Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a653430303a3a2f34302d3438203d3e20323136333432.roa
File: 326131343a373538303a653430303a3a2f34302d3438203d3e20323136333432.roa (raw, json)
Hash identifier: txsr6fl+pDlPua92ymxr7uPtq5AvWe9Fe1VyACWdVeI=
Subject key identifier: FC:4E:01:B9:A6:6C:38:32:03:46:33:45:92:BE:BE:6D:4B:F8:5B:F0
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 1080E44B0068DC0E53DA5F507A7BC886542BABF9
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a653430303a3a2f34302d3438203d3e20323136333432.roa
Signing time: Sat 14 Dec 2024 15:25:05 +0000
ROA not before: Sat 14 Dec 2024 15:20:05 +0000
ROA not after: Sat 13 Dec 2025 15:25:05 +0000
asID: 216342
IP address blocks: 2a14:7580:e400::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 04 Feb 2025 00:17:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:80:e4:4b:00:68:dc:0e:53:da:5f:50:7a:7b:c8:86:54:2b:ab:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Dec 14 15:20:05 2024 GMT
Not After : Dec 13 15:25:05 2025 GMT
Subject: CN=FC4E01B9A66C38320346334592BEBE6D4BF85BF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c0:35:0b:97:5c:d9:04:40:a3:bb:f4:5c:11:
73:45:d4:d5:5a:ed:89:8a:60:66:a2:3a:36:10:ca:
72:a2:6d:d3:0c:94:97:c6:22:ac:d7:13:9a:3b:05:
d4:16:87:d0:49:46:07:57:a9:83:26:64:ed:16:2d:
f3:e2:58:e0:23:2b:76:6c:14:86:89:a3:c5:7d:aa:
6d:a2:d6:05:8d:74:1a:51:3e:99:ff:72:85:40:1e:
ed:e6:4f:9e:cd:74:b5:7c:fa:8f:4b:5b:c9:8f:fe:
2f:20:2d:ac:b0:0e:d2:2a:72:de:ec:5d:82:30:1a:
a6:a5:9c:4d:19:1b:30:15:95:39:88:1c:c4:d8:eb:
d3:d6:94:c8:af:f2:ee:12:ea:46:16:6d:68:b2:e3:
0c:ad:15:6f:51:70:08:0a:be:b1:8b:79:0a:86:10:
bc:53:a5:b1:80:d5:a4:6a:da:14:ca:48:91:45:65:
5b:62:5b:47:d1:42:08:40:6d:5d:59:4c:8c:2f:c8:
e3:69:f0:dd:50:50:7e:78:2d:cd:39:91:d6:74:30:
8e:1e:54:0b:05:d4:15:cd:46:1c:a2:0f:e1:72:4a:
a8:f3:a5:c7:67:ea:ba:0d:87:70:b6:c1:17:9c:92:
74:01:59:7f:ee:9b:ff:61:c7:b6:95:fc:23:44:a8:
3c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:4E:01:B9:A6:6C:38:32:03:46:33:45:92:BE:BE:6D:4B:F8:5B:F0
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a653430303a3a2f34302d3438203d3e20323136333432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:e400::/40
Signature Algorithm: sha256WithRSAEncryption
7a:99:63:6b:6f:dc:2c:6b:7a:9a:71:c1:66:5b:b1:e1:85:14:
06:d6:97:ef:46:36:db:38:7d:2e:a2:b6:35:6e:39:fd:fa:55:
36:41:3e:18:ec:c5:2c:36:da:e8:31:07:ea:0c:13:ba:d5:95:
56:90:58:ad:d2:42:15:22:78:b0:e4:88:38:e9:52:31:eb:ae:
6d:ee:6d:7a:a0:2f:a0:9c:bc:8f:d2:d0:49:81:28:cf:73:42:
6d:34:c9:a0:d2:4e:7c:ee:67:bf:23:27:2d:28:65:8b:9d:76:
a7:86:17:cc:e7:07:8f:9b:64:3c:cb:5f:12:a2:e6:49:d7:3b:
e6:b7:dc:4d:d1:84:47:12:27:0f:c8:68:17:14:a0:0b:11:ca:
0c:56:30:e0:6a:b7:1c:37:ef:23:b3:fa:0e:9d:0a:e6:50:e8:
4f:4b:18:55:58:0e:ab:74:a7:9e:73:fe:08:cf:2b:57:8b:b1:
50:da:0a:6d:8f:a3:c4:4d:97:ae:81:f3:94:d3:91:65:13:70:
f4:86:a2:87:ee:bd:d2:e7:4e:84:58:ea:30:d3:5d:08:bf:e5:
81:c6:3b:50:11:fd:ba:0f:a8:ad:a8:70:5c:f6:8c:9a:73:1d:
3d:8c:e7:f8:cd:89:50:27:71:2b:1f:12:f6:a3:19:40:6f:a6:
0f:6f:ee:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:45:15 2025 by rpki-client