Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538323a3a2f33322d3438203d3e203538323032.roa
File: 326131343a373538323a3a2f33322d3438203d3e203538323032.roa (raw, json)
Hash identifier: +a054+QkvOHyHbAhApooVuF4x9S1TwzympF7Q5ktk6o=
Subject key identifier: D5:10:A4:A6:D1:56:B9:98:A6:E1:31:BD:B4:2F:57:9A:AC:D4:F2:4C
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 173C66FFCAD8F63F1A3770A6CBA2851A8ED250D0
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538323a3a2f33322d3438203d3e203538323032.roa
Signing time: Fri 11 Oct 2024 10:07:53 +0000
ROA not before: Fri 11 Oct 2024 10:02:53 +0000
ROA not after: Fri 10 Oct 2025 10:07:53 +0000
asID: 58202
IP address blocks: 2a14:7582::/32 maxlen: 48
Validation: Failed, certificate revoked on Fri 11 Oct 2024 13:29:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:3c:66:ff:ca:d8:f6:3f:1a:37:70:a6:cb:a2:85:1a:8e:d2:50:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Oct 11 10:02:53 2024 GMT
Not After : Oct 10 10:07:53 2025 GMT
Subject: CN=D510A4A6D156B998A6E131BDB42F579AACD4F24C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:d2:48:04:95:de:9f:de:9a:f3:a9:6a:e5:f6:
3f:aa:f0:ab:0f:4b:30:f1:a6:a6:46:21:ec:ca:e3:
3f:24:49:a5:b8:98:ae:6b:54:ca:ae:79:c6:71:18:
a9:c4:fc:48:46:da:24:8f:69:58:f8:01:d3:a1:d6:
80:e8:71:a1:11:e8:db:91:78:6e:b3:9c:7d:bf:65:
85:1e:91:12:da:75:bd:c4:04:a2:58:18:7f:1f:da:
77:6e:a4:1d:50:10:6a:aa:b0:77:b4:ea:a2:0b:70:
d6:56:cc:42:73:4f:3e:e5:d5:bf:fb:3b:32:58:df:
22:a8:f3:ab:9f:6a:6c:3c:58:ee:ec:11:43:a7:d7:
96:d3:f8:c7:9c:03:0a:14:8c:7d:11:69:3e:69:48:
af:d9:e1:9d:e3:34:42:32:2b:d1:f4:88:9d:da:50:
38:1e:f6:ce:9e:9a:9f:78:89:fc:cc:af:8f:aa:33:
c8:8e:12:a8:f6:44:af:5f:44:5b:69:fb:2e:21:ed:
d4:b3:82:05:e3:83:d1:8a:63:59:75:6e:7b:36:e5:
bc:9d:2b:3e:12:ef:00:02:f5:47:2a:2c:11:dd:34:
6b:5d:fc:66:d0:43:ef:6c:20:47:de:9d:11:e7:f4:
a9:67:9f:c1:3d:55:3f:37:65:6a:50:28:ab:d0:19:
4f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:10:A4:A6:D1:56:B9:98:A6:E1:31:BD:B4:2F:57:9A:AC:D4:F2:4C
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538323a3a2f33322d3438203d3e203538323032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7582::/32
Signature Algorithm: sha256WithRSAEncryption
77:c0:38:8d:37:9f:48:3a:85:bb:29:a9:cb:8c:16:0c:62:27:
ba:54:58:68:94:2f:bb:7f:d7:3d:50:a7:18:1e:e7:c5:20:4f:
96:ce:2d:89:4b:53:27:ee:a7:88:70:6b:46:e4:62:1f:ee:dc:
19:bc:53:77:e5:24:6a:60:e1:5e:83:6c:62:28:94:12:cc:3e:
a9:96:9f:c0:87:19:8a:0f:54:57:4e:ec:f0:ab:a5:43:77:52:
e5:ef:7b:e1:f4:fd:d1:32:53:86:f8:5a:dc:9f:54:f0:62:fa:
56:87:9d:92:57:14:2a:76:7b:85:3d:93:e3:3c:47:ed:3c:4c:
96:56:f1:2b:05:19:1d:44:23:69:79:6b:10:00:da:51:a9:cf:
32:3c:4f:18:1c:b9:0b:19:d5:70:21:d8:4a:e7:c0:c2:78:e8:
4a:22:d0:08:28:87:bd:7b:8e:ed:15:7d:8b:a5:71:59:15:0b:
b6:06:c8:93:18:aa:8f:0b:e2:f8:05:47:b4:27:b9:77:f8:78:
9e:7f:bb:b0:9b:b5:a5:cc:bc:6e:9a:a5:f8:b5:a1:26:2e:05:
f5:c1:6d:89:c4:c1:56:1a:fd:e4:f6:2d:92:01:b1:24:b4:62:
8e:5c:33:b8:46:7f:73:8e:fc:65:89:8f:81:2a:76:d5:7e:bb:
0f:3b:9f:31
-----BEGIN CERTIFICATE-----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Generated at Fri Oct 11 17:24:45 2024 by rpki-client on console-fra.rpki-client.org