Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a3a2f34342d3434203d3e20323136303532.roa
File: 326131343a373538313a3a2f34342d3434203d3e20323136303532.roa (raw, json)
Hash identifier: zxIgJGFsY5+p7sW2KSkDZD2RrnH8L3U/q5zT1ovYCQU=
Subject key identifier: 09:45:89:A7:98:23:26:8B:94:F3:93:B6:35:A1:C0:C7:CC:5B:7C:78
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 384DF937064DABBDC9783DDF07E38768A79D9DCD
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a3a2f34342d3434203d3e20323136303532.roa
Signing time: Tue 27 Feb 2024 08:16:14 +0000
ROA not before: Tue 27 Feb 2024 08:11:14 +0000
ROA not after: Tue 25 Feb 2025 08:16:14 +0000
asID: 216052
IP address blocks: 2a14:7581::/44 maxlen: 44
Validation: Failed, certificate revoked on Fri 29 Mar 2024 14:41:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:4d:f9:37:06:4d:ab:bd:c9:78:3d:df:07:e3:87:68:a7:9d:9d:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Feb 27 08:11:14 2024 GMT
Not After : Feb 25 08:16:14 2025 GMT
Subject: CN=094589A79823268B94F393B635A1C0C7CC5B7C78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:36:7f:b2:98:9d:2a:23:e6:72:05:e6:4c:16:
d6:01:bb:18:5a:63:f7:00:82:0c:c1:a1:ed:cb:d8:
b7:b6:a2:59:19:e2:9e:2c:48:bb:4f:f3:4b:d8:88:
ba:90:00:72:fc:0b:5e:59:62:db:f3:7d:f4:07:02:
27:e3:2d:c4:89:22:01:6c:20:7a:85:e0:79:8a:b2:
2c:65:43:ca:92:f0:bc:66:7e:a0:a5:d5:af:5a:62:
8b:fb:09:c6:49:16:f7:1c:b3:b2:98:56:0d:ca:f5:
f6:4e:60:be:de:36:92:3b:ed:02:7c:1c:d6:f9:14:
9a:c5:53:f5:6b:36:31:fe:2b:5a:fc:21:ce:e1:0a:
fc:92:27:1b:75:c5:46:d5:d5:cc:c3:18:92:d5:dd:
91:45:2f:f4:23:24:cd:2a:be:80:10:d0:51:87:87:
0b:80:65:ec:a9:2e:dd:7f:73:55:6e:0b:bb:ac:86:
a0:68:e7:db:2d:6e:36:4f:17:0f:6f:6b:66:51:62:
f2:60:ce:75:a5:2b:03:ea:fc:73:e6:b1:ec:01:a4:
a6:4c:68:0c:39:4c:fc:05:85:c2:5e:14:d3:78:06:
30:ef:b2:76:fa:0e:4f:2e:89:46:12:5e:01:7f:a0:
a8:02:99:0b:ef:7a:6b:45:0e:85:2b:f2:4f:36:65:
80:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:45:89:A7:98:23:26:8B:94:F3:93:B6:35:A1:C0:C7:CC:5B:7C:78
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538313a3a2f34342d3434203d3e20323136303532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581::/44
Signature Algorithm: sha256WithRSAEncryption
41:b7:99:93:d7:7a:c8:d5:1b:eb:11:c4:f7:51:d7:31:cb:32:
8e:c3:0f:d2:ae:78:f0:31:9b:f2:28:78:8e:ba:18:d6:99:14:
56:fb:8a:57:81:52:3b:3e:bc:20:86:e8:fa:71:82:21:29:b8:
13:56:b5:a7:e1:18:19:64:0b:db:0f:ad:75:64:d9:f2:b6:14:
4a:f3:44:30:ef:4e:c2:de:6f:74:e4:e2:3e:b9:81:d9:46:29:
7f:56:92:05:de:dd:88:4d:bd:cc:bf:4d:83:2e:66:4f:ec:a9:
01:92:22:3b:e1:50:62:b9:52:38:18:df:a0:09:03:96:fa:aa:
f4:10:fd:92:bf:68:8d:c6:96:2d:18:e6:ad:f1:12:02:32:3d:
16:78:00:85:0c:0c:f8:97:f4:cb:be:4f:ce:6d:3d:87:26:9a:
92:b5:7a:26:6c:d7:a6:5a:94:d7:e0:cd:5f:80:89:b5:6b:50:
89:17:ce:b3:99:58:5d:44:4e:d5:79:d9:2e:86:28:05:64:5c:
12:64:58:df:71:c3:69:01:bc:5c:40:55:db:46:8a:ec:b3:05:
d0:cf:06:20:d2:d5:c2:ad:0d:81:1f:c9:7a:46:1b:6f:07:30:
96:d8:d7:0c:9f:cf:70:d7:6d:6f:5f:35:9c:d1:ec:f6:e2:ed:
bb:14:71:e9
-----BEGIN CERTIFICATE-----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Generated at Fri Mar 29 18:00:36 2024 by rpki-client on console-fra.rpki-client.org