Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538323a3a2f33322d3438203d3e203231373338.roa
File: 326131343a373538323a3a2f33322d3438203d3e203231373338.roa (raw, json)
Hash identifier: PaXMFrUmZYAKxET7ve0cVWUUQ34dLHMIt568G/k+fa8=
Subject key identifier: 04:15:C9:3F:97:2B:31:98:1F:80:63:C7:5F:05:8E:28:AF:89:6F:24
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 3BC80E8CEAEDC16A8EE232D0F156C60CD99A47E6
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538323a3a2f33322d3438203d3e203231373338.roa
Signing time: Thu 28 Mar 2024 22:13:08 +0000
ROA not before: Thu 28 Mar 2024 22:08:08 +0000
ROA not after: Thu 27 Mar 2025 22:13:08 +0000
asID: 21738
IP address blocks: 2a14:7582::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 27 May 2024 12:51:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:c8:0e:8c:ea:ed:c1:6a:8e:e2:32:d0:f1:56:c6:0c:d9:9a:47:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Mar 28 22:08:08 2024 GMT
Not After : Mar 27 22:13:08 2025 GMT
Subject: CN=0415C93F972B31981F8063C75F058E28AF896F24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:96:2f:c8:6f:91:e0:1e:ee:23:39:b4:b9:88:
fa:8e:58:af:52:c1:51:50:9f:4c:62:d6:0a:30:a6:
72:18:12:81:8b:28:c3:28:d8:23:f6:5e:d4:fb:06:
a3:17:17:0a:2b:21:e7:d3:41:11:7a:da:64:70:7b:
76:32:1c:5f:7d:b6:ce:97:83:88:e5:fd:7d:a6:60:
ed:18:39:8e:d9:95:d4:db:76:71:4a:41:2f:9a:69:
ff:c6:f2:92:d7:28:71:65:53:16:c3:f3:6d:d9:a2:
85:51:e7:15:8f:5d:24:40:0f:2c:27:0e:be:68:d5:
83:77:4d:c6:d0:a6:bc:bd:67:8f:67:a7:c7:7b:79:
41:85:3c:9f:4a:12:ba:df:58:34:5d:9e:86:fe:71:
b8:e1:c7:1b:aa:d5:6d:b8:13:d7:e7:37:95:74:a8:
14:b0:7f:46:37:a8:5e:c7:fa:38:d3:94:f1:d6:2e:
91:24:24:08:6a:42:2e:e6:7d:e4:de:d7:42:b8:3c:
5b:1a:f0:cf:8d:0f:30:0f:60:98:30:73:f5:93:9d:
10:78:e8:6f:46:cd:54:41:0f:69:04:ca:ee:03:e4:
9c:bf:60:91:b9:ca:20:b6:9f:af:56:b7:cc:4d:49:
65:b2:30:c9:ec:74:55:5c:98:3b:f4:37:5d:f3:62:
6e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:15:C9:3F:97:2B:31:98:1F:80:63:C7:5F:05:8E:28:AF:89:6F:24
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538323a3a2f33322d3438203d3e203231373338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7582::/32
Signature Algorithm: sha256WithRSAEncryption
00:2e:ab:1e:d8:8f:06:b3:cb:ce:c3:a4:6c:27:2c:d1:1e:87:
f5:93:58:77:02:00:77:2f:89:7b:1c:74:69:2d:bb:bf:48:88:
62:88:dc:cc:9d:20:94:75:46:b5:8c:13:ad:6a:d6:91:de:49:
b0:1f:8b:8f:d5:0c:85:45:02:e4:b0:90:f9:95:19:28:62:a2:
3e:89:91:9b:60:7a:db:6e:24:cb:b0:8b:88:6b:ae:77:16:34:
2d:ab:66:33:75:ab:34:5d:e6:f0:d8:30:5a:8d:87:fe:a9:46:
8b:94:dd:37:b4:60:47:a4:c0:d5:1b:39:51:19:26:5e:b5:bc:
3e:a6:15:50:c7:64:e4:93:9d:2b:02:0d:2d:cb:b4:4a:13:d4:
dd:b8:a0:93:d2:96:47:45:87:6a:f0:00:4f:79:fb:1f:59:e8:
d0:0a:8d:e2:90:f8:1f:61:1c:d8:ba:00:4f:aa:f7:c6:c5:75:
db:c8:66:cb:33:b9:c1:08:88:3f:9a:7d:7b:d4:92:22:f9:71:
56:76:88:32:f9:5f:6c:02:70:83:a0:bb:8c:81:d1:7c:01:20:
6e:88:d3:9d:c0:10:23:8e:b8:48:5a:db:2f:3c:58:b7:59:b3:
e8:21:5d:5c:c8:d0:6a:7c:cb:45:7a:29:a4:1b:75:3d:77:75:
6a:1f:cd:6c
-----BEGIN CERTIFICATE-----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Generated at Mon May 27 17:45:29 2024 by rpki-client on console-ams.rpki-client.org