Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/3/326130613a363034303a313165303a3a2f34332d3438203d3e203136353039.roa
File: 326130613a363034303a313165303a3a2f34332d3438203d3e203136353039.roa (raw, json)
Hash identifier: 7KM8pV+bRFQ+nSRC7wE98lIHJ6EuNDV7Y4EsUdbo+nk=
Subject key identifier: BA:E5:DA:08:FB:22:D4:ED:59:AA:68:70:5A:23:3E:40:BF:EE:33:1B
Certificate issuer: /CN=F900BC65E2B646EBAC472A5DEA12BDB0011AC122
Certificate serial: 114B428DEFA2AF7D50F907703998B9C81CA146C5
Authority key identifier: F9:00:BC:65:E2:B6:46:EB:AC:47:2A:5D:EA:12:BD:B0:01:1A:C1:22
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F900BC65E2B646EBAC472A5DEA12BDB0011AC122.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/3/326130613a363034303a313165303a3a2f34332d3438203d3e203136353039.roa
Signing time: Thu 22 Aug 2024 02:38:57 +0000
ROA not before: Thu 22 Aug 2024 02:33:57 +0000
ROA not after: Thu 21 Aug 2025 02:38:57 +0000
asID: 16509
IP address blocks: 2a0a:6040:11e0::/43 maxlen: 48
Validation: Failed, certificate revoked on Fri 07 Mar 2025 20:46:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:4b:42:8d:ef:a2:af:7d:50:f9:07:70:39:98:b9:c8:1c:a1:46:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F900BC65E2B646EBAC472A5DEA12BDB0011AC122
Validity
Not Before: Aug 22 02:33:57 2024 GMT
Not After : Aug 21 02:38:57 2025 GMT
Subject: CN=BAE5DA08FB22D4ED59AA68705A233E40BFEE331B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e3:cb:72:9e:f4:0a:67:00:6b:26:13:08:74:
92:c5:bb:59:b1:1e:2b:0d:92:3e:99:68:74:f9:96:
97:ba:8b:f9:8f:a1:35:e3:ea:cd:42:f3:fc:f2:01:
d6:c6:e2:f7:be:80:92:29:f8:02:b8:1f:04:ac:4a:
aa:42:a5:b3:25:31:ca:7b:37:a8:28:75:bd:54:9e:
3e:4b:66:0f:68:12:b9:9b:14:0f:52:b2:40:0f:a6:
59:7d:28:2d:e5:b3:82:1e:5e:e2:49:bb:b4:38:9c:
d8:4b:47:98:5d:22:6a:8c:74:71:b6:dc:a8:34:75:
57:1d:78:6e:a7:fc:84:a0:89:ad:af:1a:d8:b5:d2:
18:0e:0f:9d:5b:52:2d:2c:41:b4:54:ec:4d:29:f4:
e7:f4:5e:97:b8:41:42:13:09:9f:29:29:3f:f7:07:
88:b2:ab:c6:3a:35:78:e0:7d:d9:01:bb:18:d4:e5:
98:de:e3:86:8d:45:c6:26:63:35:93:55:f3:00:9e:
73:f7:0e:c5:3a:fc:68:28:f6:a2:2d:b8:c1:fb:d7:
ff:e8:55:c3:7b:7a:64:d4:d6:1f:7e:cd:5b:5f:70:
a9:ad:fb:e3:dc:37:94:d1:8c:f3:fd:71:5c:75:04:
6c:bf:a6:8e:41:e4:fd:7a:0c:db:d5:ae:49:48:ba:
5b:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:E5:DA:08:FB:22:D4:ED:59:AA:68:70:5A:23:3E:40:BF:EE:33:1B
X509v3 Authority Key Identifier:
keyid:F9:00:BC:65:E2:B6:46:EB:AC:47:2A:5D:EA:12:BD:B0:01:1A:C1:22
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/3/F900BC65E2B646EBAC472A5DEA12BDB0011AC122.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/F900BC65E2B646EBAC472A5DEA12BDB0011AC122.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/3/326130613a363034303a313165303a3a2f34332d3438203d3e203136353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6040:11e0::/43
Signature Algorithm: sha256WithRSAEncryption
2a:92:ee:1e:f6:14:0c:4a:ba:3d:e9:1f:90:5a:3b:a9:1c:1b:
e3:13:06:c4:24:89:2d:3b:99:7b:56:62:82:b3:5d:a4:58:19:
a1:88:df:9b:6d:30:04:a6:b3:ab:36:dd:07:cd:f5:bd:72:46:
31:54:20:d3:c2:d6:f4:17:c3:b0:1f:a2:11:a4:ba:e9:c2:84:
a9:af:3b:e2:6a:7d:af:56:51:07:a2:f6:2f:33:10:44:bc:9d:
65:ba:34:be:ce:d3:84:bf:7d:37:be:58:c1:47:d7:47:8b:55:
3d:4c:c6:e5:62:6e:70:8c:23:17:98:96:8b:2d:fe:3d:c3:3a:
75:1a:74:04:54:36:aa:67:b9:0e:cf:4a:65:5f:9f:00:ed:fc:
e4:72:fd:17:6e:1f:e8:ec:ff:a2:95:7c:93:9b:17:e0:43:96:
28:eb:ca:ac:07:1f:4c:83:54:dd:7c:bb:8e:78:6d:6e:ff:4b:
d8:b1:bb:bf:ba:42:44:4a:55:42:b9:c7:d8:8b:d3:34:2a:19:
fe:ad:9f:ff:26:2c:16:c0:27:c2:2c:a1:7d:2e:ba:c2:c1:55:
15:fb:21:75:3b:5a:5a:91:b5:9d:b9:77:e0:35:83:60:b0:03:
a9:2b:b4:c0:09:4b:2d:3e:f0:ca:96:a8:a6:26:6f:5e:51:07:
03:4b:ae:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:49:59 2025 by rpki-client