Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563303a3a2f33322d3332203d3e20323135333138.roa
File: 326131343a316563303a3a2f33322d3332203d3e20323135333138.roa (raw, json)
Hash identifier: JVfTwk4238R4Y6lXf3mDfg/F4V08YWm7eVJO6/sJvVI=
Subject key identifier: 75:6A:59:D5:BB:F8:29:D3:C1:9F:A5:5B:79:87:3C:4D:47:9C:89:71
Certificate issuer: /CN=3134ee987e08d8b5583feef621a03150c4f35434
Certificate serial: 0EDF26FC20AADBFDB7A1CFEBBF2C89A4F1FC74F2
Authority key identifier: 31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563303a3a2f33322d3332203d3e20323135333138.roa
Signing time: Fri 15 Mar 2024 18:59:11 +0000
ROA not before: Fri 15 Mar 2024 18:54:11 +0000
ROA not after: Fri 14 Mar 2025 18:59:11 +0000
asID: 215318
IP address blocks: 2a14:1ec0::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 02 May 2024 17:53:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:df:26:fc:20:aa:db:fd:b7:a1:cf:eb:bf:2c:89:a4:f1:fc:74:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3134ee987e08d8b5583feef621a03150c4f35434
Validity
Not Before: Mar 15 18:54:11 2024 GMT
Not After : Mar 14 18:59:11 2025 GMT
Subject: CN=756A59D5BBF829D3C19FA55B79873C4D479C8971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:88:45:1a:13:28:8b:4b:72:8b:a1:d6:66:d1:
17:93:98:0a:93:77:9e:e9:97:a7:e6:3c:90:59:50:
54:27:ff:00:5b:c9:3b:8c:ee:63:0a:cb:97:7c:14:
fd:40:41:c2:df:b5:fe:20:d0:d3:2b:b5:dc:f0:13:
d5:d0:27:73:c4:7c:7c:38:e4:7b:23:cc:0a:46:7c:
4f:ae:d1:99:fa:7f:00:1b:78:a5:1c:b7:cf:18:7a:
f8:2f:7b:57:43:50:03:e0:66:71:99:fd:c1:fd:ff:
60:2d:79:0f:1a:18:56:0b:28:e8:4f:31:9a:0d:16:
a1:3f:c1:6f:a2:c0:c5:4b:e5:c1:50:d8:f2:59:fe:
9b:41:92:e0:0a:8f:cf:a5:d2:f8:62:6d:dd:92:3b:
03:03:82:8e:ed:27:1d:07:45:a3:3d:d0:16:a4:27:
68:9c:7e:cb:60:55:16:cf:a7:4d:04:4c:8e:2c:9e:
c5:a8:bc:4f:3e:81:5e:63:f1:16:12:84:bf:94:db:
40:03:e6:a2:30:e4:13:50:49:ac:16:16:20:8b:12:
34:86:c7:20:ab:0c:7f:ba:84:69:6f:4a:3b:e0:00:
42:c5:ea:d5:8b:5c:5c:51:15:8b:d6:d7:9a:7a:60:
e6:53:7e:5c:6b:a5:cc:d3:16:6c:4f:7f:d2:40:bf:
00:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:6A:59:D5:BB:F8:29:D3:C1:9F:A5:5B:79:87:3C:4D:47:9C:89:71
X509v3 Authority Key Identifier:
keyid:31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563303a3a2f33322d3332203d3e20323135333138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:1ec0::/32
Signature Algorithm: sha256WithRSAEncryption
31:c4:75:76:4d:2a:aa:3b:45:3a:fb:34:2e:2a:2c:b7:74:47:
b1:3b:4e:7d:02:9d:3c:5d:a4:2e:95:42:88:78:92:af:d0:35:
fd:17:20:45:b1:c1:c1:1c:a3:1d:39:c6:6c:2d:21:35:bd:f3:
73:a7:cd:76:d2:d6:0e:ff:b7:c6:7d:46:40:0d:24:00:8b:29:
15:ef:9c:2d:0e:9b:62:8b:04:d6:60:87:fe:23:f6:4b:c6:ff:
11:1d:a9:96:c9:6b:92:ed:06:87:9c:c6:69:97:f5:cd:3c:8d:
eb:e5:a2:85:b2:17:7c:98:52:bc:1d:26:0b:19:11:d8:24:69:
72:88:db:4a:1d:d8:5a:93:40:d6:d8:3d:f2:24:6f:53:d5:e5:
0d:75:ac:fa:24:11:f7:49:36:55:ec:12:90:dc:bc:e7:cd:fa:
6d:83:62:84:9c:8c:51:10:06:89:7d:b0:86:18:2d:f2:f1:98:
ab:b6:54:4c:48:e6:94:25:07:b2:bd:c2:a3:5e:ce:b7:1d:92:
dc:7b:40:52:65:be:36:09:b2:84:db:9a:3a:23:bb:f4:1b:c8:
4d:a2:5c:d3:bc:34:c7:1c:13:05:56:a1:d8:1f:97:26:3d:4c:
7e:f0:a9:a9:be:66:16:d1:64:cb:6e:d3:5c:fa:cc:2d:21:91:
57:97:81:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:09 2024 by rpki-client on console-fra.rpki-client.org