Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7f5d2a1b-cacc-4e22-8af2-9f20a9329bcb/2/326130373a353463313a633530303a3a2f34302d3430203d3e20323134373537.roa
File: 326130373a353463313a633530303a3a2f34302d3430203d3e20323134373537.roa (raw, json)
Hash identifier: pz3rYn8Wehbm8GsYhjw69TRLY1YjDfvATen+z+wOfD0=
Subject key identifier: BC:95:98:A7:81:6A:49:F6:3C:05:04:F5:23:DC:EF:9B:1C:EC:7D:D4
Certificate issuer: /CN=B3DB14531713D5390DFDAD1D3BDCA5BB079F53DA
Certificate serial: 0404E49CBE9193AFD2F35FF15520CBBE70864B24
Authority key identifier: B3:DB:14:53:17:13:D5:39:0D:FD:AD:1D:3B:DC:A5:BB:07:9F:53:DA
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/B3DB14531713D5390DFDAD1D3BDCA5BB079F53DA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7f5d2a1b-cacc-4e22-8af2-9f20a9329bcb/2/326130373a353463313a633530303a3a2f34302d3430203d3e20323134373537.roa
Signing time: Sat 24 Aug 2024 12:02:33 +0000
ROA not before: Sat 24 Aug 2024 11:57:33 +0000
ROA not after: Sat 23 Aug 2025 12:02:33 +0000
asID: 214757
IP address blocks: 2a07:54c1:c500::/40 maxlen: 40
Validation: Failed, certificate revoked on Fri 30 Aug 2024 14:20:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:04:e4:9c:be:91:93:af:d2:f3:5f:f1:55:20:cb:be:70:86:4b:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B3DB14531713D5390DFDAD1D3BDCA5BB079F53DA
Validity
Not Before: Aug 24 11:57:33 2024 GMT
Not After : Aug 23 12:02:33 2025 GMT
Subject: CN=BC9598A7816A49F63C0504F523DCEF9B1CEC7DD4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:67:43:95:f6:56:1c:8e:ca:9e:1a:e3:53:50:
1e:06:d9:5f:56:37:f7:e0:39:5f:70:78:a5:4b:fd:
be:b1:2f:3e:e1:a9:43:2f:19:98:61:8c:c5:e6:ab:
11:ea:f6:d0:0c:7b:59:24:ae:80:d5:15:6a:8e:bb:
39:e9:2b:5e:01:f0:bc:2d:96:48:41:92:2f:64:df:
41:29:9c:49:a0:1c:6a:da:ff:16:1f:03:9c:72:4a:
20:0e:da:4a:25:c7:b6:aa:a7:7c:df:60:42:7a:99:
6c:9e:5f:62:4c:2f:a6:ff:35:c0:5d:ac:ba:4d:d8:
58:89:9f:31:a4:d8:64:be:cc:7d:eb:ad:4a:34:b9:
21:7b:b4:69:82:34:b8:91:75:31:ff:66:4a:64:2e:
d4:ea:8e:e8:a4:08:6f:2f:c1:82:6f:9a:e0:b8:4b:
4b:a0:fe:54:2c:52:fe:a1:b2:f9:bb:c7:85:bc:9f:
99:25:cc:c4:85:73:89:bf:af:3c:75:ea:d1:5b:39:
d9:47:07:5d:30:d0:02:66:9b:d5:ca:e5:ca:a3:cd:
79:31:83:a1:d7:80:46:00:2e:2d:97:b3:cb:d9:45:
3c:d6:6a:29:86:b5:6f:4e:57:7a:04:b3:68:c3:15:
2d:84:10:4c:74:c7:f7:33:bc:f1:0b:84:ca:b0:f5:
e5:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:95:98:A7:81:6A:49:F6:3C:05:04:F5:23:DC:EF:9B:1C:EC:7D:D4
X509v3 Authority Key Identifier:
keyid:B3:DB:14:53:17:13:D5:39:0D:FD:AD:1D:3B:DC:A5:BB:07:9F:53:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7f5d2a1b-cacc-4e22-8af2-9f20a9329bcb/2/B3DB14531713D5390DFDAD1D3BDCA5BB079F53DA.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/B3DB14531713D5390DFDAD1D3BDCA5BB079F53DA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7f5d2a1b-cacc-4e22-8af2-9f20a9329bcb/2/326130373a353463313a633530303a3a2f34302d3430203d3e20323134373537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c1:c500::/40
