Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538373a3a2f33322d3438203d3e20323134373733.roa
File: 326131343a373538373a3a2f33322d3438203d3e20323134373733.roa (raw, json)
Hash identifier: 4QJ8b3CDCDDsr5MHwXFy0pDtVsy4jvtYL4XNFAG5g38=
Subject key identifier: E5:E7:7B:31:BA:CD:B1:24:EC:53:17:08:76:F5:AF:97:88:EA:EF:CD
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 4943B251B213B92906030992D3B18C66C3B32F9F
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538373a3a2f33322d3438203d3e20323134373733.roa
Signing time: Wed 05 Jun 2024 14:11:26 +0000
ROA not before: Wed 05 Jun 2024 14:06:26 +0000
ROA not after: Wed 04 Jun 2025 14:11:26 +0000
asID: 214773
IP address blocks: 2a14:7587::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 08 Jul 2024 08:41:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:43:b2:51:b2:13:b9:29:06:03:09:92:d3:b1:8c:66:c3:b3:2f:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Jun 5 14:06:26 2024 GMT
Not After : Jun 4 14:11:26 2025 GMT
Subject: CN=E5E77B31BACDB124EC53170876F5AF9788EAEFCD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9c:b8:dd:76:fa:bd:70:4b:a0:34:51:ca:f0:
50:b8:f9:c4:67:4f:f4:c7:60:9d:ed:bb:6f:4d:28:
c1:08:ce:4c:e3:6b:0a:a9:90:ac:d0:34:65:bc:08:
e7:b9:e2:2e:0c:be:20:eb:3d:fd:71:84:ec:18:ee:
09:d8:8c:66:81:f4:7b:ad:d9:56:3c:23:f0:8a:27:
aa:9f:4c:9c:74:b9:60:fe:64:04:56:bd:e2:a0:b3:
71:c5:ac:b8:fc:1e:0b:06:27:cd:1b:26:fc:03:85:
ff:c0:e6:d5:28:70:19:03:45:78:19:2d:7d:37:ed:
f0:6f:17:c5:dd:44:00:2c:4e:36:13:fd:7b:bf:d9:
02:77:08:0e:4f:5d:5b:94:7f:3d:1e:db:f5:3c:7a:
1b:8e:56:97:a2:05:4b:f1:a9:89:c3:c0:ae:03:7a:
8e:12:3d:1e:5d:2f:96:dc:46:17:ce:1e:d8:26:f2:
a8:f2:13:bd:89:66:e2:dd:ed:28:91:fa:41:c5:2a:
7a:19:bf:03:73:e9:8f:61:f7:08:71:fc:56:7f:29:
d1:13:49:bd:00:d7:1b:b5:82:c7:15:07:d6:3c:b9:
d5:6d:10:96:c4:f5:04:91:79:63:95:bd:c4:c1:ef:
d9:d2:d3:05:00:3b:63:67:40:98:60:90:e8:f7:4b:
82:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E7:7B:31:BA:CD:B1:24:EC:53:17:08:76:F5:AF:97:88:EA:EF:CD
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/326131343a373538373a3a2f33322d3438203d3e20323134373733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7587::/32
Signature Algorithm: sha256WithRSAEncryption
15:c3:fd:5d:80:a1:f0:0a:52:2c:9d:e6:6f:9c:ba:6a:b3:1a:
aa:dc:ab:2b:70:77:f4:fc:7d:93:1e:4a:f6:6f:c2:74:11:3d:
00:72:13:5c:5e:e9:0a:7a:4b:7d:7b:ae:18:67:bd:31:1d:27:
d6:97:b0:ed:66:74:98:44:5f:8e:d5:15:b4:94:ab:68:d6:09:
8f:7f:3c:84:fb:ad:96:9b:64:d8:51:8d:9b:18:06:f1:00:7d:
b0:25:1a:92:42:3e:d7:67:64:f4:35:14:f1:ce:90:80:6b:fe:
ca:6e:a0:cf:53:61:a9:8d:af:74:7c:32:41:1e:75:24:17:3d:
57:e7:c1:75:79:f0:a7:94:13:95:9b:65:f7:d0:b1:20:d7:86:
51:19:c7:d2:75:3c:ce:d4:bf:5c:f3:4d:2b:b0:18:a4:03:d7:
e6:90:aa:01:47:0b:55:ba:1a:7e:06:66:fc:7f:d0:bd:b3:46:
db:4a:18:5a:55:4f:a6:57:c1:1b:34:31:93:b6:1c:c8:e5:7f:
9c:75:e6:e4:29:e1:f2:8b:33:ae:53:24:c8:bc:1b:66:d2:8e:
cf:b6:13:87:9d:55:80:1a:5f:a3:3c:81:3c:10:f4:7a:94:7d:
08:ea:a2:bf:51:2d:33:9a:20:cf:ca:af:9c:c5:44:e2:fa:5a:
27:b8:7c:0b
-----BEGIN CERTIFICATE-----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Generated at Mon Jul 8 10:02:28 2024 by rpki-client on console-fra.rpki-client.org