Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a3a2f33322d3332203d3e203438373030.roa
File: 326131343a316563313a3a2f33322d3332203d3e203438373030.roa (raw, json)
Hash identifier: W4camszVXGn7Ri/sxMMWE4JNxTYk5QT9tVo/DlSSiBA=
Subject key identifier: 56:DD:D0:A1:9B:E7:6C:E9:2C:80:8A:9F:95:19:3F:43:B9:12:35:33
Certificate issuer: /CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6
Certificate serial: 3FB8BFFFAC5116C25935043A14638B5F1A383A9A
Authority key identifier: 20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a3a2f33322d3332203d3e203438373030.roa
Signing time: Tue 17 Sep 2024 18:08:01 +0000
ROA not before: Tue 17 Sep 2024 18:03:01 +0000
ROA not after: Tue 16 Sep 2025 18:08:01 +0000
asID: 48700
IP address blocks: 2a14:1ec1::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 19 Oct 2024 08:32:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:b8:bf:ff:ac:51:16:c2:59:35:04:3a:14:63:8b:5f:1a:38:3a:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6
Validity
Not Before: Sep 17 18:03:01 2024 GMT
Not After : Sep 16 18:08:01 2025 GMT
Subject: CN=56DDD0A19BE76CE92C808A9F95193F43B9123533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9d:d1:0f:52:f3:16:ce:70:5a:6e:e1:b8:95:
c3:76:4d:0a:0d:38:dd:6f:73:d3:14:7a:5f:1d:34:
38:19:d6:e5:31:0f:dc:25:48:ff:bc:46:4e:7c:34:
66:d3:2d:fe:3a:c0:d4:0e:de:0e:9d:55:fb:ff:33:
a6:2b:7b:cf:58:19:60:38:b1:b0:17:93:b3:24:96:
72:0a:23:af:fe:47:b0:2f:ed:e4:30:45:e7:29:16:
cc:cf:9f:b6:a3:78:e9:af:fe:40:51:3c:b6:19:90:
8b:dd:b6:6b:55:c3:c0:0a:03:d7:b1:66:78:4c:c5:
19:28:b2:db:cb:4a:02:0a:18:f1:7b:c3:19:52:65:
98:4a:ad:a2:04:dd:56:1f:24:fd:78:47:d9:f5:02:
71:de:98:9c:97:89:c3:15:1e:27:75:ed:f0:cf:f9:
47:88:d9:6d:50:52:12:4c:58:1e:aa:53:e2:11:ed:
d4:32:1b:70:5a:9d:6a:3d:2c:9c:68:27:9c:c2:96:
fe:37:e4:69:61:9e:84:71:99:60:00:30:ec:bb:84:
ce:1e:5b:bf:6c:9e:3f:32:c4:2b:fe:ad:90:e7:b2:
a2:a3:76:d3:0a:c0:29:0c:e8:dc:d9:c6:30:70:c1:
1b:84:a3:d2:37:aa:a1:f0:84:0c:95:b2:48:0a:05:
b5:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:DD:D0:A1:9B:E7:6C:E9:2C:80:8A:9F:95:19:3F:43:B9:12:35:33
X509v3 Authority Key Identifier:
keyid:20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a3a2f33322d3332203d3e203438373030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:1ec1::/32
Signature Algorithm: sha256WithRSAEncryption
43:9e:21:0b:fd:e5:83:e6:48:d4:da:83:fb:38:21:06:4e:2c:
31:f7:e1:c1:fd:b0:e4:ca:28:55:50:93:db:f7:0d:8a:5e:38:
1f:3f:83:12:5f:a6:70:91:5a:c2:10:70:8f:06:28:89:f2:ca:
