Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/2/326130663a383563313a3631303a3a2f34382d3438203d3e20323136333234.roa
File: 326130663a383563313a3631303a3a2f34382d3438203d3e20323136333234.roa (raw, json)
Hash identifier: bOP8EdU4oX6OqAemOI6H3w3gp+JpBea9RYhyPBj1eSI=
Subject key identifier: 1A:36:63:94:C5:59:EA:C0:DD:81:C7:97:69:B7:C3:AB:31:BE:B3:77
Certificate issuer: /CN=069FAF47FF48AEF4C98F5097074530A74C111AB9
Certificate serial: 794F82092851A86E2D4EA51CD9262B5CB240BEFB
Authority key identifier: 06:9F:AF:47:FF:48:AE:F4:C9:8F:50:97:07:45:30:A7:4C:11:1A:B9
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/069FAF47FF48AEF4C98F5097074530A74C111AB9.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/2/326130663a383563313a3631303a3a2f34382d3438203d3e20323136333234.roa
Signing time: Tue 30 Apr 2024 07:03:27 +0000
ROA not before: Tue 30 Apr 2024 06:58:27 +0000
ROA not after: Tue 29 Apr 2025 07:03:27 +0000
asID: 216324
IP address blocks: 2a0f:85c1:610::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 14 May 2024 05:23:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:4f:82:09:28:51:a8:6e:2d:4e:a5:1c:d9:26:2b:5c:b2:40:be:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=069FAF47FF48AEF4C98F5097074530A74C111AB9
Validity
Not Before: Apr 30 06:58:27 2024 GMT
Not After : Apr 29 07:03:27 2025 GMT
Subject: CN=1A366394C559EAC0DD81C79769B7C3AB31BEB377
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:71:dc:7e:73:14:73:8f:10:84:a8:30:96:a6:
ac:1d:c8:5a:0b:af:0d:77:8b:95:99:2c:4b:32:bb:
64:1f:db:59:b5:12:89:2c:d9:3d:1c:db:93:d4:e3:
12:9c:0f:e6:63:66:4b:ec:45:91:f1:e0:c1:f8:bb:
41:bb:ef:37:70:6f:ff:c1:0e:87:d7:b7:69:05:2d:
3c:26:77:de:0f:10:a8:1d:12:6d:f3:58:9c:07:49:
f9:ed:13:36:d4:0c:6d:56:2a:cd:0a:1e:2a:d1:33:
2f:ce:8c:8d:43:c9:52:27:41:c3:72:5e:de:de:7a:
ec:8a:ae:a3:07:b8:34:69:94:65:a0:87:4f:34:18:
d5:e1:b0:72:6c:37:fc:c6:a5:2a:d8:e0:ff:3d:d7:
0b:58:08:18:60:7f:76:8c:5d:c5:e9:f6:dd:ed:78:
61:bd:c3:d5:16:ce:fb:25:0f:80:d7:5d:f2:ba:00:
e8:9e:e8:cb:fe:0b:77:f0:83:16:80:23:41:4c:44:
d0:a6:5f:68:59:4f:b8:12:a8:ef:3c:9f:77:ca:82:
a4:31:12:51:df:9a:5a:a6:57:05:9c:7b:31:a3:dc:
2e:4c:93:08:dc:26:4b:e7:df:56:d1:a1:8a:42:13:
6d:40:97:7c:40:08:db:13:81:29:f4:67:60:53:58:
b5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:36:63:94:C5:59:EA:C0:DD:81:C7:97:69:B7:C3:AB:31:BE:B3:77
X509v3 Authority Key Identifier:
keyid:06:9F:AF:47:FF:48:AE:F4:C9:8F:50:97:07:45:30:A7:4C:11:1A:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/2/069FAF47FF48AEF4C98F5097074530A74C111AB9.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/069FAF47FF48AEF4C98F5097074530A74C111AB9.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/2/326130663a383563313a3631303a3a2f34382d3438203d3e20323136333234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:610::/48
Signature Algorithm: sha256WithRSAEncryption
9c:b4:e8:95:58:d4:99:cc:74:65:8d:59:65:90:17:81:4b:6c:
fd:5f:c8:c2:13:a5:f6:a5:d4:16:20:57:7f:09:f4:f6:d0:37:
27:8f:1d:89:fb:79:f8:4c:1d:bb:2f:a9:97:ca:0b:7c:d1:21:
5c:5f:87:65:19:ae:d8:28:90:23:5b:c2:49:3a:b1:63:e8:70:
2e:15:07:2f:b8:d1:88:f1:e7:97:0d:de:a4:ce:37:1d:49:1e:
ed:2f:37:71:b6:a1:48:71:1c:fd:39:76:f7:78:95:81:0a:78:
dc:16:10:d1:e9:02:43:c2:ec:9c:62:73:90:d9:e0:be:dc:8b:
b4:ad:11:71:0b:10:dd:a3:46:cd:71:51:3f:54:13:a5:2d:35:
3d:2a:1c:bc:91:e3:8b:de:3b:6e:dc:6c:ff:fe:65:cb:0d:87:
ea:c5:83:81:88:9a:d6:7e:41:d4:8e:2c:94:cc:b2:cc:7e:c6:
6e:ee:2e:b9:5d:68:7d:ff:03:69:ed:03:ab:9a:b1:66:d7:71:
2a:80:03:36:66:c2:14:a1:db:ab:d2:d4:61:be:0b:73:aa:6c:
90:d5:37:40:99:48:a9:1e:d3:ce:31:6e:bf:12:7f:60:41:5c:
06:13:e0:5b:c2:d9:cb:c0:05:fe:b4:08:81:7d:de:ca:50:9e:
bb:3e:30:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:57 2024 by rpki-client on console-ams.rpki-client.org