Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS329225.roa
File: AS329225.roa (raw, json)
Hash identifier: IoauaQGT6ESk6yZzu8ocZS6cfa5K5Q2CIXof80VAScE=
Subject key identifier: 9C:AA:6D:34:3C:3F:28:05:A1:5B:C9:5B:91:03:DB:D7:C2:A5:08:3D
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 44F9C510FDFECA3DCCF786CFB03B36AA20542115
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS329225.roa
Signing time: Tue 26 Sep 2023 08:14:35 +0000
ROA not before: Tue 26 Sep 2023 08:09:35 +0000
ROA not after: Tue 24 Sep 2024 08:14:35 +0000
asID: 329225
IP address blocks: 2a0a:c600::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 16 Oct 2023 08:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:f9:c5:10:fd:fe:ca:3d:cc:f7:86:cf:b0:3b:36:aa:20:54:21:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Sep 26 08:09:35 2023 GMT
Not After : Sep 24 08:14:35 2024 GMT
Subject: CN=9CAA6D343C3F2805A15BC95B9103DBD7C2A5083D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:62:71:e7:3c:fd:d8:d3:ff:e8:b4:6e:b9:89:
cf:6b:d8:64:c0:48:87:60:9e:97:ac:40:ac:4f:c7:
cc:cf:92:13:8c:6d:76:de:e5:52:22:76:e0:90:8a:
2d:cb:09:51:d1:f6:48:06:2d:90:0b:cb:73:d9:bd:
61:75:ab:01:96:3f:b5:4b:a9:0c:5f:ca:ac:a6:c8:
10:b6:45:9f:b4:8a:9e:e2:3d:0a:a9:3f:38:d3:d4:
3f:02:12:31:15:7c:5b:1e:fd:5a:81:1b:65:0d:7b:
21:77:36:d3:bc:59:0b:bc:e1:e5:a4:5b:98:c3:85:
b6:23:a7:df:d4:d8:3a:70:d4:4a:c8:d7:2d:81:0a:
ed:78:fa:94:9c:77:2e:0b:7f:8a:f9:eb:25:46:3f:
06:1b:8d:6a:9f:37:aa:b2:06:2e:fc:85:db:7d:7c:
21:ef:87:5f:e0:5d:c2:ae:56:64:0e:27:77:b0:30:
08:1d:4d:1c:2d:79:49:85:3f:1b:67:da:f4:33:c4:
a3:b6:4d:e6:b3:7a:bf:cb:0a:98:fe:ab:dd:55:6a:
8e:6c:25:14:3d:9b:8a:7d:c4:aa:25:27:34:fc:b8:
13:bd:29:ff:01:bf:5b:82:8f:9c:a5:7d:ee:ce:73:
e6:c6:aa:5f:f7:bb:33:54:b4:96:29:37:07:97:4d:
47:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:AA:6D:34:3C:3F:28:05:A1:5B:C9:5B:91:03:DB:D7:C2:A5:08:3D
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS329225.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:c600::/29
Signature Algorithm: sha256WithRSAEncryption
1a:b4:3c:5d:67:59:7f:da:be:12:86:4e:21:a5:fe:90:a8:2b:
8a:1a:bd:d3:18:cf:26:93:00:c6:87:98:d5:e9:ec:86:2f:a2:
7d:11:70:db:c3:94:5d:14:be:c3:1b:17:0e:52:54:01:10:11:
02:68:ba:ae:e5:9f:8d:c5:9c:03:7a:d9:02:28:5f:68:09:ea:
d2:45:20:f9:d8:51:b2:6f:81:ab:f4:41:10:98:47:ea:20:22:
61:1a:d1:03:eb:1a:71:fb:32:c4:b9:14:09:97:89:c3:ab:5d:
24:52:f8:ad:e0:a3:fb:f0:97:3f:99:dc:4c:26:72:46:b7:4e:
47:0a:dd:64:11:e3:99:9c:06:c4:93:03:af:e8:42:00:76:2b:
84:bd:7f:69:5c:ea:eb:54:e2:93:68:f6:9a:6d:72:97:6d:1c:
be:b3:19:ff:48:ef:02:78:b7:19:8e:9d:b7:73:c9:ca:90:eb:
a4:2c:64:92:b1:08:91:40:cd:7a:77:3a:55:68:64:9c:43:da:
65:26:61:eb:5c:94:4e:47:d2:4c:39:18:43:82:e0:7d:47:f0:
b5:ee:c8:91:3a:5b:06:2b:b0:8e:d0:45:a0:43:67:ee:33:f2:
72:78:16:ea:69:8b:0c:e2:89:15:cd:e8:0b:98:1e:8f:c4:e2:
80:51:10:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:15 2024 by rpki-client on console-fra.rpki-client.org