Signature Algorithm: sha256WithRSAEncryption
0a:b6:86:f8:23:64:6c:ea:5e:86:7c:84:40:98:60:c9:27:67:
ee:56:50:f9:05:6b:dd:6d:7a:bd:9a:92:bc:64:8d:2d:a7:43:
88:35:f7:d6:24:11:47:cd:6a:36:d9:7e:20:fe:bc:76:af:36:
19:cc:e1:b8:9b:2a:f6:d7:24:56:c4:de:88:b0:1f:33:e0:9f:
f4:2a:1f:a0:96:64:59:99:a1:37:ec:b0:cf:57:9e:3a:99:65:
f1:80:9c:33:86:4f:4e:2f:2a:59:6e:73:ab:48:5a:d1:a7:56:
3e:36:f4:73:d4:3a:20:bc:27:4d:65:0c:9d:60:01:ec:2d:23:
c4:c9:ad:e2:b0:99:17:ca:89:e0:dd:5f:43:93:f6:1d:20:e6:
7c:98:a8:d0:22:76:4b:92:1e:57:9e:d0:fb:8b:f9:e1:22:0d:
56:90:4e:08:af:dd:58:c0:82:6b:4e:4c:b3:e8:22:15:70:86:
c6:cc:bd:b9:83:2a:e9:70:36:09:f8:44:9c:5a:7f:cb:03:20:
a3:53:1b:48:89:0e:e3:62:ed:d2:48:80:cf:ce:69:48:1b:70:
cf:50:35:7b:90:48:27:ed:0a:3c:ed:aa:c3:cb:ad:1d:8a:45:
2a:76:fa:01:f2:53:07:87:1d:57:5e:94:28:65:ed:92:f9:f0:
31:f2:63:d3
-----BEGIN CERTIFICATE-----
MIIFejCCBGKgAwIBAgIUBATknL6Rk6/S81/xVSDLvnCGSyQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjNEQjE0NTMxNzEzRDUzOTBERkRBRDFEM0JEQ0E1QkIw
NzlGNTNEQTAeFw0yNDA4MjQxMTU3MzNaFw0yNTA4MjMxMjAyMzNaMDMxMTAvBgNV
BAMTKEJDOTU5OEE3ODE2QTQ5RjYzQzA1MDRGNTIzRENFRjlCMUNFQzdERDQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1Z0OV9lYcjsqeGuNTUB4G2V9W
N/fgOV9weKVL/b6xLz7hqUMvGZhhjMXmqxHq9tAMe1kkroDVFWqOuznpK14B8Lwt
lkhBki9k30EpnEmgHGra/xYfA5xySiAO2kolx7aqp3zfYEJ6mWyeX2JML6b/NcBd
rLpN2FiJnzGk2GS+zH3rrUo0uSF7tGmCNLiRdTH/ZkpkLtTqjuikCG8vwYJvmuC4
S0ug/lQsUv6hsvm7x4W8n5klzMSFc4m/rzx16tFbOdlHB10w0AJmm9XK5cqjzXkx
g6HXgEYALi2Xs8vZRTzWaimGtW9OV3oEs2jDFS2EEEx0x/czvPELhMqw9eUpAgMB
AAGjggKEMIICgDAdBgNVHQ4EFgQUvJWYp4FqSfY8BQT1I9zvmxzsfdQwHwYDVR0j
BBgwFoAUs9sUUxcT1TkN/a0dO9yluwefU9owDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2Y1ZDJhMWItY2FjYy00ZTIyLThhZjItOWYyMGE5MzI5
YmNiLzIvQjNEQjE0NTMxNzEzRDUzOTBERkRBRDFEM0JEQ0E1QkIwNzlGNTNEQS5j
cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk
YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC9CM0RCMTQ1MzE3MTNENTM5MERGREFEMUQz
QkRDQTVCQjA3OUY1M0RBLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF
BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS83ZjVkMmExYi1jYWNjLTRlMjItOGFmMi05ZjIwYTkzMjliY2IvMi8zMjYxMzAz
NzNhMzUzNDYzMzEzYTYzMzUzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzIz
MTM0MzczNTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF
BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdUwcUwDQYJKoZIhvcNAQELBQADggEBAAq2
hvgjZGzqXoZ8hECYYMknZ+5WUPkFa91ter2akrxkjS2nQ4g199YkEUfNajbZfiD+
vHavNhnM4bibKvbXJFbE3oiwHzPgn/QqH6CWZFmZoTfssM9XnjqZZfGAnDOGT04v
Klluc6tIWtGnVj429HPUOiC8J01lDJ1gAewtI8TJreKwmRfKieDdX0OT9h0g5nyY
qNAidkuSHlee0PuL+eEiDVaQTgiv3VjAgmtOTLPoIhVwhsbMvbmDKulwNgn4RJxa
f8sDIKNTG0iJDuNi7dJIgM/OaUgbcM9QNXuQSCftCjztqsPLrR2KRSp2+gHyUweH
HVdelChl7ZL58DHyY9M=
Generated at Fri Aug 30 17:28:47 2024 by rpki-client on console-fra.rpki-client.org