Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538333a3a2f33322d3438203d3e20323134373733.roa
File: 326131343a373538333a3a2f33322d3438203d3e20323134373733.roa (raw, json)
Hash identifier: zr80ebz13SR43iA8aOL9kexj/55CbQS9nE3I123RVdU=
Subject key identifier: 7B:68:CF:9B:40:D1:65:C6:C3:0C:A8:99:8A:BE:D3:15:65:45:29:3B
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 47F29BEF98BCBB68019E5ADFE982182D222A68A5
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538333a3a2f33322d3438203d3e20323134373733.roa
Signing time: Fri 09 Aug 2024 16:14:50 +0000
ROA not before: Fri 09 Aug 2024 16:09:50 +0000
ROA not after: Fri 08 Aug 2025 16:14:50 +0000
asID: 214773
IP address blocks: 2a14:7583::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 12 Sep 2024 11:14:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:f2:9b:ef:98:bc:bb:68:01:9e:5a:df:e9:82:18:2d:22:2a:68:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Aug 9 16:09:50 2024 GMT
Not After : Aug 8 16:14:50 2025 GMT
Subject: CN=7B68CF9B40D165C6C30CA8998ABED3156545293B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a0:07:d2:8c:f3:59:8d:70:de:d3:0e:84:1a:
6b:56:6a:1c:22:c9:eb:ba:08:c1:b6:6d:0b:7b:26:
4e:8c:7c:e7:44:04:a1:89:13:d2:46:10:91:4c:ad:
03:89:72:08:6b:64:02:fd:0c:d8:75:6a:9d:f3:cf:
c6:63:c1:da:21:d1:91:78:3f:2b:aa:7d:15:be:b5:
06:92:79:75:d1:3d:38:32:6a:18:17:63:86:af:2e:
5a:f4:0b:ab:21:6b:2d:bf:24:0a:f5:20:31:38:45:
89:d4:3d:4b:2e:ac:a3:fb:56:59:88:e5:15:a8:e7:
ea:de:d5:4b:ab:3a:c9:53:9f:35:ca:51:bb:47:a4:
9c:ee:42:2e:f9:c4:70:b2:2e:8e:49:fb:ca:97:62:
b4:21:73:d7:0b:0a:1c:40:2c:f0:d8:06:dc:c8:22:
80:38:6f:d3:4a:0d:30:7c:77:ed:2a:ae:a7:fd:2f:
3a:94:51:28:57:25:7c:b1:61:9b:be:2c:b8:75:01:
00:4a:29:05:00:30:86:3e:06:84:2c:da:3a:20:60:
5b:2f:b6:e4:56:3a:c7:d3:a8:1e:61:30:cc:70:a2:
1f:0f:1f:99:ad:75:aa:ec:13:5d:13:6c:03:ff:b6:
e1:62:b8:ef:b9:0b:34:2b:9b:e1:4d:76:30:25:32:
ac:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:68:CF:9B:40:D1:65:C6:C3:0C:A8:99:8A:BE:D3:15:65:45:29:3B
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538333a3a2f33322d3438203d3e20323134373733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7583::/32
Signature Algorithm: sha256WithRSAEncryption
0b:1c:15:de:60:0d:55:a5:74:d1:9a:4b:ee:7c:ee:13:c3:e1:
24:44:7c:dd:c0:60:9a:11:50:2a:91:16:ee:ec:e3:a9:b1:b8:
51:a0:a3:2e:1d:3f:a0:8a:9a:95:c7:1e:ee:05:40:d8:78:a7:
97:cb:39:91:57:3f:f7:31:57:72:dc:58:d6:a8:fd:41:3f:29:
5b:c3:47:fd:a6:07:ba:23:e4:17:a4:04:65:a8:ad:e5:69:3c:
04:9a:39:64:20:cc:16:97:b9:af:d3:8d:7d:6b:96:6b:38:ad:
e9:41:0d:70:57:88:68:db:c2:c8:47:39:65:82:8e:22:4c:c0:
59:71:21:9c:8d:22:fd:44:2e:e0:bc:2a:5c:e1:aa:bb:3d:a6:
cf:01:28:e0:88:28:c6:08:7a:84:1d:df:e3:81:27:60:42:ec:
bb:1a:49:dc:eb:a9:80:2b:ca:45:db:cf:89:ac:2f:3f:3b:ca:
aa:d0:46:de:2b:68:3b:d6:78:77:a0:a8:32:38:06:c3:e6:b1:
61:7c:87:b2:a4:7e:17:48:d6:1b:37:5b:32:04:b1:11:62:a5:
1f:2c:ec:2d:0a:7a:3f:23:3c:1f:bc:ca:a0:90:51:7b:91:d7:
d2:84:87:dc:47:8c:9d:35:30:a6:70:85:9d:c6:3d:8f:58:0a:
12:93:ab:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 12 14:04:24 2024 by rpki-client on console-ams.rpki-client.org