Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a66303a3a2f34382d3438203d3e203533333433.roa
File: 326130363a313238373a66303a3a2f34382d3438203d3e203533333433.roa (raw, json)
Hash identifier: KvYLyI28UN6KMt7A3GOYBgXxHxLw4f1fl3Mw8tbhD8o=
Subject key identifier: 6B:FA:47:A1:B8:87:78:23:72:63:D5:9D:64:1A:F5:1A:C1:95:E6:E5
Certificate issuer: /CN=D585C965DEAED8ED3ECAAFE189BBA5883899D4DB
Certificate serial: 5F9E7119F9BF5B43A5D5CAC8CED2A1289095992A
Authority key identifier: D5:85:C9:65:DE:AE:D8:ED:3E:CA:AF:E1:89:BB:A5:88:38:99:D4:DB
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a66303a3a2f34382d3438203d3e203533333433.roa
Signing time: Fri 20 Dec 2024 01:45:57 +0000
ROA not before: Fri 20 Dec 2024 01:40:57 +0000
ROA not after: Fri 19 Dec 2025 01:45:57 +0000
asID: 53343
IP address blocks: 2a06:1287:f0::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 21 Jan 2025 18:16:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:9e:71:19:f9:bf:5b:43:a5:d5:ca:c8:ce:d2:a1:28:90:95:99:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D585C965DEAED8ED3ECAAFE189BBA5883899D4DB
Validity
Not Before: Dec 20 01:40:57 2024 GMT
Not After : Dec 19 01:45:57 2025 GMT
Subject: CN=6BFA47A1B88778237263D59D641AF51AC195E6E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e9:52:a6:ab:bf:d6:05:42:9c:b1:f1:e5:1d:
3f:89:0a:79:1e:9a:19:51:49:77:39:1e:c2:a4:42:
9b:64:af:88:79:45:42:c4:b5:90:04:de:14:9a:a0:
27:9a:9f:08:c6:8e:41:df:17:8c:b2:6a:34:2c:8a:
d2:fc:7b:e0:c3:b5:8e:cd:3e:c3:91:26:5d:d5:58:
ec:bb:6a:6b:01:a0:98:1c:8c:b2:f8:00:cd:42:7d:
a7:bd:d0:3c:cb:c9:04:79:83:2b:86:0b:3d:21:9d:
91:de:3f:2e:c4:78:04:35:0f:0c:99:a7:e5:06:9b:
9a:fc:28:9e:f9:5b:23:6f:42:c5:11:04:f5:f3:93:
f9:94:a7:5c:8a:d1:6b:aa:16:d2:6a:72:99:1e:43:
b3:a7:a7:b3:b8:a1:36:97:2b:cd:9a:cd:d8:63:a6:
de:dd:6d:88:51:5d:45:89:01:15:8a:85:4f:89:9c:
29:b2:da:5f:00:3b:dc:7d:5f:58:64:f3:61:fb:09:
72:fc:be:e6:d1:ff:dd:1a:ce:b6:99:4d:34:ce:ff:
1f:d0:1a:2f:51:3d:af:88:88:ee:f7:30:61:97:8e:
87:8b:6e:7c:69:e1:04:73:b9:83:ec:28:38:71:d7:
5e:92:e3:fe:60:3b:c8:4b:00:96:27:f6:45:5e:9d:
d9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:FA:47:A1:B8:87:78:23:72:63:D5:9D:64:1A:F5:1A:C1:95:E6:E5
X509v3 Authority Key Identifier:
keyid:D5:85:C9:65:DE:AE:D8:ED:3E:CA:AF:E1:89:BB:A5:88:38:99:D4:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a66303a3a2f34382d3438203d3e203533333433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1287:f0::/48
Signature Algorithm: sha256WithRSAEncryption
40:46:39:53:6b:b8:73:03:e3:f8:cc:b3:4b:3a:b5:88:8f:c0:
b0:35:03:04:aa:e2:fa:8f:88:16:e4:88:f7:3b:39:f9:fa:58:
1d:9b:a8:21:86:22:e8:84:ad:39:dc:7a:03:2c:59:a6:60:bc:
5a:14:65:8e:bf:f8:96:b6:62:b6:17:7c:3e:9e:fa:08:a4:7b:
a5:7e:fe:23:8d:f1:5c:1a:2b:05:2d:d5:5f:33:f6:8c:a6:06:
d9:be:78:29:43:e6:fe:a1:22:0b:29:a9:73:27:4f:fd:36:56:
e6:fe:f0:22:63:3e:ec:fe:21:34:d2:64:0f:0e:1d:4a:1a:7b:
9c:a4:96:83:9f:8d:b9:f4:96:bc:92:8c:29:f9:3b:12:e8:9a:
ed:05:4a:16:e4:16:0e:17:61:f8:56:eb:37:33:0a:82:92:53:
a3:8e:de:69:0b:8d:55:18:59:75:d8:82:d6:f9:87:a8:40:96:
3c:14:20:bc:38:51:0c:18:a6:a4:f1:82:71:5c:f2:ba:82:84:
1b:2c:7e:38:2e:fb:ee:23:7e:5c:e2:71:55:7a:dd:c2:4d:6d:
b9:b5:ea:bf:44:a4:ed:50:58:d0:d9:cc:cd:c5:bc:ee:05:d5:
37:cf:41:23:4c:a7:5c:05:d5:51:c9:cd:6d:d4:df:59:89:57:
e1:05:58:de
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Feb 5 07:50:58 2025 by rpki-client