Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1d20be4c-8db3-45e1-8169-0f2e4084132c/1/326130353a646663313a313430303a3a2f34302d3430203d3e2030.roa
File: 326130353a646663313a313430303a3a2f34302d3430203d3e2030.roa (raw, json)
Hash identifier: RfiosCEglywH8HRLkckaeGBkai8EHXBt1jwCtFpXwd4=
Subject key identifier: 27:01:B2:6E:27:7F:CD:4B:2C:D3:79:CA:10:BA:27:DC:CE:0D:A4:79
Certificate issuer: /CN=A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1
Certificate serial: 0F9F20719024AF3A94106C1C90D0951576F9133A
Authority key identifier: A8:45:D8:47:B2:7C:18:D2:A8:C4:3F:47:ED:AA:EE:AB:5C:CC:0B:E1
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1d20be4c-8db3-45e1-8169-0f2e4084132c/1/326130353a646663313a313430303a3a2f34302d3430203d3e2030.roa
Signing time: Thu 11 Jan 2024 14:55:02 +0000
ROA not before: Thu 11 Jan 2024 14:50:02 +0000
ROA not after: Thu 09 Jan 2025 14:55:02 +0000
asID: 0
IP address blocks: 2a05:dfc1:1400::/40 maxlen: 40
Validation: Failed, certificate revoked on Thu 11 Jan 2024 18:42:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:9f:20:71:90:24:af:3a:94:10:6c:1c:90:d0:95:15:76:f9:13:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1
Validity
Not Before: Jan 11 14:50:02 2024 GMT
Not After : Jan 9 14:55:02 2025 GMT
Subject: CN=2701B26E277FCD4B2CD379CA10BA27DCCE0DA479
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b0:b8:41:fb:52:5d:79:36:dc:3c:9b:18:42:
2b:12:4c:e9:3d:73:fc:f4:4d:28:c1:12:7c:15:cf:
b9:ee:c8:33:92:5b:c3:24:6e:fe:10:57:4c:d2:25:
5a:eb:96:c6:aa:ed:77:cd:b7:68:df:88:7c:b4:46:
ff:c7:43:35:b4:20:c3:28:0e:89:52:92:ec:19:38:
c4:62:98:89:dd:b0:31:23:b0:f1:2c:26:59:f0:52:
ec:b1:24:54:a3:d3:7e:e2:ee:71:a8:47:4d:2d:be:
60:ee:64:c6:65:12:d1:82:26:0a:ed:07:45:f6:a5:
16:72:e3:9a:dd:c7:e7:e1:02:61:43:07:15:d0:ac:
05:df:b2:43:04:ee:11:72:7f:8b:62:4a:e5:8f:fa:
67:4f:ea:2d:80:3a:0b:13:98:4e:4f:b0:bc:25:7c:
b1:9d:c2:4f:0a:55:ab:13:65:61:83:97:16:e6:a2:
1b:da:5a:e3:0b:42:e3:8f:dd:6b:1a:9a:09:c2:74:
ae:fb:42:53:59:44:25:06:71:a4:c6:dc:c4:3e:5c:
dc:66:49:b4:0e:85:73:23:53:6b:1e:06:0b:95:cd:
49:3b:1e:d6:a0:3c:da:f8:17:af:03:f7:53:63:fb:
3c:42:36:20:74:58:82:21:d0:74:35:4d:d4:59:ad:
88:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:01:B2:6E:27:7F:CD:4B:2C:D3:79:CA:10:BA:27:DC:CE:0D:A4:79
X509v3 Authority Key Identifier:
keyid:A8:45:D8:47:B2:7C:18:D2:A8:C4:3F:47:ED:AA:EE:AB:5C:CC:0B:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1d20be4c-8db3-45e1-8169-0f2e4084132c/1/A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1d20be4c-8db3-45e1-8169-0f2e4084132c/1/326130353a646663313a313430303a3a2f34302d3430203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:1400::/40
Signature Algorithm: sha256WithRSAEncryption
45:33:cd:25:94:27:c2:1b:0e:47:ca:0f:b5:34:56:98:bc:36:
30:65:99:92:45:a3:82:12:50:ac:79:43:80:24:3c:ce:10:09:
9a:42:da:1b:21:ad:63:b0:f5:dd:38:57:ea:0f:2c:c8:97:43:
00:e0:66:9d:8f:15:f6:fd:0d:b7:31:78:42:29:65:e5:0c:ad:
e7:6d:c5:84:2f:a9:85:8f:c1:89:9f:1a:70:1f:4f:8b:12:77:
0d:7a:30:60:b0:7a:81:2e:1f:39:81:63:51:47:22:59:f0:00:
c6:7b:57:5f:41:50:51:de:2c:0b:df:15:95:c9:6f:39:38:b0:
95:a3:54:d0:01:55:8b:d5:a3:04:fc:93:b4:5e:50:0e:74:52:
cf:9f:10:94:4a:85:63:fd:87:a0:e3:c4:99:07:0b:f7:b1:2d:
51:3b:c0:e4:f4:20:e0:9a:39:5d:f1:58:1c:e1:16:e2:b9:c0:
fc:8e:da:c4:e4:59:8b:d7:24:a2:ba:6b:42:01:e5:89:39:70:
2a:7b:c4:f8:3b:17:ab:5a:71:6e:1f:50:f9:36:7d:db:0c:ab:
2a:a7:f9:04:9a:dc:3d:6a:18:a9:1d:7c:50:f4:da:e2:2b:9e:
3a:3f:0a:c6:7a:33:a4:bc:16:42:74:c1:ec:73:9d:ed:a4:ca:
a5:dd:58:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:10 2024 by rpki-client on console-fra.rpki-client.org