Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a353030303a3a2f33362d3336203d3e20313937373337.roa
File: 326131343a373538313a353030303a3a2f33362d3336203d3e20313937373337.roa (raw, json)
Hash identifier: x2dIto791xRdfGqC/lvJ9hmuVO8wBLVUPdGdjfV/lOY=
Subject key identifier: 3D:03:7E:46:C0:14:16:F8:B2:E3:48:27:88:EC:C1:2E:72:7A:C2:CA
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 4B2A861F57EADCDA02B5E3185AFB96D6138A1488
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a353030303a3a2f33362d3336203d3e20313937373337.roa
Signing time: Wed 27 Mar 2024 11:11:46 +0000
ROA not before: Wed 27 Mar 2024 11:06:46 +0000
ROA not after: Wed 26 Mar 2025 11:11:46 +0000
asID: 197737
IP address blocks: 2a14:7581:5000::/36 maxlen: 36
Validation: Failed, certificate revoked on Thu 28 Mar 2024 21:52:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:2a:86:1f:57:ea:dc:da:02:b5:e3:18:5a:fb:96:d6:13:8a:14:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Mar 27 11:06:46 2024 GMT
Not After : Mar 26 11:11:46 2025 GMT
Subject: CN=3D037E46C01416F8B2E3482788ECC12E727AC2CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:57:7c:bc:57:95:93:88:f6:89:f3:f0:70:54:
44:69:36:7b:fb:02:1f:68:11:00:16:be:95:ff:3e:
67:e1:8b:3d:3d:45:83:05:0b:d7:c4:69:4c:0e:c5:
cd:c0:95:cb:ed:98:6e:39:68:64:73:a1:e2:2b:8e:
c0:40:4d:62:c4:e0:ce:dc:da:0d:08:72:87:3a:01:
33:79:2d:63:55:0f:a0:25:e9:11:9e:14:64:07:c7:
da:01:00:a5:4b:32:eb:d1:7e:aa:cc:14:37:45:c4:
87:39:9e:26:e8:08:0b:74:b8:e1:af:10:3a:ec:7c:
a1:65:34:9b:69:62:b9:09:ee:26:92:0e:77:fb:83:
c7:7c:e5:45:0d:23:a8:52:44:05:14:d8:3a:34:3a:
ed:43:66:9f:bc:b5:a1:f3:92:02:e9:69:8a:91:6e:
83:ca:55:20:c4:54:ce:7a:2c:d2:52:d6:5b:71:69:
bb:72:03:fc:a0:4f:0d:a6:22:37:ff:fb:c7:9b:1e:
24:b4:54:7e:3b:aa:8a:c1:4c:29:43:db:1f:93:4d:
bb:fd:83:9b:40:4a:6a:db:b0:a0:90:1f:aa:6b:82:
aa:5b:fe:03:07:2b:26:29:4c:dc:a3:06:26:45:5f:
8e:7b:f1:b4:f0:78:7e:9a:0f:bc:c1:01:aa:e7:47:
cb:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:03:7E:46:C0:14:16:F8:B2:E3:48:27:88:EC:C1:2E:72:7A:C2:CA
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a353030303a3a2f33362d3336203d3e20313937373337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:5000::/36
Signature Algorithm: sha256WithRSAEncryption
51:f4:96:8c:7f:9d:34:53:65:a1:39:34:5a:f6:9d:d6:f0:81:
87:9e:31:79:d2:31:fe:30:77:b9:69:d8:be:18:86:a1:32:d9:
14:ac:d7:85:3c:19:14:94:49:95:36:31:f5:27:6e:27:f5:59:
2e:cd:f2:06:ed:bd:cf:7b:d9:dc:41:b5:3e:f5:e5:cd:ee:1a:
66:6c:ef:c3:3c:a4:39:05:a3:17:74:0c:84:95:a1:f2:80:0a:
69:47:38:01:d1:1b:1b:82:4f:0f:3a:4f:1b:87:0b:a3:4a:a1:
d5:c0:7f:88:19:8b:b5:64:b8:5d:26:80:8c:7c:3b:49:fe:6d:
22:d4:ad:1c:9a:f3:ac:66:4d:fa:1d:d7:5d:09:0b:f6:47:44:
d4:7b:09:42:ee:a9:e7:d9:d2:ff:9e:44:e0:fb:67:b1:5d:1a:
2a:2c:a5:a3:60:08:77:77:1c:2b:2a:76:dc:59:29:ad:d6:36:
94:29:41:5a:4f:b9:c5:1c:19:e8:2b:eb:11:03:85:d9:08:ff:
f9:32:90:6d:fa:19:f0:b2:6e:3b:3f:42:09:b8:91:df:a6:c5:
b4:0e:e5:01:9c:d2:b9:c3:8d:fe:73:83:b6:47:97:01:3f:d8:
75:d6:b6:a8:ea:50:ee:36:89:ea:ab:dd:b5:63:9b:e8:1e:93:
6c:17:00:56
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgIUSyqGH1fq3NoCteMYWvuW1hOKFIgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj
Y2ZkMzc3MjAeFw0yNDAzMjcxMTA2NDZaFw0yNTAzMjYxMTExNDZaMDMxMTAvBgNV
BAMTKDNEMDM3RTQ2QzAxNDE2RjhCMkUzNDgyNzg4RUNDMTJFNzI3QUMyQ0EwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsV3y8V5WTiPaJ8/BwVERpNnv7
Ah9oEQAWvpX/Pmfhiz09RYMFC9fEaUwOxc3AlcvtmG45aGRzoeIrjsBATWLE4M7c
2g0Icoc6ATN5LWNVD6Al6RGeFGQHx9oBAKVLMuvRfqrMFDdFxIc5niboCAt0uOGv
EDrsfKFlNJtpYrkJ7iaSDnf7g8d85UUNI6hSRAUU2Do0Ou1DZp+8taHzkgLpaYqR
boPKVSDEVM56LNJS1ltxabtyA/ygTw2mIjf/+8ebHiS0VH47qorBTClD2x+TTbv9
g5tASmrbsKCQH6prgqpb/gMHKyYpTNyjBiZFX4578bTweH6aD7zBAarnR8szAgMB
AAGjggJJMIICRTAdBgNVHQ4EFgQUPQN+RsAUFviy40gniOzBLnJ6wsowHwYDVR0j
BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz
ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16
OU4zSS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODkyNzBmNmMt
YTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2YzODI0LzAvMzI2MTMxMzQzYTM3MzUzODMx
M2EzNTMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNkM2UyMDMxMzkzNzM3MzMzNy5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw
DgQCAAIwCAMGBCoUdYFQMA0GCSqGSIb3DQEBCwUAA4IBAQBR9JaMf500U2WhOTRa
9p3W8IGHnjF50jH+MHe5adi+GIahMtkUrNeFPBkUlEmVNjH1J24n9VkuzfIG7b3P
e9ncQbU+9eXN7hpmbO/DPKQ5BaMXdAyElaHygAppRzgB0Rsbgk8POk8bhwujSqHV
wH+IGYu1ZLhdJoCMfDtJ/m0i1K0cmvOsZk36HdddCQv2R0TUewlC7qnn2dL/nkTg
+2exXRoqLKWjYAh3dxwrKnbcWSmt1jaUKUFaT7nFHBnoK+sRA4XZCP/5MpBt+hnw
sm47P0IJuJHfpsW0DuUBnNK5w43+c4O2R5cBP9h11rao6lDuNonqq921Y5voHpNs
FwBW
-----END CERTIFICATE-----
Generated at Thu Mar 28 22:36:59 2024 by rpki-client on console-fra.rpki-client.org