Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cd7a5527-fb19-4565-9733-d45a870050e5/1/326130373a323438363a6537303a3a2f34342d3438203d3e203438373532.roa
File: 326130373a323438363a6537303a3a2f34342d3438203d3e203438373532.roa (raw, json)
Hash identifier: VbRlDcf/C3SRxCCHRhaCuu3UA9qTkr5jwD0uuVjyPoI=
Subject key identifier: 11:23:09:00:94:A3:D1:2B:C7:47:38:D5:22:27:67:21:38:1E:26:BF
Certificate issuer: /CN=AC2B083EE37BCF2D737C576EF9D532ED717A1711
Certificate serial: 7114399EDFDFBE436313169F2A47B87F2A973326
Authority key identifier: AC:2B:08:3E:E3:7B:CF:2D:73:7C:57:6E:F9:D5:32:ED:71:7A:17:11
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/AC2B083EE37BCF2D737C576EF9D532ED717A1711.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cd7a5527-fb19-4565-9733-d45a870050e5/1/326130373a323438363a6537303a3a2f34342d3438203d3e203438373532.roa
Signing time: Thu 11 Apr 2024 00:24:58 +0000
ROA not before: Thu 11 Apr 2024 00:19:58 +0000
ROA not after: Thu 10 Apr 2025 00:24:58 +0000
asID: 48752
IP address blocks: 2a07:2486:e70::/44 maxlen: 48
Validation: Failed, certificate revoked on Sat 04 May 2024 11:56:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:14:39:9e:df:df:be:43:63:13:16:9f:2a:47:b8:7f:2a:97:33:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC2B083EE37BCF2D737C576EF9D532ED717A1711
Validity
Not Before: Apr 11 00:19:58 2024 GMT
Not After : Apr 10 00:24:58 2025 GMT
Subject: CN=1123090094A3D12BC74738D522276721381E26BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6a:2d:99:7c:a0:d7:a6:99:1f:e0:54:4f:a9:
ce:7b:bb:4a:a5:7b:a7:6a:8e:3d:0e:c9:0d:77:9e:
e4:40:4e:39:12:39:34:0b:28:85:cf:e8:72:1b:33:
e2:b2:a2:ab:f8:47:18:ef:ea:47:1d:de:35:3a:5a:
be:48:e7:6b:ae:b5:5f:dd:dc:e1:72:38:e9:a0:fd:
61:ce:b5:58:89:05:c4:7f:82:20:5f:ae:6d:e4:46:
70:2f:b4:27:b1:f9:87:0c:e3:ae:15:cf:f1:b3:86:
9f:f8:c5:51:0b:ca:fb:dc:13:51:d6:41:a1:8e:20:
ba:f2:ed:21:53:f0:3d:29:3a:03:05:9d:53:49:c1:
82:5b:e5:2d:f6:ef:22:cc:50:c9:fb:16:22:19:d9:
c6:99:56:c1:06:3c:20:3e:43:04:c6:cb:12:ba:64:
37:a4:f9:e4:4e:ba:4e:33:8f:72:55:b3:f4:90:2e:
8a:24:99:94:7d:62:9d:49:27:02:f1:e8:27:9d:31:
ca:0d:fb:73:cf:1a:6b:85:65:0f:e6:d0:0c:eb:99:
ac:fb:81:6a:71:08:ed:3d:16:52:cf:83:16:64:8b:
a6:c0:15:be:e2:ad:43:4c:b8:14:28:d7:a9:85:5d:
0b:cd:05:f6:54:bd:6b:5d:8c:aa:ad:26:81:fc:bf:
74:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:23:09:00:94:A3:D1:2B:C7:47:38:D5:22:27:67:21:38:1E:26:BF
X509v3 Authority Key Identifier:
keyid:AC:2B:08:3E:E3:7B:CF:2D:73:7C:57:6E:F9:D5:32:ED:71:7A:17:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/cd7a5527-fb19-4565-9733-d45a870050e5/1/AC2B083EE37BCF2D737C576EF9D532ED717A1711.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/AC2B083EE37BCF2D737C576EF9D532ED717A1711.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cd7a5527-fb19-4565-9733-d45a870050e5/1/326130373a323438363a6537303a3a2f34342d3438203d3e203438373532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:2486:e70::/44
Signature Algorithm: sha256WithRSAEncryption
65:81:f9:18:d2:4b:db:1d:74:cc:ad:8f:86:a2:4a:bd:b2:34:
b1:07:9b:af:86:a9:fa:f6:f0:e0:9a:9e:8d:25:43:ed:74:59:
2c:1f:e6:bc:82:cb:02:c2:54:bc:94:c5:0d:9c:80:8a:41:b8:
56:2a:11:34:c3:71:27:e9:01:d9:9d:f5:bb:50:6d:4e:ac:f3:
ae:27:19:41:28:e0:07:a6:37:e1:f4:97:47:ca:36:98:65:6b:
cc:88:a3:0a:b3:3b:3c:98:14:e0:23:e1:06:33:a3:e2:04:58:
56:cc:6f:f1:49:47:1d:c2:95:4e:4d:f4:d6:ff:01:b4:af:4a:
76:33:a9:6f:3e:46:c6:3c:5d:fc:17:8d:1e:ca:bd:f0:2b:60:
35:14:15:88:00:65:43:bf:21:cd:bc:9e:e0:02:a8:72:a5:93:
cf:b0:75:3d:a1:29:bc:be:e9:cc:6e:d0:1a:a4:5b:dc:d3:83:
5c:59:f9:2d:0c:db:e3:d8:ac:7f:c4:dd:58:7c:60:36:35:e5:
68:3f:5e:08:84:23:fc:f2:20:20:c9:63:9d:96:bb:64:18:04:
ec:b0:8f:d8:09:f1:5c:9c:fc:ae:7c:a5:ee:41:3d:6e:de:45:
bf:b4:20:1f:7a:ca:65:e2:5e:d6:c7:d1:27:9e:ee:a1:4c:a5:
ec:fe:31:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:20 2024 by rpki-client on console-fra.rpki-client.org