Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538323a3a2f33322d3438203d3e2030.roa
File: 326131343a373538323a3a2f33322d3438203d3e2030.roa (raw, json)
Hash identifier: WTpRkTZPceJA1bOwLpym/0Ae0DiiFmgKXsVofQeR8WY=
Subject key identifier: D5:36:34:0D:BD:C3:43:80:3E:03:2B:5F:EA:3A:50:F5:C1:1D:78:5A
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 4C0B8F5F031448A78337169D3617895CC472E090
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538323a3a2f33322d3438203d3e2030.roa
Signing time: Fri 11 Oct 2024 13:29:28 +0000
ROA not before: Fri 11 Oct 2024 13:24:28 +0000
ROA not after: Fri 10 Oct 2025 13:29:28 +0000
asID: 0
IP address blocks: 2a14:7582::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 22 Oct 2024 01:48:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:0b:8f:5f:03:14:48:a7:83:37:16:9d:36:17:89:5c:c4:72:e0:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Oct 11 13:24:28 2024 GMT
Not After : Oct 10 13:29:28 2025 GMT
Subject: CN=D536340DBDC343803E032B5FEA3A50F5C11D785A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4f:8b:f7:82:c1:bc:1b:7d:3d:aa:bb:d2:26:
e4:97:2e:8c:be:70:72:8b:cd:82:a3:82:23:48:0c:
ec:56:66:3d:ce:b7:34:67:2c:23:42:82:96:a1:d0:
f4:2b:94:53:59:8f:03:23:5c:a6:4f:df:69:29:d6:
e1:7f:05:d2:0f:e0:05:d3:79:2b:b2:14:81:43:d0:
07:ba:57:6d:ef:ab:f6:eb:8b:0f:15:80:c0:1a:9a:
0b:5c:4f:da:48:90:38:a8:5e:9d:d8:1e:da:6e:4a:
48:c5:fd:32:d2:ae:f1:91:fd:ab:0e:c7:b5:00:19:
a9:34:1b:fa:e9:59:75:dc:a9:f3:de:52:bb:09:b1:
05:66:6d:25:49:f6:b2:62:4d:fc:05:15:29:48:dd:
6a:7e:08:c2:e2:7d:fb:f0:66:85:97:bf:1c:c8:14:
3a:30:e0:c5:5f:aa:56:c2:20:6d:5d:75:24:bb:a4:
e6:78:cc:69:d6:1b:37:1e:3f:37:92:18:e8:fd:76:
d3:09:e3:ff:e9:27:be:c4:40:f4:1f:73:25:95:dc:
75:a2:1e:53:a5:aa:18:4c:b7:fa:68:d7:a4:e3:73:
3c:93:50:e2:ec:4e:89:c7:fe:6f:65:8b:26:a2:f5:
02:01:38:ed:20:38:e3:0f:bf:3f:60:a2:b7:bb:e3:
d9:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:36:34:0D:BD:C3:43:80:3E:03:2B:5F:EA:3A:50:F5:C1:1D:78:5A
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538323a3a2f33322d3438203d3e2030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7582::/32
Signature Algorithm: sha256WithRSAEncryption
62:2b:2e:83:c1:d1:7b:fb:a0:47:f7:eb:c5:c8:1c:8a:52:14:
e0:64:db:48:88:65:1d:d5:e1:5a:5d:aa:f2:1f:0a:28:9b:50:
8f:53:67:87:2e:47:5c:55:d5:86:46:b7:bd:c8:f7:90:9d:d7:
f1:32:d8:05:70:bf:d5:f4:c1:04:75:31:dd:7d:e0:74:54:49:
01:49:43:43:f0:f5:4b:35:ca:f4:a2:4d:4c:0a:41:4e:97:a8:
f3:ce:ba:ce:ba:41:6b:d4:f9:5f:d2:be:7e:5e:81:67:4c:3e:
dd:30:60:ac:e0:fe:f9:03:02:29:d6:87:97:92:65:2b:e6:49:
1d:8c:e2:c8:20:f3:dc:fa:57:90:0a:df:26:0c:25:f8:66:69:
df:5f:72:62:b2:6b:ab:d1:56:c9:95:b6:e1:e1:82:0d:4d:58:
d6:c9:a0:14:5d:be:7a:46:7b:5f:ae:36:a4:ee:41:50:c2:af:
cd:7c:1d:1d:51:f8:ab:90:68:3d:42:02:c8:71:1d:64:50:0d:
81:25:6c:fc:8b:17:76:00:ba:ef:cf:9a:e2:24:1e:ab:33:61:
56:14:84:ea:09:f1:5f:60:85:8e:15:6b:b5:a1:ce:13:f0:92:
1c:19:f6:da:dc:a4:61:bd:34:03:bd:2c:cf:39:c9:4e:d7:37:
9a:32:bc:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 04:53:18 2024 by rpki-client on console-ams.rpki-client.org