62:4b:68:4b:c1:08:cd:d6:e5:b7:ae:e0:d8:db:b6:f6:16:86:
fa:bc:d4:30:51:fa:50:11:19:a7:7f:72:21:69:ff:4c:95:9b:
87:d5:42:7a:27:37:df:e3:2f:6d:d6:df:13:46:30:1b:fe:d4:
b6:4c:18:76:63:9d:12:8c:a5:cf:02:4d:0b:bc:10:70:51:69:
3b:42:52:8e:0f:84:dd:c4:66:31:38:35:eb:9b:66:93:79:c7:
07:91:46:35:a4:6b:25:65:d2:93:2c:9a:48:97:fc:64:50:53:
2d:14:24:79:2b:f3:c8:86:dc:cf:07:f8:a6:50:ea:a2:22:6e:
43:e4:0b:ff:d2:d0:d0:3c:46:65:f0:81:ed:24:38:b1:23:5c:
7c:6c:7d:22:e2:fc:c6:ff:80:e2:72:81:a2:1f:66:64:86:85:
b0:c4:2e:6d:72:9c:4a:d0:14:d7:8b:c9:fc:1b:91:90:82:e8:
a6:58:f8:3a:21:cc:f8:9e:df:f7:f6:8d:a8:04:dc:53:cf:ae:
31:58:bc:3a
-----BEGIN CERTIFICATE-----
MIIFbTCCBFWgAwIBAgIUP7i//6xRFsJZNQQ6FGOLXxo4OpowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZG
NEFCREVDNjAeFw0yNDA5MTcxODAzMDFaFw0yNTA5MTYxODA4MDFaMDMxMTAvBgNV
BAMTKDU2REREMEExOUJFNzZDRTkyQzgwOEE5Rjk1MTkzRjQzQjkxMjM1MzMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtndEPUvMWznBabuG4lcN2TQoN
ON1vc9MUel8dNDgZ1uUxD9wlSP+8Rk58NGbTLf46wNQO3g6dVfv/M6Yre89YGWA4
sbAXk7MklnIKI6/+R7Av7eQwRecpFszPn7ajeOmv/kBRPLYZkIvdtmtVw8AKA9ex
ZnhMxRkostvLSgIKGPF7wxlSZZhKraIE3VYfJP14R9n1AnHemJyXicMVHid17fDP
+UeI2W1QUhJMWB6qU+IR7dQyG3BanWo9LJxoJ5zClv435GlhnoRxmWAAMOy7hM4e
W79snj8yxCv+rZDnsqKjdtMKwCkM6NzZxjBwwRuEo9I3qqHwhAyVskgKBbUnAgMB
AAGjggJ3MIICczAdBgNVHQ4EFgQUVt3QoZvnbOksgIqflRk/Q7kSNTMwHwYDVR0j
BBgwFoAUIPacTBRhOMsBIcTEy7OYdvSr3sYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm
NDA5LzAvMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZGNEFCREVDNi5j
cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj
N2UtYTBlMS04MDU3YTRmMDg2YzkvMC8yMEY2OUM0QzE0NjEzOENCMDEyMUM0QzRD
QkIzOTg3NkY0QUJERUM2LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUF
BzALhoGLcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS8yYWY3M2E5Yy0yMDU4LTQzYmItOWFjNi01YWI0MmRmYmY0MDkvMC8zMjYxMzEz
NDNhMzE2NTYzMzEzYTNhMmYzMzMyMmQzMzMyMjAzZDNlMjAzNDM4MzczMDMwLnJv
YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN
BAIAAjAHAwUAKhQewTANBgkqhkiG9w0BAQsFAAOCAQEAQ54hC/3lg+ZI1NqD+zgh
Bk4sMffhwf2w5MooVVCT2/cNil44Hz+DEl+mcJFawhBwjwYoifLKYktoS8EIzdbl
t67g2Nu29haG+rzUMFH6UBEZp39yIWn/TJWbh9VCeic33+MvbdbfE0YwG/7UtkwY
dmOdEoylzwJNC7wQcFFpO0JSjg+E3cRmMTg165tmk3nHB5FGNaRrJWXSkyyaSJf8
ZFBTLRQkeSvzyIbczwf4plDqoiJuQ+QL/9LQ0DxGZfCB7SQ4sSNcfGx9IuL8xv+A
4nKBoh9mZIaFsMQubXKcStAU14vJ/BuRkILoplj4OiHM+J7f9/aNqATcU8+uMVi8
Og==
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:59:51 2025 by rpki-client