Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cd7a5527-fb19-4565-9733-d45a870050e5/1/326130373a323438363a6530303a3a2f34342d3438203d3e20323032313937.roa
File: 326130373a323438363a6530303a3a2f34342d3438203d3e20323032313937.roa (raw, json)
Hash identifier: 0Lw+jZovMAishuYuVeY1WPCUSWLQTlgkozPQ2DNMuCE=
Subject key identifier: 22:76:24:11:2F:CF:26:98:1B:50:39:9A:06:06:40:55:B4:A6:FE:7E
Certificate issuer: /CN=AC2B083EE37BCF2D737C576EF9D532ED717A1711
Certificate serial: 65F380637E2DBD5B6EFAEAD010F025A7172B105E
Authority key identifier: AC:2B:08:3E:E3:7B:CF:2D:73:7C:57:6E:F9:D5:32:ED:71:7A:17:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/AC2B083EE37BCF2D737C576EF9D532ED717A1711.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cd7a5527-fb19-4565-9733-d45a870050e5/1/326130373a323438363a6530303a3a2f34342d3438203d3e20323032313937.roa
Signing time: Wed 10 Apr 2024 21:23:48 +0000
ROA not before: Wed 10 Apr 2024 21:18:48 +0000
ROA not after: Wed 09 Apr 2025 21:23:48 +0000
asID: 202197
IP address blocks: 2a07:2486:e00::/44 maxlen: 48
Validation: Failed, certificate revoked on Wed 10 Apr 2024 22:57:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:f3:80:63:7e:2d:bd:5b:6e:fa:ea:d0:10:f0:25:a7:17:2b:10:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC2B083EE37BCF2D737C576EF9D532ED717A1711
Validity
Not Before: Apr 10 21:18:48 2024 GMT
Not After : Apr 9 21:23:48 2025 GMT
Subject: CN=227624112FCF26981B50399A06064055B4A6FE7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6c:a5:09:0b:84:c7:cf:a9:7b:21:aa:52:22:
ca:aa:7e:3f:6a:a3:2f:9c:62:57:13:cb:24:cf:5c:
f7:06:b9:3c:c3:ef:11:43:fd:31:19:b0:d9:e5:3f:
c7:33:d9:79:42:fd:96:90:a4:b5:c0:18:c3:84:85:
ab:8d:1b:d0:ac:03:a0:d0:90:e5:d7:73:87:37:94:
87:67:ee:53:da:12:56:a0:c9:cf:76:d3:a4:91:80:
3b:b2:bf:cd:5a:f6:f4:ab:52:25:74:14:4c:6e:95:
10:8f:0b:06:15:12:fc:be:52:b0:36:5e:f6:a3:88:
ac:10:28:49:7e:78:11:b1:86:bf:0a:77:3c:48:8d:
c5:12:cf:79:20:66:7e:2b:9d:8f:68:50:87:35:e7:
72:69:ea:e9:70:76:40:1d:ea:28:30:40:ec:21:9d:
60:81:e2:d5:94:58:a8:95:80:8b:0b:86:d8:f9:47:
3e:48:31:b9:51:10:24:82:34:cb:96:8f:97:81:e6:
3c:37:ee:1e:da:c5:83:e6:f8:e6:60:49:47:e7:44:
b0:fe:51:a9:ec:bd:7b:2a:d8:d1:bf:5e:e2:d6:fe:
52:a6:c9:e8:18:d1:e1:20:99:49:9b:49:e2:3e:f4:
5e:9a:99:77:c7:e5:9c:5c:eb:a2:1c:0e:85:bb:b1:
8d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:76:24:11:2F:CF:26:98:1B:50:39:9A:06:06:40:55:B4:A6:FE:7E
X509v3 Authority Key Identifier:
keyid:AC:2B:08:3E:E3:7B:CF:2D:73:7C:57:6E:F9:D5:32:ED:71:7A:17:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cd7a5527-fb19-4565-9733-d45a870050e5/1/AC2B083EE37BCF2D737C576EF9D532ED717A1711.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/AC2B083EE37BCF2D737C576EF9D532ED717A1711.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cd7a5527-fb19-4565-9733-d45a870050e5/1/326130373a323438363a6530303a3a2f34342d3438203d3e20323032313937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:2486:e00::/44
Signature Algorithm: sha256WithRSAEncryption
20:61:b5:65:e6:b0:ce:62:16:79:bf:71:9a:d4:2e:f6:26:d0:
fe:b9:a2:da:55:2a:97:34:01:4a:1c:2e:2d:2b:92:b3:64:1e:
22:3f:ea:0f:25:13:ea:2f:45:cd:ca:88:91:32:0c:02:5f:bc:
46:55:66:f0:e1:3f:1d:16:60:b2:e3:0f:16:dc:e0:39:e1:80:
04:e7:82:77:15:c7:29:c8:c6:ac:6a:61:2a:16:a4:13:f8:27:
2e:80:bc:ee:ff:a0:bc:c8:b7:44:13:38:24:b1:c9:cb:96:82:
d1:ce:bc:31:c6:68:31:49:8b:c2:b6:98:9b:43:4d:87:69:4d:
42:22:18:9a:24:80:6b:d3:6c:20:56:d9:cb:cb:d7:4c:0e:6d:
64:50:df:b6:52:51:7f:0f:75:2a:65:1b:23:a4:eb:e3:c8:78:
64:11:60:ea:95:94:56:d7:46:47:1d:ac:aa:f6:4e:23:cc:58:
6a:d5:c8:0e:89:cb:72:a8:b2:3c:aa:29:e1:af:d8:ac:80:7f:
d7:c5:79:e9:4b:79:97:61:9e:b4:30:1f:c9:39:27:29:24:80:
6b:20:c7:d3:16:ea:92:ac:fe:49:4e:c2:1b:f1:9e:7c:e3:4b:
76:2f:fb:bf:0f:c9:88:c6:8b:e7:7b:6f:9c:8c:18:80:62:1d:
8f:17:da:e1
-----BEGIN CERTIFICATE-----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Generated at Thu Apr 11 00:12:00 2024 by rpki-client on console-ams.rpki-client.org