Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3363393a3a2f34382d3438203d3e20323135303339.roa
File: 326130663a383563313a3363393a3a2f34382d3438203d3e20323135303339.roa (raw, json)
Hash identifier: hrlzBxpsowuanVxNlL0eZPVY+BqHU+xpLDr5JiP9R+Y=
Subject key identifier: 85:5D:F5:A7:26:17:6E:7F:58:A1:E4:69:72:30:23:49:23:7B:97:CC
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 5D67BF770655CAE622EAA8D4D2FC935DD443A74E
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3363393a3a2f34382d3438203d3e20323135303339.roa
Signing time: Mon 29 Apr 2024 18:16:48 +0000
ROA not before: Mon 29 Apr 2024 18:11:48 +0000
ROA not after: Mon 28 Apr 2025 18:16:48 +0000
asID: 215039
IP address blocks: 2a0f:85c1:3c9::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:67:bf:77:06:55:ca:e6:22:ea:a8:d4:d2:fc:93:5d:d4:43:a7:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Apr 29 18:11:48 2024 GMT
Not After : Apr 28 18:16:48 2025 GMT
Subject: CN=855DF5A726176E7F58A1E46972302349237B97CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:59:ad:6a:c4:24:b2:a6:c0:d0:40:18:d1:7e:
00:9c:27:36:c7:cf:22:49:90:e9:7c:a8:09:89:56:
fe:1e:bb:4b:4e:61:e1:64:74:1a:83:0f:2e:de:dd:
cc:34:a8:78:92:e8:7d:22:6b:75:a3:54:52:07:67:
a5:7a:38:ac:1d:d9:b1:f0:ec:27:e7:8a:d8:fa:00:
01:cc:69:98:9c:0e:37:1a:e1:e6:51:e4:27:56:a8:
9c:c6:7f:cb:c9:81:cc:ef:65:a5:0a:21:82:9e:6e:
a4:e3:6c:4b:9f:ac:e4:07:7b:27:a9:1b:38:d4:34:
ff:e6:97:95:e8:ea:bc:f5:47:87:98:a0:73:3d:19:
e9:1d:fd:7f:0e:c5:d1:32:da:48:3d:fe:0e:17:d7:
0c:d6:b4:8e:50:23:57:b8:06:b3:08:54:ef:3c:63:
34:34:fa:c3:ea:75:62:57:89:ca:5b:c1:8f:16:81:
b3:d3:f2:69:3a:7f:4f:f0:19:3e:06:f0:f4:94:8a:
d3:61:0e:2b:7c:cc:15:a2:12:c0:4c:9d:79:55:0c:
5f:e7:4d:38:f1:a8:3b:b6:93:46:f7:9c:b3:15:e8:
bf:58:d9:05:c4:e9:ca:1d:d3:aa:e2:8c:d3:92:05:
ca:51:99:29:e4:c5:25:c6:6f:37:5f:cb:92:dc:1f:
d4:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:5D:F5:A7:26:17:6E:7F:58:A1:E4:69:72:30:23:49:23:7B:97:CC
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3363393a3a2f34382d3438203d3e20323135303339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:3c9::/48
Signature Algorithm: sha256WithRSAEncryption
0c:d9:d5:0c:86:7d:00:51:bd:69:45:94:4e:1e:87:6a:e2:1b:
e3:44:08:70:80:f8:38:38:43:71:85:16:a7:34:e1:00:1c:f9:
4e:1c:e4:4e:30:86:b2:94:af:8e:2b:2e:d9:bf:f1:3b:68:42:
ce:9a:83:d8:cc:fb:12:5d:d1:95:89:65:5c:ca:e4:f7:82:5b:
