Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131663a3a2f34382d3438203d3e20323135313437.roa
File: 326130363a313238333a633131663a3a2f34382d3438203d3e20323135313437.roa (raw, json)
Hash identifier: xH3Y0q1OFsg1fGsH+D7iEfyCGwgR9J7yw8CykPhE0bk=
Subject key identifier: 9C:77:81:67:71:8C:EB:95:5A:89:D3:8B:02:36:8A:4F:B5:D8:7C:5C
Certificate issuer: /CN=B6366F3DD14AC5399103961C30642E6779892C6C
Certificate serial: 2801BB355D79FAB0ED12CAD67084A45FA5862C06
Authority key identifier: B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131663a3a2f34382d3438203d3e20323135313437.roa
Signing time: Tue 29 Oct 2024 07:16:34 +0000
ROA not before: Tue 29 Oct 2024 07:11:34 +0000
ROA not after: Tue 28 Oct 2025 07:16:34 +0000
asID: 215147
IP address blocks: 2a06:1283:c11f::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 10 Dec 2024 21:17:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:01:bb:35:5d:79:fa:b0:ed:12:ca:d6:70:84:a4:5f:a5:86:2c:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6366F3DD14AC5399103961C30642E6779892C6C
Validity
Not Before: Oct 29 07:11:34 2024 GMT
Not After : Oct 28 07:16:34 2025 GMT
Subject: CN=9C778167718CEB955A89D38B02368A4FB5D87C5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0d:37:35:67:5c:10:20:30:2e:96:41:96:bc:
c5:c6:21:c0:0c:98:cf:25:80:78:53:45:a2:4f:93:
d0:7c:fa:b7:74:ad:76:56:88:20:1a:d0:80:c9:c8:
c7:bd:2e:c6:a6:3f:97:fe:38:ab:57:09:1b:ed:4f:
09:d6:cb:4c:75:51:93:6c:e3:b7:df:12:6d:cb:8b:
46:f7:c2:61:bc:c2:b7:41:60:f4:10:dc:b5:80:16:
3f:af:42:d1:ee:bd:4b:5f:32:78:35:6d:7c:92:51:
8f:d3:81:d4:68:50:32:0b:f8:6b:0c:bc:48:26:39:
67:dd:8f:1b:74:d5:30:b5:01:84:f4:9f:ce:d9:cc:
e0:47:a4:b5:c6:bc:4c:d6:6b:af:29:cf:e9:f6:b0:
c3:cb:9f:de:70:af:05:8a:05:1f:38:79:b9:ad:90:
8a:eb:c8:b2:a9:2d:e3:90:0f:32:44:2d:5f:a5:84:
49:0a:b2:b5:d7:99:e0:20:d3:c4:2c:1b:ee:2b:51:
d7:f1:b1:b5:6c:96:a4:30:65:a8:91:9e:0d:10:e2:
c7:9c:c9:03:9c:d0:63:61:c9:0a:fe:42:19:92:f6:
d8:b6:22:93:dc:84:25:fa:b9:7e:29:15:eb:a3:96:
d1:2c:64:43:2c:88:19:33:d3:ef:35:67:cb:bb:42:
89:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:77:81:67:71:8C:EB:95:5A:89:D3:8B:02:36:8A:4F:B5:D8:7C:5C
X509v3 Authority Key Identifier:
keyid:B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131663a3a2f34382d3438203d3e20323135313437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1283:c11f::/48
Signature Algorithm: sha256WithRSAEncryption
43:3a:f1:40:e6:d4:70:39:0e:e1:4a:84:c9:2d:6d:c3:ce:d4:
9b:ec:9a:40:fe:2e:a3:7a:dd:e9:cc:48:e1:f1:92:c5:64:75:
3e:41:a9:cb:05:ea:7d:25:e4:a5:b8:29:f6:04:49:a3:24:74:
70:07:42:e7:bd:63:da:4a:49:4d:4a:20:90:eb:4f:10:39:40:
28:ce:82:29:cf:ee:66:c8:43:b5:ba:a6:52:84:73:cd:0e:3a:
82:5b:76:95:e5:52:67:37:a7:f8:8d:3f:42:9a:c3:17:15:46:
44:09:7d:81:01:50:b7:2e:fb:e3:3c:9f:ba:80:a9:4f:b8:b9:
ef:17:2d:cb:e5:de:00:82:cf:40:f6:86:e4:fc:f5:08:56:3f:
c7:36:0e:23:80:d4:92:2a:2e:8d:fc:a9:4d:32:14:56:d2:8c:
f1:1a:7c:1d:b6:df:57:d0:0f:4f:f9:1b:ba:dc:e2:af:2f:e8:
41:b3:42:9e:27:9e:ef:cc:84:9f:8c:02:bc:5f:6d:03:26:42:
31:06:f2:09:76:0c:d1:56:70:05:64:98:3d:b7:10:a7:1d:e6:
d6:7a:e7:b9:af:a8:d5:00:11:18:ae:11:35:57:93:76:12:bd:
7f:c4:a9:f9:b4:18:94:63:f3:66:b5:57:16:ab:98:ea:fe:ce:
6c:79:c4:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:34:15 2025 by rpki-client