Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a9b0deda-55ce-44b1-b964-d8abdd6d55ce/0/326130363a396638313a333031343a3a2f34382d3438203d3e20313531333439.roa
File: 326130363a396638313a333031343a3a2f34382d3438203d3e20313531333439.roa (raw, json)
Hash identifier: 6sIVzkHc2+g/gwH7Y2QQ6GsoOV63Nr6VOX6mt+45AQA=
Subject key identifier: 60:3E:46:B5:62:4B:56:A1:44:3A:61:98:78:C2:5C:AA:E0:AB:16:6A
Certificate issuer: /CN=ADD73B35695BB3BF25B467196329EFCAAC867E5E
Certificate serial: 2BFF50B620A08072053B9B0E8FBECDD8577C1487
Authority key identifier: AD:D7:3B:35:69:5B:B3:BF:25:B4:67:19:63:29:EF:CA:AC:86:7E:5E
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/ADD73B35695BB3BF25B467196329EFCAAC867E5E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a9b0deda-55ce-44b1-b964-d8abdd6d55ce/0/326130363a396638313a333031343a3a2f34382d3438203d3e20313531333439.roa
Signing time: Mon 29 Apr 2024 17:30:45 +0000
ROA not before: Mon 29 Apr 2024 17:25:45 +0000
ROA not after: Mon 28 Apr 2025 17:30:45 +0000
asID: 151349
IP address blocks: 2a06:9f81:3014::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 27 May 2024 06:26:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:ff:50:b6:20:a0:80:72:05:3b:9b:0e:8f:be:cd:d8:57:7c:14:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADD73B35695BB3BF25B467196329EFCAAC867E5E
Validity
Not Before: Apr 29 17:25:45 2024 GMT
Not After : Apr 28 17:30:45 2025 GMT
Subject: CN=603E46B5624B56A1443A619878C25CAAE0AB166A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4f:93:d3:94:cd:a3:72:3e:1d:ca:17:b9:d8:
68:8f:34:20:51:45:fa:67:f4:c8:94:89:72:f5:4a:
73:20:99:26:01:a0:a9:f5:40:59:a9:28:ee:f8:ce:
db:ba:d9:41:35:12:22:b9:36:42:2e:84:9c:0e:99:
4b:82:eb:8c:64:e4:33:1e:15:b8:ef:54:33:b4:32:
ef:e3:e5:d3:7b:ce:a4:b5:ac:ac:c6:d4:1c:75:2b:
67:eb:99:76:54:34:d1:92:4d:19:dd:70:7f:ad:c5:
e3:6d:e4:ea:1a:0c:2e:97:a3:bb:0f:ce:61:58:e8:
79:f4:26:b3:a9:44:72:fc:9d:57:90:d1:d6:f3:60:
db:ac:29:79:91:e8:6e:f3:47:99:32:74:0d:ac:76:
ed:62:5c:16:69:c8:cc:04:24:75:0b:b1:a0:f4:0c:
7f:be:8e:64:e3:86:81:7f:be:71:51:e7:8c:2c:76:
c2:b0:b3:6b:7b:01:3e:c4:ef:a5:4d:c8:f6:d3:e2:
dc:f4:b2:6e:53:7f:ce:d6:9f:d5:5d:be:7c:d6:d3:
d7:9c:3f:52:34:02:64:2d:21:76:2d:ae:45:07:11:
87:c5:1c:b4:2e:69:31:20:fa:b6:f8:b4:ce:8c:8e:
0e:0e:aa:be:77:13:12:f5:e8:b7:39:11:91:bc:8b:
06:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:3E:46:B5:62:4B:56:A1:44:3A:61:98:78:C2:5C:AA:E0:AB:16:6A
X509v3 Authority Key Identifier:
keyid:AD:D7:3B:35:69:5B:B3:BF:25:B4:67:19:63:29:EF:CA:AC:86:7E:5E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a9b0deda-55ce-44b1-b964-d8abdd6d55ce/0/ADD73B35695BB3BF25B467196329EFCAAC867E5E.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/ADD73B35695BB3BF25B467196329EFCAAC867E5E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a9b0deda-55ce-44b1-b964-d8abdd6d55ce/0/326130363a396638313a333031343a3a2f34382d3438203d3e20313531333439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:9f81:3014::/48
Signature Algorithm: sha256WithRSAEncryption
20:d7:8d:d5:c2:a9:f1:4f:db:94:9d:6d:60:bd:37:f3:ab:10:
ed:3a:de:08:c9:0d:5c:64:50:12:7e:36:d4:b3:57:81:fd:6f:
d3:f2:1d:d2:bc:87:29:5b:e5:97:1a:d5:95:f5:17:40:5c:28:
b6:9a:f6:74:85:3a:40:1c:a2:01:50:f9:e5:f1:d1:d5:50:e4:
e3:b9:7b:fa:44:2a:de:67:7c:1e:bb:77:0a:91:dc:d6:bb:57:
e5:ee:15:33:c6:dc:53:b5:30:df:d8:e3:31:e8:83:50:93:ac:
fc:bb:9f:ea:fc:11:b0:11:d9:e5:e4:76:9c:75:91:a6:ab:d9:
98:4c:33:51:c3:9d:9a:1a:f1:84:4a:be:41:7a:62:77:b6:2c:
19:9a:36:e0:e6:0f:c6:bb:52:9b:16:97:4b:45:18:46:17:5f:
e7:12:6e:e1:b1:aa:e9:ab:a9:12:ef:5a:bc:62:24:db:9b:31:
42:9e:27:49:7d:8d:7b:11:a8:c6:b7:cb:75:af:7f:cf:5b:f8:
55:d2:af:fe:b7:2f:6a:b5:2e:fd:0b:df:fc:ba:53:bf:ac:d2:
6a:c7:76:a2:9c:51:0f:2c:43:79:68:e0:89:6f:d8:33:9b:5b:
3d:55:ba:62:67:1d:16:e4:d3:fa:ed:bf:dd:b4:7c:c1:b5:03:
bc:38:a5:1a
-----BEGIN CERTIFICATE-----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Generated at Mon May 27 07:01:54 2024 by rpki-client on console-fra.rpki-client.org