Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131313a3a2f34382d3438203d3e20323135313437.roa
File: 326130363a313238333a633131313a3a2f34382d3438203d3e20323135313437.roa (raw, json)
Hash identifier: HtzF+kJTNi0m78dwf6o+YjRx7KKLmaVlGFtx/57Y0Fs=
Subject key identifier: 33:ED:EA:4F:25:AF:D7:A1:A7:B4:46:FE:A0:FB:1E:EE:AF:A6:F3:B3
Certificate issuer: /CN=B6366F3DD14AC5399103961C30642E6779892C6C
Certificate serial: 126F23D57D8A1F22B869AFBA4704D3F61CC96536
Authority key identifier: B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131313a3a2f34382d3438203d3e20323135313437.roa
Signing time: Mon 14 Oct 2024 08:59:22 +0000
ROA not before: Mon 14 Oct 2024 08:54:22 +0000
ROA not after: Mon 13 Oct 2025 08:59:22 +0000
asID: 215147
IP address blocks: 2a06:1283:c111::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 10 Dec 2024 21:17:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:6f:23:d5:7d:8a:1f:22:b8:69:af:ba:47:04:d3:f6:1c:c9:65:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6366F3DD14AC5399103961C30642E6779892C6C
Validity
Not Before: Oct 14 08:54:22 2024 GMT
Not After : Oct 13 08:59:22 2025 GMT
Subject: CN=33EDEA4F25AFD7A1A7B446FEA0FB1EEEAFA6F3B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:6a:54:8b:9a:fd:90:70:ef:52:ea:8e:e8:4b:
59:cf:c7:c8:c4:7e:98:6b:4c:eb:e6:52:95:0f:c6:
75:2d:da:70:75:2a:2e:d1:a6:21:8a:ce:be:0d:ca:
06:39:39:d7:66:28:68:4a:b6:56:a9:1a:26:dc:91:
6d:27:36:9f:ca:4f:a7:dd:84:77:37:01:bc:33:92:
ba:fc:93:4e:28:83:3b:fd:a3:00:58:21:75:59:6a:
24:c8:1e:9f:a8:8f:c5:c8:6f:3d:39:35:9b:63:9b:
88:4f:8a:e4:14:d5:bb:18:11:21:6c:c5:f0:df:33:
29:84:e6:32:f2:3d:dc:c5:b8:4a:cf:9b:45:22:2d:
1f:f3:1d:a3:dc:9f:4c:03:6b:12:e4:98:33:a6:1d:
16:99:35:02:28:10:53:83:e1:f3:5b:c5:b3:ab:cb:
ad:ff:06:af:93:9e:70:54:e1:3f:8f:f1:a4:27:e9:
c7:8b:8a:4e:69:cf:e6:07:0c:c3:65:0f:64:6e:5c:
ae:71:ef:6d:78:0b:a6:43:45:88:2f:5f:cb:ee:96:
57:4a:b9:f1:07:1a:6f:cf:a4:bd:76:85:48:55:c2:
26:e6:42:46:11:05:2a:fd:4f:dc:58:7e:93:18:51:
fe:40:b2:f6:67:9c:6a:ec:10:3a:64:51:0c:6a:76:
7c:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:ED:EA:4F:25:AF:D7:A1:A7:B4:46:FE:A0:FB:1E:EE:AF:A6:F3:B3
X509v3 Authority Key Identifier:
keyid:B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131313a3a2f34382d3438203d3e20323135313437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1283:c111::/48
Signature Algorithm: sha256WithRSAEncryption
33:9a:17:60:f8:33:37:f9:b9:b7:ad:26:10:26:f0:38:66:28:
5f:2d:f4:a2:e9:9f:ad:c8:90:10:f1:16:30:68:a3:4e:23:5d:
81:53:0e:45:d2:79:81:fe:59:30:da:59:9b:bc:5a:ac:77:af:
b6:85:33:9c:2f:8a:4c:22:73:14:3b:a7:92:17:be:cc:f0:66:
33:48:e7:c1:81:39:91:ba:16:4e:ae:a8:03:bb:f9:69:29:e6:
9d:04:ae:ce:6e:7a:06:05:3f:c2:55:db:bd:cb:6a:4d:d7:de:
5d:b1:75:2c:b5:72:c4:47:e1:c7:01:7f:0c:04:a0:72:89:e5:
a3:eb:ce:bd:5a:e5:16:1d:88:fe:e8:f0:78:10:66:ee:5a:f4:
00:23:4d:22:af:33:77:f3:04:f8:26:92:19:4c:01:15:01:07:
80:72:77:c1:97:b1:69:ff:fa:cf:20:bc:e1:32:0b:66:6d:49:
9f:b0:64:b4:ac:dc:63:f8:ca:a3:f9:80:55:6b:f9:02:0d:b5:
f8:95:2c:85:a4:05:31:4c:1b:97:99:e6:cd:35:64:c9:7a:55:
99:de:c8:f9:37:3e:99:61:be:71:e4:97:13:cc:8c:e7:88:d7:
31:39:16:35:c9:39:3b:85:7e:6f:45:ef:de:54:60:34:54:56:
ca:1e:43:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:32:43 2025 by rpki-client