Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1d20be4c-8db3-45e1-8169-0f2e4084132c/1/326130353a646663313a313430303a3a2f34302d3430203d3e203635353330.roa
File: 326130353a646663313a313430303a3a2f34302d3430203d3e203635353330.roa (raw, json)
Hash identifier: U06sg4FFrAH27uvCW9INzS6cWfcLwltLlQGdS17E//4=
Subject key identifier: 9E:02:8E:F1:6C:B0:B1:BF:57:E3:E2:A7:50:19:FA:AE:09:D4:F0:AA
Certificate issuer: /CN=A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1
Certificate serial: 27A648017E91112894AB69C0DD08031777D36E34
Authority key identifier: A8:45:D8:47:B2:7C:18:D2:A8:C4:3F:47:ED:AA:EE:AB:5C:CC:0B:E1
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1d20be4c-8db3-45e1-8169-0f2e4084132c/1/326130353a646663313a313430303a3a2f34302d3430203d3e203635353330.roa
Signing time: Thu 11 Jan 2024 18:42:33 +0000
ROA not before: Thu 11 Jan 2024 18:37:33 +0000
ROA not after: Thu 09 Jan 2025 18:42:33 +0000
asID: 65530
IP address blocks: 2a05:dfc1:1400::/40 maxlen: 40
Validation: Failed, certificate revoked on Fri 19 Jan 2024 17:13:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:a6:48:01:7e:91:11:28:94:ab:69:c0:dd:08:03:17:77:d3:6e:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1
Validity
Not Before: Jan 11 18:37:33 2024 GMT
Not After : Jan 9 18:42:33 2025 GMT
Subject: CN=9E028EF16CB0B1BF57E3E2A75019FAAE09D4F0AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:bd:86:e7:c2:23:33:40:2b:da:f5:f5:a4:b9:
90:ac:c4:60:b0:58:c4:99:5f:00:ed:70:95:a9:b7:
1b:48:52:c9:df:9b:db:95:75:21:9d:38:42:c2:7f:
de:3e:41:b0:dd:be:86:eb:e9:00:89:9c:b5:b0:2a:
a6:00:a1:5d:d4:a2:77:10:cc:e0:01:b2:2c:f6:cd:
6f:85:5a:69:61:93:f1:7a:f7:b5:7c:a0:5a:b8:6f:
e8:74:a4:04:75:d7:f0:93:96:48:b0:f7:db:58:61:
a3:37:af:4a:53:a6:23:6d:e6:34:8a:e5:2c:6b:c9:
69:53:62:14:4f:f8:65:08:9b:4f:63:8b:9e:6f:e8:
13:4f:38:c1:d8:35:ab:70:e8:d3:fa:92:4f:4a:91:
53:d7:d2:10:47:75:c4:54:b8:f3:16:67:c7:36:ad:
18:c0:59:9c:85:b5:7e:f1:5b:9e:38:cd:4b:f0:fd:
2f:97:f1:2a:15:1d:86:18:fa:14:7c:2d:40:7a:d5:
63:95:b8:d0:75:60:51:13:61:f8:27:8d:8b:d6:fc:
ef:61:4a:d9:57:98:90:ac:88:7e:3c:e3:96:2f:ff:
22:3e:6f:af:a4:49:10:c3:04:cf:3e:91:bf:28:03:
42:14:81:8e:d7:50:e1:41:dc:a7:58:01:8c:23:a6:
ee:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:02:8E:F1:6C:B0:B1:BF:57:E3:E2:A7:50:19:FA:AE:09:D4:F0:AA
X509v3 Authority Key Identifier:
keyid:A8:45:D8:47:B2:7C:18:D2:A8:C4:3F:47:ED:AA:EE:AB:5C:CC:0B:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1d20be4c-8db3-45e1-8169-0f2e4084132c/1/A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/A845D847B27C18D2A8C43F47EDAAEEAB5CCC0BE1.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1d20be4c-8db3-45e1-8169-0f2e4084132c/1/326130353a646663313a313430303a3a2f34302d3430203d3e203635353330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:1400::/40
