Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a35313a3a2f34382d3438203d3e20323039353532.roa
File: 326130663a383563313a35313a3a2f34382d3438203d3e20323039353532.roa (raw, json)
Hash identifier: s3RKLdBzGFyAgouAL9Uh+mcLT9eLHs8rrNEIcaBtZ4g=
Subject key identifier: C1:4D:49:37:93:57:6C:77:73:9F:C3:71:2D:17:FC:94:EA:35:89:BD
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 2A5D7D9AAB4C1026431908A85F2292149C9D9DD0
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a35313a3a2f34382d3438203d3e20323039353532.roa
Signing time: Tue 10 Oct 2023 15:18:46 +0000
ROA not before: Tue 10 Oct 2023 15:13:46 +0000
ROA not after: Tue 08 Oct 2024 15:18:46 +0000
asID: 209552
IP address blocks: 2a0f:85c1:51::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:5d:7d:9a:ab:4c:10:26:43:19:08:a8:5f:22:92:14:9c:9d:9d:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Oct 10 15:13:46 2023 GMT
Not After : Oct 8 15:18:46 2024 GMT
Subject: CN=C14D493793576C77739FC3712D17FC94EA3589BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:79:40:62:a4:67:7e:93:fb:33:c6:19:bb:07:
30:98:bf:39:f6:32:1e:5e:55:e8:0a:a0:22:0c:9f:
e8:07:8d:f4:ac:1b:49:37:c1:8a:cc:5c:60:fc:c3:
19:64:20:f2:ab:7f:1a:5d:f7:3c:ea:f7:de:60:5b:
2e:61:6c:8c:d3:0d:40:03:cf:96:9b:24:a3:be:b2:
b5:6c:86:98:f8:cf:04:75:df:7b:52:5f:a0:27:fe:
25:e1:bd:de:a9:0a:0f:ae:96:3c:eb:c2:45:57:15:
3b:cf:bd:b4:94:ef:7d:f8:43:2a:37:d9:3d:b4:08:
e5:b2:de:90:d3:5b:ed:ac:32:d7:0a:f9:7f:40:67:
d2:7c:bc:58:07:e6:b5:2b:09:b3:09:14:ff:be:6a:
94:c2:2e:d5:7a:7d:bb:7d:0a:aa:71:48:c3:76:80:
8c:b7:17:22:ce:57:5d:29:2d:a8:e0:5a:35:e7:4e:
66:c7:f9:73:e4:cf:e7:50:19:89:31:1e:38:04:d9:
45:3e:f6:61:f7:72:28:93:53:3f:a3:19:37:4c:d7:
94:d6:53:70:50:05:93:31:ae:1e:96:14:3a:30:96:
99:b9:f0:d2:ea:75:0f:5f:64:da:d0:7f:32:4e:09:
f1:b7:4e:dc:6a:ae:f6:b1:8d:b0:61:b6:46:60:05:
bc:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:4D:49:37:93:57:6C:77:73:9F:C3:71:2D:17:FC:94:EA:35:89:BD
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a35313a3a2f34382d3438203d3e20323039353532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:51::/48
Signature Algorithm: sha256WithRSAEncryption
3e:aa:7a:0d:d5:aa:62:b9:f0:17:e2:d6:f1:61:46:9d:71:63:
14:55:98:33:8b:3d:37:6b:3e:23:a0:10:a2:57:7a:e1:72:5b:
af:df:c3:cd:c7:33:8d:fb:32:df:3a:45:a5:d4:88:3d:be:24:
85:b8:f1:77:e7:d3:56:12:73:f5:08:92:99:50:b0:d5:18:2e:
75:c3:c7:c4:27:4c:c2:1f:4d:45:84:74:3f:e5:d6:a7:6d:f3:
c7:f3:70:b7:ab:a4:7f:cf:a8:b2:95:00:5a:af:af:7c:eb:f1:
bb:f0:db:25:8b:c1:04:0f:ae:82:01:32:1f:83:6f:61:85:d4:
ee:b7:8a:65:ff:c0:72:17:91:bb:c0:a6:26:7d:bc:89:7b:4e:
55:e1:5b:8e:7b:1c:c0:e8:44:72:a2:b6:52:56:13:51:4c:2a:
c5:51:93:f9:c5:c2:02:ac:d0:e2:cb:08:a1:4b:4d:49:d8:83:
78:8a:77:b6:12:f6:83:9b:13:6a:12:8d:34:69:cc:57:be:32:
dc:c9:0c:ea:3d:34:37:3f:80:9c:67:7f:10:34:89:a0:28:dd:
e9:2c:a0:79:d2:7b:86:e4:44:93:31:28:7b:a8:98:c1:87:ff:
5f:71:4b:29:7b:66:d8:c9:3f:92:b5:88:ac:3e:e3:ca:da:1e:
82:71:85:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 21:03:48 2024 by rpki-client on console-ams.rpki-client.org