Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563313a3a2f33322d3332203d3e20323135333138.roa
File: 326131343a316563313a3a2f33322d3332203d3e20323135333138.roa (raw, json)
Hash identifier: 8Hj0NCDaxVb5uLtYng59fD1ZkEhURKUu0/R2WZw3HhM=
Subject key identifier: 91:AD:B0:3A:AA:CB:08:87:C2:A3:45:88:33:A7:95:3B:10:BB:90:18
Certificate issuer: /CN=3134ee987e08d8b5583feef621a03150c4f35434
Certificate serial: 75592F9C6087F3426C6A52878F075E4421A35939
Authority key identifier: 31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563313a3a2f33322d3332203d3e20323135333138.roa
Signing time: Fri 15 Mar 2024 18:59:22 +0000
ROA not before: Fri 15 Mar 2024 18:54:22 +0000
ROA not after: Fri 14 Mar 2025 18:59:22 +0000
asID: 215318
IP address blocks: 2a14:1ec1::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 02 May 2024 17:53:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:59:2f:9c:60:87:f3:42:6c:6a:52:87:8f:07:5e:44:21:a3:59:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3134ee987e08d8b5583feef621a03150c4f35434
Validity
Not Before: Mar 15 18:54:22 2024 GMT
Not After : Mar 14 18:59:22 2025 GMT
Subject: CN=91ADB03AAACB0887C2A3458833A7953B10BB9018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:75:41:2a:a4:d6:fc:60:aa:da:8e:4e:d8:98:
7f:9c:02:e1:5f:dd:21:8e:d4:dd:97:cf:6d:c8:5f:
c3:9f:07:61:f6:64:6f:ee:0a:04:ca:62:02:a4:9f:
26:48:ca:a1:f6:df:55:74:e9:ae:57:9c:21:aa:57:
cb:a9:29:78:88:71:17:55:7e:c5:8b:d5:bc:8c:a0:
89:31:7e:bd:bc:4e:52:4b:8e:4b:34:a3:c6:13:b6:
a2:8d:ea:a9:be:81:43:26:e7:84:9a:03:41:29:97:
9d:f2:c2:36:44:2d:bf:1b:e9:c4:4c:de:78:51:61:
b1:14:ff:85:40:21:81:0e:45:0c:34:f6:82:a6:ab:
9e:9f:ec:df:1d:dc:b5:cc:16:43:8e:03:e7:6c:9c:
15:bc:8a:1b:e9:81:6e:1b:ca:de:38:4e:14:45:2f:
b7:e1:52:86:be:89:f6:5f:8a:c6:16:61:ec:2c:d9:
cf:df:fd:10:9a:0f:9f:14:19:df:31:ae:63:7b:ab:
82:67:fe:c6:e2:a2:38:63:f2:23:11:9b:fb:1b:e8:
2d:72:3b:19:b4:ed:ca:84:78:ae:c0:23:7f:7c:21:
7f:c5:83:1f:3a:b7:6e:b5:98:6e:fc:02:14:3f:2d:
71:ee:b3:b5:3e:e3:0a:e8:a9:c5:97:1c:4e:bc:30:
f3:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:AD:B0:3A:AA:CB:08:87:C2:A3:45:88:33:A7:95:3B:10:BB:90:18
X509v3 Authority Key Identifier:
keyid:31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563313a3a2f33322d3332203d3e20323135333138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:1ec1::/32
Signature Algorithm: sha256WithRSAEncryption
6f:40:f0:22:c8:f9:57:f6:2a:9e:a9:98:c9:47:7f:df:80:ee:
c3:a7:7f:41:f1:70:93:50:20:c9:63:2b:ac:f9:aa:d4:d9:8a:
ed:3b:b6:8d:be:03:95:bf:07:0c:c9:c0:62:ef:8e:fa:9a:aa:
1b:a2:e7:43:c0:8a:d7:11:7e:bd:c9:46:da:1a:42:8c:de:41:
c4:1d:0b:95:fc:37:f6:ab:a6:1c:be:ac:24:93:1e:36:ec:64:
f3:35:67:c2:3a:52:4b:2e:7c:6c:54:45:b4:6b:6c:a4:18:6e:
df:6b:0e:56:47:a7:19:e7:c8:e6:dd:44:b2:0a:48:11:64:aa:
1a:65:65:dd:d5:27:8c:d4:59:8e:3b:96:6e:2c:18:69:8d:f1:
eb:ed:77:50:9d:83:f2:1c:3d:73:6b:20:b3:ff:86:b1:0a:51:
e8:53:fd:c4:38:d1:12:24:9a:8f:c5:83:a8:d7:b8:fd:2c:ef:
ef:bc:cb:54:09:9f:08:ea:5d:5a:bf:ef:a6:92:ba:e3:08:cb:
78:79:07:6c:c7:cb:02:53:e8:ea:08:f6:52:77:ba:00:28:c9:
92:aa:79:08:e1:18:99:48:f4:e0:13:80:ac:35:da:7d:a3:a9:
81:7b:ab:b4:ea:ea:76:62:0c:b8:8e:3b:cd:be:6f:fe:cd:d1:
bf:3f:7a:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:09 2024 by rpki-client on console-fra.rpki-client.org