Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563303a3a2f32392d3239203d3e20323135333138.roa
File: 326131343a316563303a3a2f32392d3239203d3e20323135333138.roa (raw, json)
Hash identifier: l41JnIgZdb8qKNBBiKQGz30fgRXgG/LNPL6yFNTeed8=
Subject key identifier: 50:55:FC:47:6E:CC:19:3C:A0:55:27:35:99:32:0E:81:65:BF:82:6B
Certificate issuer: /CN=3134ee987e08d8b5583feef621a03150c4f35434
Certificate serial: 112EEA06607AE625627AC111DE2E4BEDF91987BB
Authority key identifier: 31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563303a3a2f32392d3239203d3e20323135333138.roa
Signing time: Mon 05 Aug 2024 11:20:23 +0000
ROA not before: Mon 05 Aug 2024 11:15:23 +0000
ROA not after: Mon 04 Aug 2025 11:20:23 +0000
asID: 215318
IP address blocks: 2a14:1ec0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 08 Aug 2024 09:47:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:2e:ea:06:60:7a:e6:25:62:7a:c1:11:de:2e:4b:ed:f9:19:87:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3134ee987e08d8b5583feef621a03150c4f35434
Validity
Not Before: Aug 5 11:15:23 2024 GMT
Not After : Aug 4 11:20:23 2025 GMT
Subject: CN=5055FC476ECC193CA055273599320E8165BF826B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:8c:61:b8:2f:fd:6b:e8:28:69:3f:26:93:29:
0e:45:bc:87:ae:b9:ab:c2:2e:39:bd:33:fb:1c:b3:
42:6f:72:ff:41:ba:01:ab:b9:64:b2:ec:2a:7a:c4:
93:d5:5c:48:6e:a8:df:4a:36:1a:8d:a7:2b:30:bd:
30:2b:cd:7f:1f:0a:1b:18:7b:39:d4:7e:ff:34:ec:
81:4b:03:2d:cf:26:96:e5:7b:64:6a:66:d3:76:fc:
49:a3:1d:c3:a0:5c:48:59:01:49:8d:ee:6c:4e:f7:
e2:ae:b2:97:f0:f4:fb:5e:47:78:60:e0:30:e9:c7:
fc:e4:16:cb:6d:13:a8:f0:3d:ee:f8:4e:4e:02:68:
96:41:e2:4a:de:16:20:ff:fc:cf:03:60:c6:96:0c:
c8:69:29:01:62:48:8f:34:94:57:e1:d4:b9:28:6e:
57:03:a4:e8:a0:ad:3b:ce:2d:b0:0e:37:38:5d:e7:
c6:26:e7:37:4e:16:f4:d3:c4:1a:52:d4:c8:5a:39:
8e:cb:47:06:0d:39:73:f5:38:46:49:d3:04:b7:c0:
92:ec:d7:0e:e7:8b:11:4e:9a:e3:cf:55:55:04:6e:
66:bd:3d:32:18:8d:ff:2e:f6:f4:fd:fd:76:7f:dd:
e8:fc:88:0a:60:fe:a0:a7:f4:d5:61:19:f0:64:5f:
03:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:55:FC:47:6E:CC:19:3C:A0:55:27:35:99:32:0E:81:65:BF:82:6B
X509v3 Authority Key Identifier:
keyid:31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563303a3a2f32392d3239203d3e20323135333138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:1ec0::/29
Signature Algorithm: sha256WithRSAEncryption
10:ef:d5:73:29:f2:b2:45:47:fc:4e:e9:13:d5:7e:e7:ea:33:
7e:54:26:15:ce:5b:e6:12:7a:d1:f8:64:7e:d9:c0:38:4c:35:
4e:a5:fa:fb:e9:65:19:04:68:2d:00:44:57:be:c7:4d:a0:f2:
0b:c7:35:01:ef:a2:8c:2c:50:12:de:c0:a8:0f:34:2d:bf:76:
52:6d:95:a9:e4:df:1b:3d:58:3e:23:a4:71:b0:20:d5:3e:c3:
c5:92:2a:56:74:bf:08:f2:80:87:09:c3:f0:49:98:61:8e:fb:
bb:b7:9f:88:08:a3:5f:b4:cb:da:92:c4:fb:c3:a8:f0:3a:71:
d8:65:ed:aa:f2:46:61:74:60:69:70:cb:ee:f9:55:62:4b:32:
c4:f4:9e:05:56:32:4a:68:bf:3a:9e:13:8b:d0:10:bb:d4:78:
b0:b2:33:10:12:13:64:18:b0:ab:e6:f7:76:eb:11:2c:cd:1a:
08:ec:95:9f:df:2e:5a:e7:91:14:6e:93:ec:b7:e8:5f:be:5b:
b6:23:99:33:68:c0:64:3a:b0:0d:a1:50:9c:dc:4f:95:5b:8b:
01:e5:7c:c5:48:2e:e8:33:ce:82:78:e2:47:5a:d0:fc:42:45:
7b:e7:84:4d:72:7e:11:73:d8:32:dc:f9:ae:90:af:be:45:06:
e7:0a:b1:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 8 12:52:51 2024 by rpki-client on console-ams.rpki-client.org