Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c974e2af-eaab-4d78-8d95-283144dda962/1/326130663a383563313a3336323a3a2f34382d3438203d3e203533363637.roa
File: 326130663a383563313a3336323a3a2f34382d3438203d3e203533363637.roa (raw, json)
Hash identifier: 8sbHO+K7JBekg2FTHQP9JnrNOFqw6257HZ74mf0ZTOA=
Subject key identifier: 81:6F:B3:4C:BA:FC:DB:B8:F4:58:74:2E:73:DF:A7:9D:BD:14:19:42
Certificate issuer: /CN=FBDF5C81A0D6F79C3DFB8B4EDF2966F352606027
Certificate serial: 53D8CD67A1E42D787B992D764161A332EB7C9F38
Authority key identifier: FB:DF:5C:81:A0:D6:F7:9C:3D:FB:8B:4E:DF:29:66:F3:52:60:60:27
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/FBDF5C81A0D6F79C3DFB8B4EDF2966F352606027.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c974e2af-eaab-4d78-8d95-283144dda962/1/326130663a383563313a3336323a3a2f34382d3438203d3e203533363637.roa
Signing time: Thu 08 Feb 2024 19:16:06 +0000
ROA not before: Thu 08 Feb 2024 19:11:06 +0000
ROA not after: Thu 06 Feb 2025 19:16:06 +0000
asID: 53667
IP address blocks: 2a0f:85c1:362::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 15 Mar 2024 13:13:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:d8:cd:67:a1:e4:2d:78:7b:99:2d:76:41:61:a3:32:eb:7c:9f:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FBDF5C81A0D6F79C3DFB8B4EDF2966F352606027
Validity
Not Before: Feb 8 19:11:06 2024 GMT
Not After : Feb 6 19:16:06 2025 GMT
Subject: CN=816FB34CBAFCDBB8F458742E73DFA79DBD141942
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:6a:a1:0b:c7:77:05:d5:ad:78:3d:b6:2a:79:
86:c3:a7:04:25:06:56:60:02:12:0a:2d:8d:fe:20:
5d:0d:1a:18:55:9d:86:7b:d5:0d:e8:e0:85:a2:7d:
d3:a5:1d:e9:70:ad:94:d9:6d:d2:98:cb:0c:dc:ad:
dd:64:ab:bf:0a:c0:58:ea:23:07:3a:ef:0b:0c:fe:
8f:be:bb:85:a6:46:57:7c:ed:bc:49:69:ca:d0:ff:
5e:6d:30:fd:f8:c6:1b:09:67:b4:aa:e6:1d:3a:7a:
61:8b:df:45:06:69:43:c4:ed:7e:32:4e:d6:4e:85:
bb:b3:87:c2:21:f4:c0:75:ea:21:f6:29:57:2e:24:
79:66:83:c5:b9:7e:ad:23:1a:b0:d8:22:8c:b6:54:
b9:9f:0e:df:a7:00:72:2d:c6:dd:75:f9:c1:7e:cb:
e3:38:7e:15:82:4c:52:18:18:21:65:c4:04:85:a8:
0e:a5:47:42:43:a7:93:4b:d1:d5:de:30:1d:48:4a:
88:77:bb:38:65:bc:46:12:00:7a:98:f1:c4:3b:64:
44:db:16:e4:bf:7e:eb:17:d0:43:99:20:d8:ca:a1:
dd:d2:60:26:38:23:be:8b:ea:d2:eb:1e:7e:ba:cc:
8f:c4:19:81:df:c7:24:5c:b0:d1:46:a5:d1:d4:f2:
02:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:6F:B3:4C:BA:FC:DB:B8:F4:58:74:2E:73:DF:A7:9D:BD:14:19:42
X509v3 Authority Key Identifier:
keyid:FB:DF:5C:81:A0:D6:F7:9C:3D:FB:8B:4E:DF:29:66:F3:52:60:60:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c974e2af-eaab-4d78-8d95-283144dda962/1/FBDF5C81A0D6F79C3DFB8B4EDF2966F352606027.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/FBDF5C81A0D6F79C3DFB8B4EDF2966F352606027.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c974e2af-eaab-4d78-8d95-283144dda962/1/326130663a383563313a3336323a3a2f34382d3438203d3e203533363637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:362::/48
Signature Algorithm: sha256WithRSAEncryption
94:88:76:77:e3:54:f5:61:17:43:fd:65:a3:27:c4:1e:84:a2:
45:1c:24:a0:8d:e4:4b:d4:b4:6b:3b:73:01:82:be:d9:bb:d9:
ca:b6:f5:9f:af:fa:a8:67:3d:e1:bb:c9:37:97:81:5b:d9:27:
18:e3:d4:79:ff:3c:d3:88:c5:3f:08:33:51:c5:7e:16:14:6b:
02:d1:ed:f8:c2:53:a7:7d:19:b8:58:c0:f8:d0:45:da:a3:e5:
63:1e:84:92:cb:ab:d3:1f:53:9b:fe:6f:95:72:25:e7:74:74:
ea:db:b2:20:d5:f2:9d:da:82:34:25:2c:36:06:27:fa:4e:c7:
a9:d3:7a:6b:1e:a2:54:c6:1e:83:05:25:23:ee:59:6a:18:f5:
1d:86:f4:64:e1:95:d5:3b:52:c0:37:6e:cd:30:82:3f:2f:15:
15:92:40:20:b3:d6:a8:ab:13:15:1d:41:09:59:44:10:03:97:
bc:b0:2d:38:87:22:ae:e5:db:af:e6:c4:71:44:31:e4:1a:65:
2b:20:ac:dd:fd:b4:e2:1d:44:0d:ef:9e:27:27:60:dc:03:b9:
60:2a:ee:43:db:ff:87:83:e7:b8:d1:c6:cc:7c:cc:50:70:a0:
08:b3:fe:df:5e:68:a8:b0:30:29:a6:a4:29:39:99:ce:5c:2c:
30:72:4c:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 15 16:15:35 2024 by rpki-client on console-ams.rpki-client.org