Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a663a3a2f34382d3438203d3e203538323032.roa
File: 326131343a373538303a663a3a2f34382d3438203d3e203538323032.roa (raw, json)
Hash identifier: VzcjoQV9DRZO9pFP0fxitkzlxGMgE20TVw9ckdY3HLo=
Subject key identifier: 16:3A:14:28:AD:64:29:D2:F7:A4:61:01:CF:9F:09:4D:50:64:4B:44
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 4B68D7D6FC2A2F20D2F6E3B6BA0C5133864FA2CB
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a663a3a2f34382d3438203d3e203538323032.roa
Signing time: Sat 03 Feb 2024 06:03:50 +0000
ROA not before: Sat 03 Feb 2024 05:58:50 +0000
ROA not after: Sat 01 Feb 2025 06:03:50 +0000
asID: 58202
IP address blocks: 2a14:7580:f::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 12 Mar 2024 05:12:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:68:d7:d6:fc:2a:2f:20:d2:f6:e3:b6:ba:0c:51:33:86:4f:a2:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Feb 3 05:58:50 2024 GMT
Not After : Feb 1 06:03:50 2025 GMT
Subject: CN=163A1428AD6429D2F7A46101CF9F094D50644B44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:38:3b:3c:b1:bb:59:e4:c1:46:3f:b0:fb:21:
b7:16:e0:9e:df:12:34:d4:09:e0:87:b2:13:92:d5:
09:bb:76:67:83:30:25:c1:4f:32:4e:b7:92:24:db:
b9:38:3f:22:c9:d4:c2:c6:e4:b0:53:3b:64:c0:2b:
28:33:79:ea:28:15:6a:84:23:8c:04:d6:56:da:17:
6c:2f:15:f7:be:32:e3:ea:4e:7e:31:69:1f:88:21:
82:4a:f8:81:4a:d2:96:9b:6a:0f:a2:d7:66:70:c5:
ed:9a:18:81:cd:71:e6:6f:01:ef:7b:2d:d4:dd:d3:
0d:fd:a1:5e:bc:21:e1:d5:d5:72:24:32:42:2e:67:
b8:0d:a5:ad:81:f2:a5:4d:27:d6:d6:39:e1:73:05:
08:84:6d:2f:cb:60:8c:b7:cc:6a:4f:26:c7:30:a9:
85:2e:1c:5d:b6:d3:a5:e5:59:e1:5f:fc:30:50:80:
b5:aa:6c:cb:11:39:3a:d4:40:7b:12:54:98:ae:ff:
04:c9:43:77:b7:30:fc:6b:08:1e:60:7c:a3:82:f1:
cf:e5:dd:11:8f:8c:1d:f5:09:0c:49:c1:81:71:71:
34:7e:eb:e6:b7:c1:e1:0e:45:5e:1e:15:6a:9c:1b:
63:8f:bc:d3:79:67:e5:63:f5:b5:58:28:9c:8a:80:
bb:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:3A:14:28:AD:64:29:D2:F7:A4:61:01:CF:9F:09:4D:50:64:4B:44
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538303a663a3a2f34382d3438203d3e203538323032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:f::/48
Signature Algorithm: sha256WithRSAEncryption
15:b5:a0:f8:e7:85:b8:ae:73:c0:c6:67:0f:64:2f:61:87:a3:
f2:0a:e1:10:ee:7f:f6:b3:77:c6:59:c1:8a:00:e0:ad:6a:98:
9a:16:57:c5:46:23:f5:ec:64:1d:79:f3:f3:43:a1:2a:94:d2:
85:b4:b4:0a:d5:ad:f9:38:89:de:e4:13:40:c6:c6:fe:fe:b2:
1d:66:52:3d:19:4c:db:ab:2d:e6:c1:2f:e4:27:83:c3:3e:3c:
7c:b0:1e:06:7c:f9:56:e3:b5:92:93:34:05:64:1a:ca:8a:b6:
6f:09:c5:b7:10:cd:d5:cd:87:6a:21:de:97:0a:68:d8:19:f4:
6f:03:94:75:65:0b:54:9b:c9:58:7d:cd:1d:d2:30:a6:46:5d:
52:e7:db:a3:2a:1b:e6:b1:b3:c2:1d:81:30:11:5d:28:1c:c3:
28:c1:89:dd:8f:f5:96:da:d5:b9:61:24:e6:b3:7d:dc:fb:10:
24:3d:81:e0:2a:61:fd:18:a2:74:78:74:74:76:fe:42:bb:d4:
da:3b:a8:67:14:81:21:48:da:c5:b0:70:39:a6:b8:7f:06:9f:
4a:1c:4f:82:20:60:a5:b5:4c:35:f0:a5:d8:06:bf:c7:dc:6a:
31:8b:2b:a9:e6:0a:a8:98:7f:11:a8:f6:94:e5:97:be:12:39:
7c:e2:43:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 12 08:44:20 2024 by rpki-client on console-fra.rpki-client.org