Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/326130373a323438373a3a2f33322d3332203d3e20323135383238.roa
File: 326130373a323438373a3a2f33322d3332203d3e20323135383238.roa (raw, json)
Hash identifier: f8vVvXjoGHp86T6arNaLhGuPRm/nKYwyk/oymRVnsgI=
Subject key identifier: 0E:6C:13:61:42:3B:35:0F:C3:58:AB:45:5A:AE:A7:0C:CE:63:EF:B0
Certificate issuer: /CN=07d362bdd7ca6e80e2c244437597bd47ef7a4fde
Certificate serial: 33BD307229CBEA58F361307F764F2A3FA13C80A6
Authority key identifier: 07:D3:62:BD:D7:CA:6E:80:E2:C2:44:43:75:97:BD:47:EF:7A:4F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9NivdfKboDiwkRDdZe9R-96T94.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/326130373a323438373a3a2f33322d3332203d3e20323135383238.roa
Signing time: Wed 06 Mar 2024 22:13:21 +0000
ROA not before: Wed 06 Mar 2024 22:08:21 +0000
ROA not after: Wed 05 Mar 2025 22:13:21 +0000
asID: 215828
IP address blocks: 2a07:2487::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 30 Mar 2024 15:52:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:bd:30:72:29:cb:ea:58:f3:61:30:7f:76:4f:2a:3f:a1:3c:80:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d362bdd7ca6e80e2c244437597bd47ef7a4fde
Validity
Not Before: Mar 6 22:08:21 2024 GMT
Not After : Mar 5 22:13:21 2025 GMT
Subject: CN=0E6C1361423B350FC358AB455AAEA70CCE63EFB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c2:56:90:28:91:74:94:c1:1f:72:f1:8c:ac:
26:ab:be:35:8c:04:c7:ab:c3:87:48:f5:c5:c3:eb:
cb:49:97:10:b7:6f:cd:43:b7:ba:23:21:cc:e5:63:
c6:cd:7a:6b:9e:b3:c8:ac:64:89:3d:a7:f7:d9:9d:
e5:22:e8:2e:68:cf:ad:d1:b4:9a:fe:a4:d2:bf:a0:
d6:d2:fc:00:db:88:3e:2f:7f:da:ff:38:f3:ff:e2:
ef:50:00:86:bf:6f:d3:e3:e9:a3:55:68:46:60:ae:
49:5f:10:75:a3:0b:16:4d:85:2a:db:64:ad:77:05:
19:cd:4c:7a:9d:c9:86:11:56:7a:db:96:96:d9:37:
8c:d6:9b:02:82:1d:43:d7:fe:9c:83:59:c0:fb:bd:
5c:23:89:38:92:8d:33:2c:e8:91:6a:c3:5c:82:be:
45:8d:76:cb:0d:a8:75:f2:04:3e:ed:ab:28:27:02:
3b:5f:39:95:d0:74:aa:d1:8d:31:c9:6a:e8:e1:5b:
6d:f5:90:11:ec:b2:5a:53:57:f7:bc:e4:40:af:cc:
53:73:74:0e:ab:fa:b0:0c:e5:9d:f3:7a:4c:37:22:
14:7c:22:17:c7:33:a9:55:1d:01:4d:13:01:bf:aa:
34:a4:1f:7d:ba:bb:7f:8a:c9:ea:71:79:4b:a0:c0:
ec:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:6C:13:61:42:3B:35:0F:C3:58:AB:45:5A:AE:A7:0C:CE:63:EF:B0
X509v3 Authority Key Identifier:
keyid:07:D3:62:BD:D7:CA:6E:80:E2:C2:44:43:75:97:BD:47:EF:7A:4F:DE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/07D362BDD7CA6E80E2C244437597BD47EF7A4FDE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9NivdfKboDiwkRDdZe9R-96T94.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/326130373a323438373a3a2f33322d3332203d3e20323135383238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:2487::/32
Signature Algorithm: sha256WithRSAEncryption
3d:be:fd:95:10:2f:1c:87:19:b5:3e:c9:fd:7b:9c:23:ce:92:
95:56:1a:b7:34:e8:4d:52:a8:b1:a8:ab:3c:a2:58:8e:ac:2b:
8e:fa:5a:62:73:4c:47:01:aa:77:c9:a4:42:a5:34:eb:fd:f4:
e4:ca:4f:1a:d9:b7:0a:5d:96:88:4e:ea:78:7b:b5:38:cb:51:
a0:26:f9:4f:f8:80:fa:46:02:a7:62:86:08:70:1b:f5:70:3c:
03:29:89:be:2b:0b:ad:27:0a:61:90:40:51:51:f7:69:c4:de:
21:6e:a3:16:03:0f:95:2d:20:0d:57:7c:7b:be:83:b0:5f:52:
42:ab:31:ca:ce:07:fd:e1:7f:99:cd:20:d6:91:5f:b5:f1:ee:
fc:e4:2c:71:31:22:f8:e7:36:44:38:a5:cc:4d:3e:6e:9a:76:
37:a0:70:10:4e:18:1c:27:47:36:ac:32:46:97:68:c2:0b:84:
16:0c:f7:c6:15:50:8f:39:e0:73:82:bc:1d:21:51:77:39:de:
3c:27:b3:23:0b:64:f3:5d:d6:3a:e6:a6:da:70:c7:96:2f:b2:
93:2e:59:9d:a5:a3:1d:b3:25:c2:fc:e9:2b:ef:35:e0:b4:8c:
7a:56:2a:d6:cc:bb:82:4f:72:0c:6c:4f:8c:31:c0:3d:c5:35:
0b:58:f3:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:10 2024 by rpki-client on console-fra.rpki-client.org