Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a3a2f33322d3332203d3e203438373030.roa
File: 326130363a313238333a3a2f33322d3332203d3e203438373030.roa (raw, json)
Hash identifier: SH+d8GaMEv7cq9q3syALOJ98PjmCcgQzSMSYaxsw0DE=
Subject key identifier: C6:04:22:D6:42:D0:16:6F:A0:A5:55:6B:DB:F1:4C:57:D1:78:E8:EF
Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959
Certificate serial: 73687632D310F488A4691C66E14E56B9C6630666
Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a3a2f33322d3332203d3e203438373030.roa
Signing time: Sun 15 Sep 2024 14:36:34 +0000
ROA not before: Sun 15 Sep 2024 14:31:34 +0000
ROA not after: Sun 14 Sep 2025 14:36:34 +0000
asID: 48700
IP address blocks: 2a06:1283::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 19 Oct 2024 08:32:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:68:76:32:d3:10:f4:88:a4:69:1c:66:e1:4e:56:b9:c6:63:06:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959
Validity
Not Before: Sep 15 14:31:34 2024 GMT
Not After : Sep 14 14:36:34 2025 GMT
Subject: CN=C60422D642D0166FA0A5556BDBF14C57D178E8EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:00:1d:b3:98:79:35:8a:08:a8:b2:57:3e:46:
2a:71:bb:63:b6:76:b5:8c:37:05:5a:6a:6c:be:04:
7f:d4:91:4e:1e:05:68:0c:21:cb:c3:f1:54:8c:9d:
68:9d:8f:1e:b6:51:10:0d:ee:fd:b5:41:5a:7a:40:
15:0e:87:c2:89:06:1e:cc:bb:e7:df:81:1c:57:67:
11:cb:01:c5:b7:7a:53:b4:10:90:13:fa:9e:66:6f:
05:3b:08:79:c1:9a:77:67:96:1f:0b:81:fd:c7:ae:
18:89:1f:c8:da:ef:58:80:bd:62:d7:3e:3a:8b:06:
8d:53:52:09:27:2e:dd:93:d5:c9:ee:6d:6e:97:38:
14:d1:1a:6f:d6:3e:52:83:ab:20:64:41:9c:2d:81:
8e:90:ce:2b:c8:26:99:99:8b:a1:68:14:68:3f:f4:
19:d7:d8:ba:67:93:51:d5:a3:a9:5a:0d:b8:9c:00:
22:90:e0:e6:b1:de:57:7e:17:ff:22:24:62:33:73:
72:d5:54:d6:7e:d0:46:4f:78:61:a3:46:d0:25:4c:
d0:ef:09:cb:7e:0d:d7:04:f0:18:6f:f0:40:f6:0d:
a7:7e:cf:be:07:5e:90:f2:b2:89:4e:b4:5e:91:ac:
76:0a:4d:02:cb:2f:93:71:01:4e:7e:0d:64:9d:c8:
92:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:04:22:D6:42:D0:16:6F:A0:A5:55:6B:DB:F1:4C:57:D1:78:E8:EF
X509v3 Authority Key Identifier:
keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a3a2f33322d3332203d3e203438373030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1283::/32
Signature Algorithm: sha256WithRSAEncryption
b4:13:9b:ec:db:dc:fe:ab:22:aa:7b:44:eb:82:03:5e:60:a9:
59:61:09:51:59:a8:91:1a:0e:a6:ea:72:ec:cf:ec:a7:2a:df:
1d:9b:8f:3f:58:48:71:38:4a:8d:9e:71:31:a9:84:a8:77:37:
85:2a:e8:df:d1:94:2c:bd:e4:f8:80:24:ff:d6:ae:81:9d:61:
1a:60:be:70:60:ff:e5:be:6d:9c:e0:b1:d4:ad:8c:7d:33:8d:
38:a9:08:db:81:3d:17:36:06:1e:02:05:55:0d:db:c7:44:68:
ff:f0:a8:3e:ca:83:5f:ab:52:d6:ce:93:c4:22:1f:67:cf:41:
f0:a3:d1:50:78:99:72:3c:0d:09:18:ba:6f:0a:97:82:8f:50:
92:6c:92:06:83:be:d5:37:15:04:e3:22:bd:32:43:a8:74:20:
e4:f6:b4:1a:47:ce:95:26:20:22:94:07:06:83:bc:bf:23:7c:
cc:a3:33:63:be:c2:30:b5:bc:5f:a5:5f:f9:dc:9b:2b:09:62:
30:e1:2d:9d:c3:8a:51:ca:cb:5d:87:d2:07:8e:5a:37:19:1d:
71:1c:5e:ca:03:15:0c:80:8e:38:e1:04:e2:ab:79:e8:bf:b6:
c1:7d:ea:c6:97:9a:0e:ca:fe:23:27:d4:f8:72:f3:ca:04:e6:
f3:58:47:24
-----BEGIN CERTIFICATE-----
MIIFYjCCBEqgAwIBAgIUc2h2MtMQ9IikaRxm4U5WucZjBmYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0
RjE5MDk1OTAeFw0yNDA5MTUxNDMxMzRaFw0yNTA5MTQxNDM2MzRaMDMxMTAvBgNV
BAMTKEM2MDQyMkQ2NDJEMDE2NkZBMEE1NTU2QkRCRjE0QzU3RDE3OEU4RUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBAB2zmHk1igioslc+Ripxu2O2
drWMNwVaamy+BH/UkU4eBWgMIcvD8VSMnWidjx62URAN7v21QVp6QBUOh8KJBh7M
u+ffgRxXZxHLAcW3elO0EJAT+p5mbwU7CHnBmndnlh8Lgf3HrhiJH8ja71iAvWLX
PjqLBo1TUgknLt2T1cnubW6XOBTRGm/WPlKDqyBkQZwtgY6QzivIJpmZi6FoFGg/
9BnX2Lpnk1HVo6laDbicACKQ4Oax3ld+F/8iJGIzc3LVVNZ+0EZPeGGjRtAlTNDv
Cct+DdcE8Bhv8ED2Dad+z74HXpDysolOtF6RrHYKTQLLL5NxAU5+DWSdyJLRAgMB
AAGjggJsMIICaDAdBgNVHQ4EFgQUxgQi1kLQFm+gpVVr2/FMV9F46O8wHwYDVR0j
BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm
NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j
cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp
LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1
YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5
MDk1OS5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt
MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz
M2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzQzODM3MzAzMC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoG
EoMwDQYJKoZIhvcNAQELBQADggEBALQTm+zb3P6rIqp7ROuCA15gqVlhCVFZqJEa
DqbqcuzP7Kcq3x2bjz9YSHE4So2ecTGphKh3N4Uq6N/RlCy95PiAJP/WroGdYRpg
vnBg/+W+bZzgsdStjH0zjTipCNuBPRc2Bh4CBVUN28dEaP/wqD7Kg1+rUtbOk8Qi
H2fPQfCj0VB4mXI8DQkYum8Kl4KPUJJskgaDvtU3FQTjIr0yQ6h0IOT2tBpHzpUm
ICKUBwaDvL8jfMyjM2O+wjC1vF+lX/ncmysJYjDhLZ3DilHKy12H0geOWjcZHXEc
XsoDFQyAjjjhBOKreei/tsF96saXmg7K/iMn1Phy88oE5vNYRyQ=
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:45:00 2025 by rpki-client