Signature Algorithm: sha256WithRSAEncryption
a3:4f:78:ad:37:aa:8c:c3:c2:34:b0:68:e2:10:2c:0b:e3:0c:
0b:9c:44:4b:05:0b:f0:5e:41:ec:3a:90:a8:be:18:9d:cf:be:
4a:9b:c7:43:c7:59:b4:6f:1c:1a:da:f0:5f:c5:0e:59:57:43:
fd:9e:3f:48:49:f1:93:82:dd:4b:00:a1:67:b6:51:2c:24:27:
59:a2:1b:23:4f:16:f8:92:57:26:a6:bb:38:48:29:43:fb:02:
48:e0:85:72:f5:61:20:b7:5a:07:51:2b:7c:4c:c9:f8:1b:b3:
b9:ec:93:cb:53:bc:6e:75:11:26:4b:f9:e6:6e:17:b5:ae:84:
f1:c3:3f:1c:dc:a2:a0:58:14:3e:10:bc:2c:b6:d4:3a:20:d4:
d6:70:20:77:86:d0:01:21:15:89:c4:a3:f3:86:d7:bd:bd:68:
83:28:b5:e0:85:06:54:63:4e:bb:20:e8:5f:f3:47:b1:55:68:
22:f4:c0:1b:41:26:ba:1f:b0:0c:89:c6:9c:46:7e:d5:44:3b:
f6:88:75:57:c7:8e:d2:06:ac:a7:93:d3:84:4f:6f:10:1a:53:
80:7b:f3:58:5a:a4:8f:56:d1:31:af:81:61:3d:a1:24:43:2b:
69:31:01:69:e9:1e:75:af:7e:f0:7d:ce:66:50:96:ff:05:35:
b6:0a:cc:d0
-----BEGIN CERTIFICATE-----
MIIFUzCCBDugAwIBAgIUJ6ZIAX6RESiUq2nA3QgDF3fTbjQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTg0NUQ4NDdCMjdDMThEMkE4QzQzRjQ3RURBQUVFQUI1
Q0NDMEJFMTAeFw0yNDAxMTExODM3MzNaFw0yNTAxMDkxODQyMzNaMDMxMTAvBgNV
BAMTKDlFMDI4RUYxNkNCMEIxQkY1N0UzRTJBNzUwMTlGQUFFMDlENEYwQUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuvYbnwiMzQCva9fWkuZCsxGCw
WMSZXwDtcJWptxtIUsnfm9uVdSGdOELCf94+QbDdvobr6QCJnLWwKqYAoV3UoncQ
zOABsiz2zW+FWmlhk/F697V8oFq4b+h0pAR11/CTlkiw99tYYaM3r0pTpiNt5jSK
5SxryWlTYhRP+GUIm09ji55v6BNPOMHYNatw6NP6kk9KkVPX0hBHdcRUuPMWZ8c2
rRjAWZyFtX7xW544zUvw/S+X8SoVHYYY+hR8LUB61WOVuNB1YFETYfgnjYvW/O9h
StlXmJCsiH4845Yv/yI+b6+kSRDDBM8+kb8oA0IUgY7XUOFB3KdYAYwjpu55AgMB
AAGjggJdMIICWTAdBgNVHQ4EFgQUngKO8Wywsb9X4+KnUBn6rgnU8KowHwYDVR0j
BBgwFoAUqEXYR7J8GNKoxD9H7aruq1zMC+EwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMWQyMGJlNGMtOGRiMy00NWUxLTgxNjktMGYyZTQwODQx
MzJjLzEvQTg0NUQ4NDdCMjdDMThEMkE4QzQzRjQ3RURBQUVFQUI1Q0NDMEJFMS5j
cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt
cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wL0E4NDVEODQ3QjI3QzE4
RDJBOEM0M0Y0N0VEQUFFRUFCNUNDQzBCRTEuY2VyMIG1BggrBgEFBQcBCwSBqDCB
pTCBogYIKwYBBQUHMAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l
dC9yZXBvc2l0b3J5LzFkMjBiZTRjLThkYjMtNDVlMS04MTY5LTBmMmU0MDg0MTMy
Yy8xLzMyNjEzMDM1M2E2NDY2NjMzMTNhMzEzNDMwMzAzYTNhMmYzNDMwMmQzNDMw
MjAzZDNlMjAzNjM1MzUzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwRQwDQYJKoZIhvcNAQEL
BQADggEBAKNPeK03qozDwjSwaOIQLAvjDAucREsFC/BeQew6kKi+GJ3Pvkqbx0PH
WbRvHBra8F/FDllXQ/2eP0hJ8ZOC3UsAoWe2USwkJ1miGyNPFviSVyamuzhIKUP7
AkjghXL1YSC3WgdRK3xMyfgbs7nsk8tTvG51ESZL+eZuF7WuhPHDPxzcoqBYFD4Q
vCy21Dog1NZwIHeG0AEhFYnEo/OG1729aIMoteCFBlRjTrsg6F/zR7FVaCL0wBtB
JrofsAyJxpxGftVEO/aIdVfHjtIGrKeT04RPbxAaU4B781hapI9W0TGvgWE9oSRD
K2kxAWnpHnWvfvB9zmZQlv8FNbYKzNA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:56 2024 by rpki-client on console-ams.rpki-client.org