Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3a2f34382d3438203d3e20323036363238.roa
File: 326130663a383563313a3a2f34382d3438203d3e20323036363238.roa (raw, json)
Hash identifier: UkfiMa2l636tefQ1FVHaBSDTW0uRq2/Fzd0aRSI+qC0=
Subject key identifier: AB:B7:E9:AB:6A:40:51:67:DF:1B:79:53:0B:A6:47:00:09:B6:78:80
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 299D8CBCDEB35532BEA6A3356B97B5399FCFEFB9
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3a2f34382d3438203d3e20323036363238.roa
Signing time: Tue 10 Oct 2023 15:14:49 +0000
ROA not before: Tue 10 Oct 2023 15:09:49 +0000
ROA not after: Tue 08 Oct 2024 15:14:49 +0000
asID: 206628
IP address blocks: 2a0f:85c1::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:9d:8c:bc:de:b3:55:32:be:a6:a3:35:6b:97:b5:39:9f:cf:ef:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Oct 10 15:09:49 2023 GMT
Not After : Oct 8 15:14:49 2024 GMT
Subject: CN=ABB7E9AB6A405167DF1B79530BA6470009B67880
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:63:0d:ee:e5:7f:18:1d:31:f1:47:fb:48:3a:
38:00:9e:2e:40:64:97:e8:15:cc:c5:b7:68:a0:24:
34:16:c5:c7:33:0e:70:53:90:7e:45:ad:b2:4f:51:
02:0d:ef:14:71:08:bf:1e:bb:e6:66:8c:c5:5d:df:
39:ae:bc:d8:ea:c7:98:0a:ab:33:5c:b4:0a:1d:4c:
2d:6d:52:8e:9f:37:88:a2:6c:56:c1:ca:b2:79:d1:
c5:94:7f:3a:da:c7:76:cf:2b:7e:e8:06:d4:ba:72:
c0:9b:31:51:a3:c8:fa:6e:10:ee:3c:e9:1e:af:33:
26:78:b5:cf:6e:9b:a8:34:e2:5c:bf:dc:f6:88:21:
1f:79:d9:54:93:57:cb:e8:b0:4e:82:3b:83:e1:34:
46:3f:20:ba:06:a8:0c:62:74:b6:db:01:eb:c2:60:
73:d5:b4:19:f4:4d:17:34:04:ef:d0:ff:31:66:80:
02:9f:7f:99:0f:25:10:73:a5:f4:38:a1:be:e0:86:
51:2d:8a:0b:48:c2:e2:bf:a5:89:8a:52:8c:c9:1d:
71:a8:43:16:6a:9e:8e:5f:fe:62:e4:74:ee:cf:0e:
41:3f:1b:60:57:04:c4:c0:af:1c:a7:7a:c2:06:42:
a8:3f:14:97:cb:8f:20:f9:f8:f2:97:65:ad:ae:31:
46:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:B7:E9:AB:6A:40:51:67:DF:1B:79:53:0B:A6:47:00:09:B6:78:80
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3a2f34382d3438203d3e20323036363238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1::/48
Signature Algorithm: sha256WithRSAEncryption
5f:a7:0a:11:ef:2a:f6:db:26:77:0e:17:94:83:15:f7:ee:c9:
b7:65:72:20:53:ae:41:a3:38:6b:9c:29:17:f0:08:5a:ff:27:
b7:99:35:7f:07:af:22:c7:8d:13:0b:ff:a8:15:70:d0:47:3c:
2b:be:2f:d8:03:c9:cb:cf:fb:c4:c6:c5:43:85:3b:13:e5:02:
9a:a1:c5:96:df:33:35:97:4f:64:16:3d:8c:01:63:a3:f0:49:
f9:aa:3b:d1:c9:27:7f:46:e8:01:c2:8e:07:c5:9e:96:de:6c:
8f:4d:f5:f9:6b:01:39:9a:7b:a3:8b:df:11:1f:9e:d7:0d:ac:
88:03:38:6b:95:53:49:50:67:97:80:0e:9e:92:cc:e2:f9:fb:
77:ec:ad:f4:cb:d8:74:a8:79:4e:0b:78:dc:24:b0:d4:59:d3:
6d:6a:dd:37:59:17:24:7f:49:f5:7f:39:c0:f4:bb:71:d8:70:
49:f5:a9:f4:10:44:35:ce:e6:0a:a4:38:7b:b8:48:4a:19:14:
19:81:ac:76:8f:a6:f9:b5:a9:34:15:5c:d7:88:ea:e8:82:ed:
8d:98:ce:b9:f8:a1:68:bf:f3:6e:d5:45:1a:cf:36:fa:44:40:
20:6f:aa:b8:70:72:72:ea:41:35:db:ba:07:1c:96:cf:69:d7:
f2:7a:29:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 18:17:04 2024 by rpki-client on console-fra.rpki-client.org