Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538333a3a2f33322d3438203d3e20323135373435.roa
File: 326131343a373538333a3a2f33322d3438203d3e20323135373435.roa (raw, json)
Hash identifier: Y85lvvJCnjXbOZ74k5HeaRzLPMysRuSaOsBp8HprS2c=
Subject key identifier: B8:C4:F5:FE:40:76:48:4A:E8:ED:F5:77:94:DB:7D:D9:D8:44:43:9B
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 70E7B5AF83CFDB49043D1A342E080E03D10FC9E1
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538333a3a2f33322d3438203d3e20323135373435.roa
Signing time: Fri 12 Jul 2024 07:25:55 +0000
ROA not before: Fri 12 Jul 2024 07:20:55 +0000
ROA not after: Fri 11 Jul 2025 07:25:55 +0000
asID: 215745
IP address blocks: 2a14:7583::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 17 Jul 2024 04:47:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:e7:b5:af:83:cf:db:49:04:3d:1a:34:2e:08:0e:03:d1:0f:c9:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Jul 12 07:20:55 2024 GMT
Not After : Jul 11 07:25:55 2025 GMT
Subject: CN=B8C4F5FE4076484AE8EDF57794DB7DD9D844439B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:95:b3:19:7e:da:da:96:4e:00:ab:40:d9:e3:
06:ba:38:21:f4:a6:72:eb:df:92:b4:c2:fb:c5:ea:
95:3a:ab:c6:ba:7d:ba:a6:63:0b:fb:0b:26:df:19:
3e:85:ea:d1:18:59:cc:2d:7b:c7:03:9a:83:5c:3f:
3f:cf:70:81:49:cc:9e:b2:44:d1:d2:40:5b:3e:9d:
9f:a7:58:85:b0:40:b2:0b:14:0c:db:02:75:36:1e:
ed:e1:57:f8:89:17:e7:f8:bb:11:ec:51:62:1e:06:
65:06:cc:b1:48:57:42:a7:87:c9:e4:ff:19:d8:86:
6b:ce:af:8b:52:83:0a:d1:73:1b:57:e3:55:07:eb:
54:8b:db:64:53:52:cb:cd:b1:76:41:af:d1:c8:97:
cf:f1:38:82:e9:ab:be:76:5d:c0:5c:64:17:be:9c:
93:bd:eb:a0:aa:bd:3c:9d:33:f3:73:53:85:a6:0d:
2d:3f:a3:b6:60:e4:cc:46:a0:a7:6d:f7:84:c4:59:
ba:39:40:b9:12:11:d8:38:40:2a:da:0e:d7:d0:dd:
26:45:4a:00:38:00:d8:81:0d:c7:61:4a:3a:41:9f:
6e:1b:0b:8a:7f:cb:b6:b7:6f:d4:1c:24:8e:3f:77:
06:a8:1c:4a:09:bb:06:3d:d9:8e:08:9f:5c:cc:fe:
43:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:C4:F5:FE:40:76:48:4A:E8:ED:F5:77:94:DB:7D:D9:D8:44:43:9B
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538333a3a2f33322d3438203d3e20323135373435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7583::/32
Signature Algorithm: sha256WithRSAEncryption
76:fc:0f:dd:4e:0b:9a:5e:be:c7:33:d6:61:1c:89:6d:5d:a8:
a9:5c:3c:1f:22:ec:31:ca:e8:1d:5e:37:ce:a2:e9:cc:07:1d:
5b:4a:91:0f:67:51:66:30:54:88:c0:57:07:65:35:54:d7:d9:
6a:2e:e7:a5:d6:7c:f9:e0:1a:5a:ff:83:e8:2c:84:60:38:ec:
02:48:d8:47:49:57:f0:a0:e5:83:ef:00:db:68:c6:f4:2e:93:
8d:57:d5:2e:b0:c6:8f:f2:f5:15:dd:05:19:d6:a2:ec:cd:99:
3b:9d:43:10:1a:9c:67:9e:19:90:7d:66:01:8d:98:35:c3:42:
d4:99:7c:7a:92:ad:98:1c:2e:21:38:db:54:76:90:0b:80:7d:
7d:5b:dd:b8:81:90:4d:3f:53:0a:2c:e7:fd:89:41:46:ed:48:
18:bc:7c:a6:e7:0a:0e:4f:e6:db:f0:1b:e7:50:57:66:b4:58:
ba:30:27:af:5e:ff:8a:74:ba:66:f7:b0:8d:c8:c7:b8:2c:70:
a9:97:fa:f9:9f:17:7a:c9:3d:20:24:0c:52:ac:02:01:c2:f5:
f2:72:d5:c1:63:41:e4:89:10:5a:fd:3b:fa:d4:54:23:68:06:
9b:f6:5c:fe:b7:2d:6a:15:08:7b:ac:04:bc:87:4b:33:54:1e:
ef:8c:a2:de
-----BEGIN CERTIFICATE-----
MIIFNDCCBBygAwIBAgIUcOe1r4PP20kEPRo0LggOA9EPyeEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj
Y2ZkMzc3MjAeFw0yNDA3MTIwNzIwNTVaFw0yNTA3MTEwNzI1NTVaMDMxMTAvBgNV
BAMTKEI4QzRGNUZFNDA3NjQ4NEFFOEVERjU3Nzk0REI3REQ5RDg0NDQzOUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzlbMZftralk4Aq0DZ4wa6OCH0
pnLr35K0wvvF6pU6q8a6fbqmYwv7CybfGT6F6tEYWcwte8cDmoNcPz/PcIFJzJ6y
RNHSQFs+nZ+nWIWwQLILFAzbAnU2Hu3hV/iJF+f4uxHsUWIeBmUGzLFIV0Knh8nk
/xnYhmvOr4tSgwrRcxtX41UH61SL22RTUsvNsXZBr9HIl8/xOILpq752XcBcZBe+
nJO966CqvTydM/NzU4WmDS0/o7Zg5MxGoKdt94TEWbo5QLkSEdg4QCraDtfQ3SZF
SgA4ANiBDcdhSjpBn24bC4p/y7a3b9QcJI4/dwaoHEoJuwY92Y4In1zM/kOXAgMB
AAGjggI+MIICOjAdBgNVHQ4EFgQUuMT1/kB2SEro7fV3lNt92dhEQ5swHwYDVR0j
BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz
ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16
OU4zSS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODkyNzBmNmMt
YTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2YzODI0LzAvMzI2MTMxMzQzYTM3MzUzODMz
M2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzIzMTM1MzczNDM1LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA
KhR1gzANBgkqhkiG9w0BAQsFAAOCAQEAdvwP3U4Lml6+xzPWYRyJbV2oqVw8HyLs
McroHV43zqLpzAcdW0qRD2dRZjBUiMBXB2U1VNfZai7npdZ8+eAaWv+D6CyEYDjs
AkjYR0lX8KDlg+8A22jG9C6TjVfVLrDGj/L1Fd0FGdai7M2ZO51DEBqcZ54ZkH1m
AY2YNcNC1Jl8epKtmBwuITjbVHaQC4B9fVvduIGQTT9TCizn/YlBRu1IGLx8pucK
Dk/m2/Ab51BXZrRYujAnr17/inS6ZvewjcjHuCxwqZf6+Z8Xesk9ICQMUqwCAcL1
8nLVwWNB5IkQWv07+tRUI2gGm/Zc/rctahUIe6wEvIdLM1Qe74yi3g==
-----END CERTIFICATE-----
Generated at Wed Jul 17 06:24:14 2024 by rpki-client on console-fra.rpki-client.org