ba:a6:67:b0:4a:d9:cc:e9:f6:70:c7:95:84:51:4e:00:07:59:
fa:a5:5f:91:a3:6f:7c:76:46:02:87:23:46:62:e2:e9:a1:8d:
ed:ca:af:36:17:5d:be:81:51:ec:d2:b4:cb:bd:53:e0:c2:05:
94:ca:1a:5a:7f:68:33:e7:af:36:d4:6b:5d:9e:5e:98:c7:1b:
b8:62:33:fa:3a:70:62:ab:ba:03:49:78:3c:4e:35:04:f1:a3:
c1:3a:81:26:fe:dc:f4:4a:05:b3:b2:ed:7a:e9:00:f1:34:d2:
93:2b:67:97:cd:c9:21:c4:0b:e6:7b:02:ee:e0:de:6a:f3:17:
db:af:31:5b:98:c6:fe:1f:7e:85:20:94:3a:dd:c8:c0:25:0d:
1f:ee:98:1b:e9:b5:79:6d:1c:0d:dc:6c:ac:4e:ee:c9:1d:b6:
48:a1:75:44:37:ad:50:08:23:98:58:04:f4:d1:c9:1c:f9:2c:
7a:64:e1:84
-----BEGIN CERTIFICATE-----
MIIFPjCCBCagAwIBAgIUXWe/dwZVyuYi6qjU0vyTXdRDp04wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWFlNDQzNzAyOTY1OTUzOWY1NGY5MDBiMzVlNDNiZTA2
YTk0YjM3YjAeFw0yNDA0MjkxODExNDhaFw0yNTA0MjgxODE2NDhaMDMxMTAvBgNV
BAMTKDg1NURGNUE3MjYxNzZFN0Y1OEExRTQ2OTcyMzAyMzQ5MjM3Qjk3Q0MwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzWa1qxCSypsDQQBjRfgCcJzbH
zyJJkOl8qAmJVv4eu0tOYeFkdBqDDy7e3cw0qHiS6H0ia3WjVFIHZ6V6OKwd2bHw
7Cfnitj6AAHMaZicDjca4eZR5CdWqJzGf8vJgczvZaUKIYKebqTjbEufrOQHeyep
GzjUNP/ml5Xo6rz1R4eYoHM9Gekd/X8OxdEy2kg9/g4X1wzWtI5QI1e4BrMIVO88
YzQ0+sPqdWJXicpbwY8WgbPT8mk6f0/wGT4G8PSUitNhDit8zBWiEsBMnXlVDF/n
TTjxqDu2k0b3nLMV6L9Y2QXE6cod06rijNOSBcpRmSnkxSXGbzdfy5LcH9SlAgMB
AAGjggJIMIICRDAdBgNVHQ4EFgQUhV31pyYXbn9YoeRpcjAjSSN7l8wwHwYDVR0j
BBgwFoAUWuRDcClllTn1T5ALNeQ74GqUs3swDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmMyMGFkZDMtYTg4ZS00YmIyLWE4NGQtNTVkYTIxMjhm
MTk2LzAvNUFFNDQzNzAyOTY1OTUzOUY1NEY5MDBCMzVFNDNCRTA2QTk0QjM3Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1d1UkRjQ2xsbFRuMVQ1QUxOZVE3NEdx
VXMzcy5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmMyMGFkZDMt
YTg4ZS00YmIyLWE4NGQtNTVkYTIxMjhmMTk2LzAvMzI2MTMwNjYzYTM4MzU2MzMx
M2EzMzYzMzkzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzMDMzMzkucm9h
MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E
AgACMAkDBwAqD4XBA8kwDQYJKoZIhvcNAQELBQADggEBAAzZ1QyGfQBRvWlFlE4e
h2riG+NECHCA+Dg4Q3GFFqc04QAc+U4c5E4whrKUr44rLtm/8TtoQs6ag9jM+xJd
0ZWJZVzK5PeCW7qmZ7BK2czp9nDHlYRRTgAHWfqlX5Gjb3x2RgKHI0Zi4umhje3K
rzYXXb6BUezStMu9U+DCBZTKGlp/aDPnrzbUa12eXpjHG7hiM/o6cGKrugNJeDxO
NQTxo8E6gSb+3PRKBbOy7XrpAPE00pMrZ5fNySHEC+Z7Au7g3mrzF9uvMVuYxv4f
foUglDrdyMAlDR/umBvptXltHA3cbKxO7skdtkihdUQ3rVAII5hYBPTRyRz5LHpk
4YQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org