Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563323a3a2f33322d3332203d3e20323135333138.roa
File: 326131343a316563323a3a2f33322d3332203d3e20323135333138.roa (raw, json)
Hash identifier: 2sx/g8Ju/qOUYL65LTbW5m3lJksQkJF0KDoDjXIGeTI=
Subject key identifier: BA:73:E7:31:3D:A0:8E:46:CF:C2:9C:F7:B9:B2:3B:B7:B7:8B:F9:DB
Certificate issuer: /CN=3134ee987e08d8b5583feef621a03150c4f35434
Certificate serial: 4A265D938BAA342D63E3814CBA26EA1EA5AAB775
Authority key identifier: 31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563323a3a2f33322d3332203d3e20323135333138.roa
Signing time: Fri 15 Mar 2024 18:59:37 +0000
ROA not before: Fri 15 Mar 2024 18:54:37 +0000
ROA not after: Fri 14 Mar 2025 18:59:37 +0000
asID: 215318
IP address blocks: 2a14:1ec2::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 02 May 2024 17:53:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:26:5d:93:8b:aa:34:2d:63:e3:81:4c:ba:26:ea:1e:a5:aa:b7:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3134ee987e08d8b5583feef621a03150c4f35434
Validity
Not Before: Mar 15 18:54:37 2024 GMT
Not After : Mar 14 18:59:37 2025 GMT
Subject: CN=BA73E7313DA08E46CFC29CF7B9B23BB7B78BF9DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:90:71:4a:5f:e9:8d:e1:6c:68:8f:57:87:66:
14:98:72:d8:45:73:06:d5:0b:ba:79:5b:05:e8:56:
b9:fd:2f:b0:3a:94:4d:55:a5:93:d8:81:ff:a6:b2:
6c:f1:85:49:55:da:59:a5:22:bf:c2:71:fa:b6:a4:
dc:1d:25:4b:02:b4:54:21:6d:b9:e6:87:14:3c:01:
40:16:b9:f4:7a:97:95:8f:47:3e:fd:ae:f0:4c:08:
6f:56:2d:c9:bb:17:75:6a:da:d8:ac:f1:c2:14:aa:
95:2e:c9:55:a7:a7:26:7b:05:da:ff:27:78:56:d2:
76:05:c5:c5:f7:e4:ba:ce:26:ee:d1:f1:37:5c:6f:
0a:09:0f:0a:54:5a:1c:e4:63:d6:f4:a7:d9:77:87:
15:3a:36:a4:91:08:a6:ad:a0:2f:26:aa:44:b1:87:
1f:cd:50:26:07:01:66:18:a7:ff:b2:60:65:1a:de:
a2:b9:ea:16:ba:79:e0:5d:a7:01:ab:7f:a3:51:a1:
c6:88:8c:a1:45:38:4a:7c:ba:96:aa:5a:7e:8d:db:
b9:93:cf:e4:2d:ff:ac:2e:05:62:d4:27:0c:6d:46:
0c:96:fd:5f:18:dd:3e:58:ed:26:59:4b:44:77:68:
81:25:f8:a2:f1:65:71:02:8c:94:a5:a2:eb:c7:17:
e4:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:73:E7:31:3D:A0:8E:46:CF:C2:9C:F7:B9:B2:3B:B7:B7:8B:F9:DB
X509v3 Authority Key Identifier:
keyid:31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/326131343a316563323a3a2f33322d3332203d3e20323135333138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:1ec2::/32
Signature Algorithm: sha256WithRSAEncryption
84:34:9b:14:71:ff:53:4d:27:ae:85:14:c5:6c:28:93:69:b5:
c2:b1:84:2f:61:ec:36:48:af:7c:1c:79:92:9c:6e:02:6a:06:
98:e7:41:38:80:a3:9a:f5:54:56:a2:41:4f:82:70:6b:4c:b7:
07:f3:e0:76:9d:bd:b1:25:2f:20:3e:02:3d:f5:8d:e5:43:ab:
d3:72:37:09:e8:a0:4b:33:62:63:a4:fe:c3:af:5c:f3:da:98:
18:61:57:eb:c8:bd:5f:94:31:fa:b2:9d:4b:33:40:24:74:bb:
83:3e:96:85:81:b9:dc:16:e8:f9:08:ac:5c:b7:f4:06:01:79:
a8:64:67:8a:30:58:8c:9e:6d:8b:8b:f4:b6:6c:d8:d1:0d:56:
01:c8:d9:dd:ac:e8:d4:a5:f0:f4:3d:64:d2:d0:ae:a9:31:09:
e5:39:44:42:15:f2:2e:d3:14:62:bd:61:66:46:8a:ec:ae:e9:
f7:fe:2f:97:cf:b7:0a:39:0e:e3:d5:62:d6:83:a7:8f:08:e2:
a8:4f:64:d4:55:52:57:fd:ec:e0:a2:c2:c9:e0:9f:6c:ce:d8:
71:2e:8e:69:6d:2b:18:4e:f4:8f:8f:a4:35:6d:ec:48:33:ee:
c4:06:ca:4a:31:f7:3a:89:29:b2:25:7a:f8:a0:f3:69:62:3f:
5a:2f:70:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:55 2024 by rpki-client on console-ams.rpki-client.org