Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343030303a3a2f33362d3336203d3e203434383137.roa
File: 326131343a373538313a343030303a3a2f33362d3336203d3e203434383137.roa (raw, json)
Hash identifier: y+kGMXjZlGqFfkdSORlzJFVMkful5qacB43zWBuVtJc=
Subject key identifier: F7:9B:40:E1:28:08:E6:7D:07:82:8F:EE:4B:57:2B:C5:37:E4:52:3A
Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C
Certificate serial: 7398603398EEDF0432B16A5A22F482B9D5336613
Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343030303a3a2f33362d3336203d3e203434383137.roa
Signing time: Sat 23 Mar 2024 02:38:37 +0000
ROA not before: Sat 23 Mar 2024 02:33:37 +0000
ROA not after: Sat 22 Mar 2025 02:38:37 +0000
asID: 44817
IP address blocks: 2a14:7581:4000::/36 maxlen: 36
Validation: Failed, certificate revoked on Sat 23 Mar 2024 05:08:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:98:60:33:98:ee:df:04:32:b1:6a:5a:22:f4:82:b9:d5:33:66:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C
Validity
Not Before: Mar 23 02:33:37 2024 GMT
Not After : Mar 22 02:38:37 2025 GMT
Subject: CN=F79B40E12808E67D07828FEE4B572BC537E4523A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:8e:f8:57:0d:f8:87:be:a4:96:55:7b:f6:86:
6c:ac:84:07:0d:6c:ec:e1:39:65:03:0c:a9:5f:fa:
76:2b:d8:3c:99:8a:9d:4c:dd:ab:e6:17:b7:15:d2:
a1:d0:6e:c1:c7:8c:96:fe:6e:00:61:7d:e3:48:fe:
e3:3a:ee:f8:25:8c:1f:35:ee:fa:f1:70:3e:5d:53:
7c:6f:05:8b:7e:31:4c:64:1f:03:6d:e1:af:c4:bf:
e7:0d:87:e3:c7:e5:ef:11:66:4d:93:ba:a4:af:1e:
d0:68:0b:04:77:11:a6:45:11:d8:55:f2:7b:c2:6c:
b8:f9:d3:bd:7e:00:a9:c3:08:f5:f6:38:66:ec:9d:
cb:3b:85:3c:da:5f:e6:cb:4f:ae:1e:b0:30:63:dd:
bf:b3:58:75:a3:2e:35:a1:d4:8d:dd:30:f5:82:a3:
cb:3c:a6:93:6e:ae:3e:29:a8:e7:ab:60:b3:b0:73:
6e:92:cb:a7:01:f0:14:b7:06:0d:6f:47:49:a4:d0:
e4:8c:ce:f0:f5:da:d5:d3:2c:0a:9a:c5:6b:c1:81:
d8:c7:e2:ba:08:56:d4:54:a1:8e:bf:21:a4:b3:2b:
51:1b:73:c6:88:41:11:c0:14:c8:0f:65:93:fd:52:
e3:f9:ae:35:d5:0e:2c:0c:0a:92:43:67:f2:aa:8c:
0f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:9B:40:E1:28:08:E6:7D:07:82:8F:EE:4B:57:2B:C5:37:E4:52:3A
X509v3 Authority Key Identifier:
keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343030303a3a2f33362d3336203d3e203434383137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:4000::/36
Signature Algorithm: sha256WithRSAEncryption
a6:64:5e:e1:e3:06:45:43:d7:5b:d5:09:a8:73:0c:c4:6c:7c:
5f:09:46:17:a7:de:77:6c:f7:12:db:b0:39:4a:f9:2d:64:a8:
