Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/323630323a666131313a3235303a3a2f34382d3438203d3e203630373433.roa
File: 323630323a666131313a3235303a3a2f34382d3438203d3e203630373433.roa (raw, json)
Hash identifier: +OSeTTfOMZJI1CF+77WF/J+SEPRpd09twBdnkUMHbVM=
Subject key identifier: D6:AB:21:B3:EA:97:F9:28:B1:C5:28:83:A6:14:F4:35:23:B1:46:B0
Certificate issuer: /CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6
Certificate serial: 342B1D1A16AEC8842F0F4B8BCCCAAC460F620227
Authority key identifier: BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/323630323a666131313a3235303a3a2f34382d3438203d3e203630373433.roa
Signing time: Sat 22 Jun 2024 19:57:21 +0000
ROA not before: Sat 22 Jun 2024 19:52:21 +0000
ROA not after: Sat 21 Jun 2025 19:57:21 +0000
asID: 60743
IP address blocks: 2602:fa11:250::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 01 Apr 2025 21:20:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:2b:1d:1a:16:ae:c8:84:2f:0f:4b:8b:cc:ca:ac:46:0f:62:02:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6
Validity
Not Before: Jun 22 19:52:21 2024 GMT
Not After : Jun 21 19:57:21 2025 GMT
Subject: CN=D6AB21B3EA97F928B1C52883A614F43523B146B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d3:34:3a:8b:5b:2d:9a:03:23:bd:b2:2e:c2:
52:de:16:ad:7e:fd:50:db:d2:10:bc:d6:d7:8e:2f:
c3:e0:8c:82:6d:39:5b:9a:87:f3:44:35:d5:46:96:
e3:d1:be:fc:d6:7f:88:39:b9:92:8d:f4:53:3e:66:
2d:14:66:18:5a:82:56:ea:ac:65:1b:b5:5d:48:19:
aa:7f:10:3d:1b:bc:43:10:83:a8:1d:5e:6f:26:e9:
0c:41:63:50:f1:75:d1:81:33:72:42:ad:82:9c:92:
34:c4:bd:ab:14:ae:93:54:f9:5e:e5:f1:b2:43:24:
db:7c:d3:61:5e:c0:72:5e:fa:58:17:58:2c:b2:29:
05:f4:18:c2:22:95:16:f8:a9:96:94:75:08:3e:e2:
3f:e3:16:03:49:ee:ee:8b:6c:ba:0b:96:86:c8:f3:
4d:b6:61:57:b8:ab:e6:14:db:a5:ef:4a:cd:67:e9:
7e:a1:a0:92:7a:b7:20:7d:73:e9:01:ad:b4:a4:8f:
cc:65:71:e6:ae:82:17:43:53:a4:35:f9:a6:be:4d:
5f:8d:b4:67:92:bd:5b:81:19:f6:c2:f3:a9:66:46:
2a:a7:ed:19:3d:cc:9e:7f:ec:55:f0:0f:73:0c:74:
9e:7a:e8:29:7d:96:f8:8a:78:7c:4d:cd:d1:25:db:
9d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:AB:21:B3:EA:97:F9:28:B1:C5:28:83:A6:14:F4:35:23:B1:46:B0
X509v3 Authority Key Identifier:
keyid:BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/323630323a666131313a3235303a3a2f34382d3438203d3e203630373433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2602:fa11:250::/48
Signature Algorithm: sha256WithRSAEncryption
67:9c:39:d4:cd:ad:8b:41:22:77:a3:8b:01:42:10:88:b1:a7:
09:2e:13:76:a3:90:aa:d6:c7:44:05:f3:89:e5:cc:a2:b2:72:
76:e2:ce:42:7c:f4:9b:4a:15:96:0f:88:a1:f1:af:30:0b:c5:
48:2c:5e:f5:29:f8:07:4c:04:be:0c:6a:b9:49:a1:dd:65:e7:
ee:22:ed:fb:08:f6:4c:29:55:95:41:ef:bb:fa:63:68:50:23:
de:f0:16:c2:b5:18:01:6f:39:1d:c3:46:b3:4a:a6:23:1c:a0:
70:62:ee:5f:c0:80:1d:ab:1e:c1:91:35:69:e5:d5:54:d1:4f:
75:e5:51:8d:74:53:9c:92:83:9e:88:89:51:17:63:de:bf:3a:
a5:ea:18:f5:ca:21:71:ea:ca:23:9c:ef:0f:53:3e:0e:ee:0c:
41:55:3b:87:01:fc:56:b6:ee:96:2f:2a:84:ec:74:00:cc:d8:
e4:46:98:c2:4b:b6:0c:fa:56:2b:f3:95:48:13:1f:e7:f4:f8:
97:ee:2f:99:bc:e4:d0:36:1d:3d:c8:8a:56:07:db:d7:0c:46:
43:19:d3:b9:38:7a:fe:b7:38:21:a7:eb:87:0d:80:de:05:b7:
bc:db:f0:75:bc:20:ec:70:47:3f:aa:43:24:c7:ac:bb:00:be:
c0:96:93:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:30:14 2025 by rpki-client