5m7Zcvdeu
9naQtOAzPaLn01AqKdyFoeutU+oU2rqghEEEQNV11+0NYDKC+iL2W8IBmHZa5QUX
2Td93d2SmsKJ6Er7nK5a4VnmE9XHANOsn81RJsdWMJqDNqXRJNn3zDhgo+8nlHZP
PrW09dUDlNskNL/Oi3osYO0R8T1+OOfrHKYUydpyhRgvVr6O5dcpmqlOvBCFGmf5
myXNvxT52+67Bk5uOuViMvi5XVWcJDv1w4nnetUKRkcyzGbHtVhxfIXz5ujBAgMB
AAGjggJIMIICRDAdBgNVHQ4EFgQU7lf90+IfhcKeZ2Gsq/mFTe/BKnswHwYDVR0j
BBgwFoAUWuRDcClllTn1T5ALNeQ74GqUs3swDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmMyMGFkZDMtYTg4ZS00YmIyLWE4NGQtNTVkYTIxMjhm
MTk2LzAvNUFFNDQzNzAyOTY1OTUzOUY1NEY5MDBCMzVFNDNCRTA2QTk0QjM3Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1d1UkRjQ2xsbFRuMVQ1QUxOZVE3NEdx
VXMzcy5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmMyMGFkZDMt
YTg4ZS00YmIyLWE4NGQtNTVkYTIxMjhmMTk2LzAvMzI2MTMwNjYzYTM4MzU2MzMx
M2EzMzYyMzUzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzMTMwMzUucm9h
MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E
AgACMAkDBwAqD4XBA7UwDQYJKoZIhvcNAQELBQADggEBAAHKTMENoSHw2ZekssTd
g46P6dpIsI0qbnaW7UtvQxo9s29hbzD4ayMD1ixdGvMS5+km4l8OAuIhbnq/WU8M
clh9hcGB0GK6zmf/xo2goN1+zT+cqp/cS+euDCzKzw9xOAy9LOOrsh+G6kszWmQk
CSOZ+xn5bq+NoJhwNzGLLy6KXAaY4vF4k1D9aUWEfTPXUiFx7unLbRKqJLoDX00L
tWNJs9dxwjvK0DTG3z/7i8fTHxoDdbPqEY0H6pwc08NZL8pEM/2gGb8ak+MWVSac
BBmAIMtQxFSRYidKKP8iQ6Cc7G/j29vDuDUMXyK+KV5dRZ8ZNfNYxho1PgJsrOQn
4AI=
-----END CERTIFICATE-----
Generated at Thu May 23 18:17:04 2024 by rpki-client on console-fra.rpki-client.org