7e:ed:b1:46:89:47:56:7a:41:2d:7b:5e:d3:19:ed:4b:f5:af:
76:a4:f0:7a:58:99:7f:2b:49:c4:e0:81:c5:63:8e:91:93:ad:
ea:45:4f:ac:0c:d9:37:22:d7:a7:4a:dd:33:5b:7f:5a:cc:5c:
be:6f:51:88:b7:1f:9e:a9:e7:93:d6:52:94:a6:bd:ac:e1:55:
b7:11:65:9f:68:b6:21:70:9c:3d:76:dd:59:09:22:5f:b9:76:
75:bf:a8:23:92:4c:03:a2:84:5d:c3:67:74:1d:27:bb:ab:2f:
e1:51:89:ba:ad:d2:04:a8:25:f6:7c:75:14:80:48:1b:93:40:
e4:ba:c0:7d:c6:7e:9c:86:2f:6a:ba:49:76:49:67:09:87:6c:
f3:8b:e0:3f:71:97:41:fd:45:b7:e6:b6:46:72:cf:da:e4:a9:
a1:92:68:62:1e:90:e0:ee:08:1e:c1:83:7a:55:fc:a9:f0:dc:
b3:dc:a3:ad:02:b6:35:08:ed:8d:24:98:2e:26:51:20:0d:78:
b7:c8:19:05:7b:d9:c7:9c:29:1d:13:2a:21:51:57:aa:38:b5:
86:b6:67:67
-----BEGIN CERTIFICATE-----
MIIFeDCCBGCgAwIBAgIUc5hgM5ju3wQysWpaIvSCudUzZhMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF
MEFGQjM4QzAeFw0yNDAzMjMwMjMzMzdaFw0yNTAzMjIwMjM4MzdaMDMxMTAvBgNV
BAMTKEY3OUI0MEUxMjgwOEU2N0QwNzgyOEZFRTRCNTcyQkM1MzdFNDUyM0EwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVjvhXDfiHvqSWVXv2hmyshAcN
bOzhOWUDDKlf+nYr2DyZip1M3avmF7cV0qHQbsHHjJb+bgBhfeNI/uM67vgljB81
7vrxcD5dU3xvBYt+MUxkHwNt4a/Ev+cNh+PH5e8RZk2TuqSvHtBoCwR3EaZFEdhV
8nvCbLj5071+AKnDCPX2OGbsncs7hTzaX+bLT64esDBj3b+zWHWjLjWh1I3dMPWC
o8s8ppNurj4pqOerYLOwc26Sy6cB8BS3Bg1vR0mk0OSMzvD12tXTLAqaxWvBgdjH
4roIVtRUoY6/IaSzK1Ebc8aIQRHAFMgPZZP9UuP5rjXVDiwMCpJDZ/KqjA8xAgMB
AAGjggKCMIICfjAdBgNVHQ4EFgQU95tA4SgI5n0Hgo/uS1crxTfkUjowHwYDVR0j
BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4
NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j
cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy
OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE
QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF
BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz
NDNhMzczNTM4MzEzYTM0MzAzMDMwM2EzYTJmMzMzNjJkMzMzNjIwM2QzZTIwMzQz
NDM4MzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB
BwEB/wQSMBAwDgQCAAIwCAMGBCoUdYFAMA0GCSqGSIb3DQEBCwUAA4IBAQCmZF7h
4wZFQ9db1QmocwzEbHxfCUYXp953bPcS27A5SvktZKh+7bFGiUdWekEte17TGe1L
9a92pPB6WJl/K0nE4IHFY46Rk63qRU+sDNk3ItenSt0zW39azFy+b1GItx+eqeeT
1lKUpr2s4VW3EWWfaLYhcJw9dt1ZCSJfuXZ1v6gjkkwDooRdw2d0HSe7qy/hUYm6
rdIEqCX2fHUUgEgbk0DkusB9xn6chi9qukl2SWcJh2zzi+A/cZdB/UW35rZGcs/a
5KmhkmhiHpDg7ggewYN6Vfyp8Nyz3KOtArY1CO2NJJguJlEgDXi3yBkFe9nHnCkd
EyohUVeqOLWGtmdn
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:11 2024 by rpki-client on console-fra.rpki-client.org