Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a653130303a3a2f34302d3438203d3e203336383332.roa
File: 326131343a373538303a653130303a3a2f34302d3438203d3e203336383332.roa (raw, json)
Hash identifier: fb8uo/47LRhbHY6LGsjgdhjayssQLJhlxlKo/cF2JiY=
Subject key identifier: 46:3F:7E:76:35:AB:64:F0:45:32:3C:1C:6D:09:9F:7B:64:D2:8C:28
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 5B5E280E1D088F6918EB3D431BB482ED2C310346
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a653130303a3a2f34302d3438203d3e203336383332.roa
Signing time: Wed 27 Nov 2024 23:31:02 +0000
ROA not before: Wed 27 Nov 2024 23:26:02 +0000
ROA not after: Wed 26 Nov 2025 23:31:02 +0000
asID: 36832
IP address blocks: 2a14:7580:e100::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 04 Feb 2025 00:17:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:5e:28:0e:1d:08:8f:69:18:eb:3d:43:1b:b4:82:ed:2c:31:03:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Nov 27 23:26:02 2024 GMT
Not After : Nov 26 23:31:02 2025 GMT
Subject: CN=463F7E7635AB64F045323C1C6D099F7B64D28C28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:53:0e:d1:89:a8:74:24:4e:17:f6:1a:b5:73:
c4:74:e3:aa:81:27:24:b8:03:21:ed:fe:2e:e6:49:
45:42:1e:8e:76:1c:e3:18:be:74:d1:12:c8:5b:3a:
92:30:ba:0a:68:bf:86:05:d1:b8:c3:68:80:62:e2:
8f:77:39:57:80:52:14:c3:3f:db:44:a5:6e:fb:7f:
95:cf:c1:65:1b:8e:40:0f:c5:ac:df:0d:6e:c8:0f:
08:fb:31:c5:b9:3c:e2:97:c4:f1:af:15:31:d9:d5:
b3:f5:de:95:b4:49:3c:4c:5c:94:f1:40:96:08:9d:
e8:53:ae:5e:2e:2a:d3:61:05:52:6a:37:74:c0:7e:
cc:c9:f0:e8:fe:7c:69:46:5b:4e:db:ad:ff:65:97:
5c:10:47:95:90:3e:54:ad:f2:3f:d7:10:4f:7a:85:
76:be:af:0e:44:f2:d0:90:14:65:d5:21:4a:92:d7:
cc:67:4b:16:f1:cb:79:70:6e:49:b9:37:b2:16:05:
e8:6f:69:f6:09:ad:32:6e:e1:19:9a:ba:8d:a1:d1:
dd:d1:dc:f0:36:81:61:e2:7f:91:97:2a:a8:95:3b:
c0:0c:9c:08:99:32:ae:1b:7e:d9:a7:a6:52:05:05:
b9:38:ff:87:ed:16:c6:36:c0:a4:eb:ae:de:ca:a0:
f4:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:3F:7E:76:35:AB:64:F0:45:32:3C:1C:6D:09:9F:7B:64:D2:8C:28
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a653130303a3a2f34302d3438203d3e203336383332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:e100::/40
Signature Algorithm: sha256WithRSAEncryption
80:dd:ae:1f:78:42:80:63:69:a6:2e:76:ba:35:46:25:11:19:
16:84:6a:19:1b:b9:66:d2:8c:59:10:46:77:fe:44:6e:8a:ac:
00:b2:52:db:48:b9:12:8f:42:cf:f3:0b:35:4f:45:c3:9d:a4:
0b:0b:25:91:fd:67:61:7c:fb:65:c9:7e:74:1c:46:d2:9e:27:
a5:a3:84:b1:22:e0:d8:b1:ba:5e:ad:65:df:f0:66:64:d0:bb:
63:81:1d:55:df:f9:9a:69:7b:05:87:86:5a:2f:66:d6:2f:99:
21:c5:e6:ae:b7:a0:2f:66:5a:52:9c:e8:dc:5c:2c:67:34:9f:
fd:62:19:63:68:06:81:2a:f5:59:e1:ff:5f:5b:a1:1c:de:fb:
14:b3:65:19:c7:dc:1d:5d:cb:8e:09:22:80:e0:0b:2c:e8:24:
d2:e0:71:71:17:48:5c:13:a2:f0:b5:5c:ab:38:67:fe:f6:b9:
c5:57:a2:b0:da:81:26:e9:67:f8:db:89:51:fc:7a:8a:c5:41:
da:d0:56:ee:0c:10:b7:79:eb:f4:db:f2:5c:38:b5:ad:a2:b2:
1a:df:5b:d3:b9:b0:40:bf:20:2a:bf:aa:c7:0f:4d:6a:6b:74:
66:67:56:dd:06:1f:3e:14:c5:ad:4b:66:bc:cc:93:d8:0b:6f:
91:49:55:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:50:07 2025 by rpki-client