Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3364323a3a2f34382d3438203d3e20323134393834.roa
File: 326130663a383563313a3364323a3a2f34382d3438203d3e20323134393834.roa (raw, json)
Hash identifier: rgHzsvxeoapJE+1uMKeQaRJHG+uQPosaSyY7IAxjnyk=
Subject key identifier: 06:76:44:0D:5B:8A:B6:D9:78:18:DA:BE:56:ED:84:F0:79:9A:1C:1B
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 6D30CB89689888B63285A74BC42BD0A014AE62EC
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3364323a3a2f34382d3438203d3e20323134393834.roa
Signing time: Thu 02 May 2024 19:23:07 +0000
ROA not before: Thu 02 May 2024 19:18:07 +0000
ROA not after: Thu 01 May 2025 19:23:07 +0000
asID: 214984
IP address blocks: 2a0f:85c1:3d2::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:30:cb:89:68:98:88:b6:32:85:a7:4b:c4:2b:d0:a0:14:ae:62:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: May 2 19:18:07 2024 GMT
Not After : May 1 19:23:07 2025 GMT
Subject: CN=0676440D5B8AB6D97818DABE56ED84F0799A1C1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f8:f0:40:e9:25:c4:98:fc:74:35:f0:a4:d1:
59:1a:b5:0b:b0:ef:d3:ce:8a:a4:3e:b0:d4:4f:db:
61:2a:ac:5a:63:b6:73:3f:34:64:41:1e:ec:a7:8c:
16:f6:99:ed:ee:9f:34:89:a8:ce:3e:3e:be:81:fb:
a6:55:0e:c2:9f:5f:40:7e:74:f3:86:93:09:3e:b8:
bd:a6:5f:76:6e:ae:25:57:ff:1d:1b:c4:45:15:cc:
7b:40:4d:87:70:5e:97:a4:78:29:64:00:6d:0a:ca:
56:4e:55:01:22:64:a9:a4:1b:e5:9c:ad:8e:3f:a0:
da:0f:d1:93:ad:6b:11:7e:e5:3d:f3:c8:cb:32:46:
f5:27:06:fb:07:6b:3e:57:cf:64:95:d4:13:dc:84:
f1:30:8a:6a:f2:b4:ee:d2:01:43:ff:cf:19:2b:77:
62:bc:cf:4d:97:3e:57:05:d6:b6:f5:21:61:80:3f:
9a:12:fa:98:3b:d1:85:6e:86:c8:f2:10:ed:6c:ec:
13:ba:a2:3b:7c:b6:8b:71:1e:1c:63:b0:cf:9b:91:
85:59:39:84:7c:5b:28:a1:4c:ae:04:7e:c8:00:47:
99:63:a9:fe:94:ff:ee:36:9f:32:46:7a:c3:9c:9f:
af:0c:83:dd:f2:12:03:45:d6:e5:cc:76:24:85:e8:
b9:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:76:44:0D:5B:8A:B6:D9:78:18:DA:BE:56:ED:84:F0:79:9A:1C:1B
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3364323a3a2f34382d3438203d3e20323134393834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:3d2::/48
Signature Algorithm: sha256WithRSAEncryption
a1:a0:32:d4:8c:2e:89:1d:4b:04:a6:00:08:f8:a9:de:18:d7:
fe:af:55:b2:fa:66:5d:d3:a7:41:ad:eb:9b:45:24:2c:a1:cd:
37:01:89:b2:65:29:53:92:aa:72:4a:b9:95:ce:ff:2a:c9:d7:
92:05:1e:a4:08:5c:e6:23:f8:1c:f5:5f:8c:2a:c7:5e:e1:6f:
b9:d9:2d:a5:89:21:dd:27:48:91:74:15:78:43:9b:f4:91:9a:
d0:2c:9e:c5:25:e7:f2:f6:92:f9:55:f5:34:f8:8c:1f:39:de:
40:6f:20:c3:2c:ba:b7:42:47:24:ac:b3:82:d2:2c:b2:44:02:
42:20:48:70:ae:95:99:3a:fb:84:04:bf:36:54:97:b2:da:6b:
91:3f:65:08:62:bc:e6:52:e5:f5:fe:b6:48:4a:00:98:e6:96:
a7:15:a2:5e:eb:90:a9:38:ef:e3:b4:0c:e1:16:20:c5:3d:a3:
eb:78:92:44:28:6c:1d:b6:04:a8:54:d5:73:e2:6d:a3:ca:ae:
18:fe:82:f3:f2:59:fd:ac:6c:fc:2e:f6:7b:5f:59:10:6c:72:
ac:58:99:5a:27:b2:28:74:88:81:63:50:ba:12:8b:9e:d2:77:
50:67:77:a3:84:b0:ad:f1:cd:73:e7:9e:fe:b6:67:22:74:1d:
be:15:4c:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 18:17:04 2024 by rpki-client on console-fra.rpki-client.org