Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ca811f8-d075-4e50-9bbf-7b2d0907168f/2/326130363a313238333a623330303a3a2f34302d3438203d3e20323132303439.roa
File: 326130363a313238333a623330303a3a2f34302d3438203d3e20323132303439.roa (raw, json)
Hash identifier: M8E5VVpLoEO5I36t39n+ndlfkZds0nfDE9F0h7CFwbQ=
Subject key identifier: E3:97:8B:2E:4A:81:5C:2F:CF:6D:F0:EB:3F:E5:8C:39:58:8B:31:9F
Certificate issuer: /CN=3986DB54152486D65338415899DEAD95A067B25E
Certificate serial: 5CF82ACB01C2E37F8BC44A4B3326A245062DD296
Authority key identifier: 39:86:DB:54:15:24:86:D6:53:38:41:58:99:DE:AD:95:A0:67:B2:5E
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/3986DB54152486D65338415899DEAD95A067B25E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ca811f8-d075-4e50-9bbf-7b2d0907168f/2/326130363a313238333a623330303a3a2f34302d3438203d3e20323132303439.roa
Signing time: Mon 13 Nov 2023 19:15:09 +0000
ROA not before: Mon 13 Nov 2023 19:10:09 +0000
ROA not after: Mon 11 Nov 2024 19:15:09 +0000
asID: 212049
IP address blocks: 2a06:1283:b300::/40 maxlen: 48
Validation: Failed, certificate revoked on Sun 28 Apr 2024 20:43:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:f8:2a:cb:01:c2:e3:7f:8b:c4:4a:4b:33:26:a2:45:06:2d:d2:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3986DB54152486D65338415899DEAD95A067B25E
Validity
Not Before: Nov 13 19:10:09 2023 GMT
Not After : Nov 11 19:15:09 2024 GMT
Subject: CN=E3978B2E4A815C2FCF6DF0EB3FE58C39588B319F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:cc:8d:1b:ee:5b:74:dd:bf:0d:5c:0e:11:73:
f5:ef:8e:a9:2a:d7:2f:d8:d7:4c:53:3f:48:c5:38:
6d:44:dc:b2:b6:04:76:57:1e:50:6f:75:ce:ef:6e:
2f:97:1e:98:16:10:4a:87:9e:e9:ed:e3:30:29:6f:
88:35:9a:30:a9:b3:d6:43:83:73:0d:67:be:73:2f:
46:a1:69:35:cb:93:5d:63:ef:60:38:52:ce:62:21:
d8:63:27:f0:8e:fe:ff:73:4b:8e:f5:4f:d8:4b:d6:
c1:d7:c0:9d:7a:1b:f3:32:f7:b6:48:9e:c5:f6:82:
c3:00:32:49:39:13:99:98:e6:25:7a:10:a9:45:44:
4d:a8:07:a4:02:29:0b:1a:8f:31:1d:38:34:6d:9e:
5b:35:af:f4:18:c8:1b:0b:1f:f2:47:4a:ce:37:c4:
5d:58:27:35:35:d1:98:23:7a:fb:f4:d7:53:08:76:
e9:75:3b:87:25:90:25:b5:82:6f:2f:ea:a8:7f:c5:
70:4e:e0:ef:61:59:bf:9e:11:bc:2c:30:48:94:fa:
ab:45:3d:e1:1b:bc:84:e5:2f:bd:83:98:ea:02:e2:
32:34:24:ab:fb:fe:3e:51:13:7f:54:78:28:55:88:
09:bb:41:58:f7:51:1e:94:f5:27:4a:8b:c0:84:61:
da:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:97:8B:2E:4A:81:5C:2F:CF:6D:F0:EB:3F:E5:8C:39:58:8B:31:9F
X509v3 Authority Key Identifier:
keyid:39:86:DB:54:15:24:86:D6:53:38:41:58:99:DE:AD:95:A0:67:B2:5E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ca811f8-d075-4e50-9bbf-7b2d0907168f/2/3986DB54152486D65338415899DEAD95A067B25E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/3986DB54152486D65338415899DEAD95A067B25E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ca811f8-d075-4e50-9bbf-7b2d0907168f/2/326130363a313238333a623330303a3a2f34302d3438203d3e20323132303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1283:b300::/40
Signature Algorithm: sha256WithRSAEncryption
48:da:23:b7:1e:bf:1a:96:69:61:9e:0b:22:13:6d:f2:bf:70:
29:34:e8:66:89:2f:3d:b3:7e:a7:bb:50:b1:22:bf:58:dd:2a:
4f:d5:40:a0:81:b3:e6:e8:16:7b:13:dc:20:7a:98:36:9f:b3:
b2:ac:11:ee:d7:8e:03:84:73:fe:af:e9:4b:46:1e:23:72:ed:
72:e3:1d:eb:b1:bf:d0:cf:d6:5d:85:25:9c:c8:b3:a2:ae:1f:
75:99:76:da:0f:83:28:2d:f5:bf:2e:da:0e:05:d1:1c:0a:bc:
42:7d:39:30:60:85:37:40:e8:9d:f6:9f:b7:4e:fd:fe:13:d9:
b1:26:79:0f:ed:55:5f:1a:17:a5:42:5c:a7:ec:bd:81:30:a0:
86:37:2b:fe:12:8f:15:f3:29:af:33:da:36:50:bf:37:95:66:
da:6e:97:7a:ce:76:0d:08:b0:ce:cc:42:69:21:af:52:b6:04:
57:dd:9f:28:95:b3:99:94:9a:d2:af:83:86:87:28:3a:bf:b3:
4d:a0:be:ee:90:c0:49:ca:68:df:d0:f7:60:b0:ad:90:a0:3e:
1f:9c:78:26:22:1b:aa:c8:21:c1:3f:6a:ec:3c:fd:37:f0:18:
00:b3:f7:14:ef:e7:e4:28:39:0a:c3:41:6d:5c:b1:1d:94:fa:
cd:8d:cd:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 22:52:47 2024 by rpki-client on console-ams.rpki-client.org