Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538343a3a2f33322d3438203d3e20333939363436.roa
File: 326131343a373538343a3a2f33322d3438203d3e20333939363436.roa (raw, json)
Hash identifier: N92tEp8GODgQUk40Te+QLwjmwsV89Cen5bNZ0Q+nOrI=
Subject key identifier: 90:FC:65:0C:46:D4:A9:49:1C:9B:2A:27:03:7B:76:5C:91:15:C1:10
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 6EEE6F1502A52FF1B9630F81758FD46506A0C604
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538343a3a2f33322d3438203d3e20333939363436.roa
Signing time: Mon 22 Jul 2024 13:31:35 +0000
ROA not before: Mon 22 Jul 2024 13:26:35 +0000
ROA not after: Mon 21 Jul 2025 13:31:35 +0000
asID: 399646
IP address blocks: 2a14:7584::/32 maxlen: 48
Validation: Failed, certificate revoked on Sat 17 Aug 2024 14:22:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:ee:6f:15:02:a5:2f:f1:b9:63:0f:81:75:8f:d4:65:06:a0:c6:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Jul 22 13:26:35 2024 GMT
Not After : Jul 21 13:31:35 2025 GMT
Subject: CN=90FC650C46D4A9491C9B2A27037B765C9115C110
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:aa:6a:e9:47:2a:e9:9d:62:ff:09:f4:0e:ea:
ad:f3:65:b5:91:9e:1c:a5:31:65:29:3c:3a:a6:80:
0b:dd:16:c3:d4:db:c5:b2:80:2f:ef:f4:15:a5:3d:
7c:fc:03:c6:81:e1:2e:c1:5f:8f:64:ed:bb:1b:f5:
a2:b7:ff:36:e6:94:0d:51:15:e0:db:79:cf:1c:4a:
d5:6c:39:41:d2:1e:4c:c1:11:cc:1c:54:18:6e:ef:
f5:a6:cb:cf:3c:98:f1:b5:d7:14:14:cc:75:42:a9:
33:79:06:9a:bd:49:2a:0a:4d:6e:c6:1a:ec:fa:0f:
65:75:6e:f9:fd:56:03:21:ed:00:bd:72:ec:03:34:
50:47:fc:16:51:7d:42:1a:f4:27:8c:ce:d4:46:01:
26:3d:fa:86:86:b9:0a:bf:13:4f:c6:15:eb:bc:8b:
c0:ba:3d:9a:8c:74:9f:63:0b:b0:34:cf:49:c3:49:
a5:2a:72:49:3f:b5:1b:4e:9e:ee:83:28:56:63:e4:
20:7a:5a:91:b9:af:62:7f:94:93:4d:6d:2f:7d:60:
42:0c:51:db:32:9b:45:74:26:4d:a9:46:16:09:69:
a7:08:f5:75:56:2c:11:5c:92:24:96:22:53:13:2c:
69:d2:91:d2:59:2a:4b:b6:e6:0e:7c:75:f0:64:31:
ea:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:FC:65:0C:46:D4:A9:49:1C:9B:2A:27:03:7B:76:5C:91:15:C1:10
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538343a3a2f33322d3438203d3e20333939363436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7584::/32
Signature Algorithm: sha256WithRSAEncryption
50:3b:9a:44:61:cd:86:09:99:40:64:0c:d3:7a:1f:7d:97:d8:
5b:21:16:f9:df:28:ee:af:10:8c:1d:f8:b9:e8:70:7a:ee:57:
8a:0a:af:ee:b0:0c:96:df:2e:a8:11:83:a2:a8:4e:a7:76:79:
90:35:39:37:dd:74:ef:30:5b:4c:7e:f8:80:16:b5:1b:5b:f2:
18:c0:bd:87:4f:a1:11:0d:27:97:68:02:43:0c:df:d9:d3:78:
fb:b4:8f:c2:71:f5:85:a7:80:59:98:9d:81:63:95:66:23:89:
55:a0:7c:f1:00:71:ab:2c:1c:f1:13:55:1a:57:a1:f8:39:65:
b8:14:7d:78:08:33:22:3b:82:c7:a9:0e:ce:87:e1:74:4d:c7:
40:3a:f9:ac:08:d0:13:61:9b:3c:89:97:fa:c9:3a:38:f8:7d:
8b:28:09:8a:d5:43:36:39:98:18:e6:3b:5e:85:63:d0:3b:d6:
43:4a:87:ca:db:41:8b:ef:21:dc:77:42:db:52:d3:62:68:7f:
59:27:a6:5e:05:67:b0:9a:84:7a:c7:b3:69:a8:d3:ba:a4:f9:
93:24:05:29:08:98:c0:90:13:45:c5:23:33:62:22:c5:6b:6f:
0e:a9:d5:e9:56:f5:56:de:e2:bb:e2:19:df:d5:0e:14:a1:c1:
c4:4f:9d:07
-----BEGIN CERTIFICATE-----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Generated at Sat Aug 17 17:49:37 2024 by rpki-client on console-fra.rpki-client.org