Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538313a653130323a3a2f34382d3438203d3e20323134363433.roa
File: 326131343a373538313a653130323a3a2f34382d3438203d3e20323134363433.roa (raw, json)
Hash identifier: 1TV/iA0u7SdUIM2YHxhGTvf9857JQEW0iW4f9cy0RSc=
Subject key identifier: 33:36:8D:EA:5B:95:0A:1F:F1:78:34:61:EF:E9:0B:45:16:F5:77:0A
Certificate issuer: /CN=F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A
Certificate serial: 0F3CE910B93F2ADA90B5C09BDC9C18A43CE042FF
Authority key identifier: F9:F7:A2:88:5C:F3:01:2F:A1:39:0D:3B:32:59:FC:78:AE:F7:AD:1A
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538313a653130323a3a2f34382d3438203d3e20323134363433.roa
Signing time: Fri 05 Jul 2024 10:53:32 +0000
ROA not before: Fri 05 Jul 2024 10:48:32 +0000
ROA not after: Fri 04 Jul 2025 10:53:32 +0000
asID: 214643
IP address blocks: 2a14:7581:e102::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 17 Jul 2024 15:22:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:3c:e9:10:b9:3f:2a:da:90:b5:c0:9b:dc:9c:18:a4:3c:e0:42:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A
Validity
Not Before: Jul 5 10:48:32 2024 GMT
Not After : Jul 4 10:53:32 2025 GMT
Subject: CN=33368DEA5B950A1FF1783461EFE90B4516F5770A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:08:4e:ce:7d:89:3f:09:ff:7d:e9:fc:84:92:
60:5a:a6:54:fc:5d:e0:f1:d1:3d:ac:e0:ea:d7:30:
8a:e9:50:d6:85:1f:d4:21:04:24:3b:a8:49:fa:46:
25:cc:80:50:9a:b2:ec:99:e5:50:9d:36:ad:a8:f6:
a8:cb:4f:b6:52:10:99:ce:ff:19:23:5d:99:10:c1:
75:d3:bc:bd:df:1a:f1:db:ad:0c:78:8c:e2:b0:25:
de:45:b7:b9:c4:54:1b:de:dd:41:a6:db:56:56:3d:
c8:1f:c7:49:9e:b3:cd:99:40:65:db:87:00:10:2e:
fa:49:98:59:58:29:82:4c:e8:8d:79:3d:63:a2:ee:
18:ed:fc:d2:10:7a:5f:a0:86:42:88:dc:91:ec:d1:
45:d8:94:f7:80:29:62:9b:4a:c7:11:c2:0c:cf:70:
e5:0b:d2:13:ae:d6:56:54:d7:59:ad:82:93:5b:45:
64:dc:b7:eb:08:37:8c:8f:1d:ce:91:b6:49:a7:a8:
27:58:46:06:52:52:73:ae:33:3f:4c:79:51:20:69:
8d:ba:40:50:ee:55:28:d2:a4:8b:45:16:b6:2d:84:
65:ba:78:86:79:89:14:f7:86:3d:2a:f5:60:42:aa:
38:c6:e1:7a:eb:43:5a:d0:b5:fd:25:ad:56:b3:69:
bc:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:36:8D:EA:5B:95:0A:1F:F1:78:34:61:EF:E9:0B:45:16:F5:77:0A
X509v3 Authority Key Identifier:
keyid:F9:F7:A2:88:5C:F3:01:2F:A1:39:0D:3B:32:59:FC:78:AE:F7:AD:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538313a653130323a3a2f34382d3438203d3e20323134363433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:e102::/48
Signature Algorithm: sha256WithRSAEncryption
ba:52:ea:83:04:be:9f:6d:4b:3e:1e:7f:9e:01:9d:13:18:d6:
2a:60:74:a2:e1:89:fa:95:50:a7:42:7a:35:a6:75:7f:4a:c2:
e8:68:ad:81:ba:21:e4:1c:fc:f1:ee:36:f2:45:20:ac:b7:86:
c5:5b:8a:03:d6:5f:d4:f4:a2:4e:82:90:b4:5d:80:af:f9:d8:
78:91:86:9a:66:2d:f2:6c:68:1c:aa:d9:27:16:ab:07:85:69:
81:5d:17:f5:8e:f4:ad:0b:00:8f:9d:c7:c2:e1:bc:3c:d3:85:
99:e1:82:66:1f:28:0f:e3:78:f5:21:78:f9:ce:8b:7f:0f:ec:
0a:56:9a:91:05:92:a4:4d:e3:9b:fc:2d:1b:f9:f4:78:6e:57:
c1:ed:20:d4:02:d5:a6:94:17:78:75:25:8e:cf:5e:03:d3:3f:
c1:17:bf:09:27:18:69:ae:20:28:8e:62:20:6c:cf:f3:28:05:
45:3d:68:24:eb:b9:26:ad:a9:13:16:aa:ae:96:a5:a2:84:91:
9b:80:29:12:87:95:76:d2:b8:eb:76:24:92:74:0c:06:ca:f8:
84:52:08:8e:52:48:07:dd:20:10:9a:32:21:2c:97:5d:23:ce:
51:9a:a8:f5:f2:ad:9e:9d:36:32:20:b4:b7:ca:10:8b:66:99:
05:f1:a1:95
-----BEGIN CERTIFICATE-----
MIIFezCCBGOgAwIBAgIUDzzpELk/KtqQtcCb3JwYpDzgQv8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjlGN0EyODg1Q0YzMDEyRkExMzkwRDNCMzI1OUZDNzhB
RUY3QUQxQTAeFw0yNDA3MDUxMDQ4MzJaFw0yNTA3MDQxMDUzMzJaMDMxMTAvBgNV
BAMTKDMzMzY4REVBNUI5NTBBMUZGMTc4MzQ2MUVGRTkwQjQ1MTZGNTc3MEEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6CE7OfYk/Cf996fyEkmBaplT8
XeDx0T2s4OrXMIrpUNaFH9QhBCQ7qEn6RiXMgFCasuyZ5VCdNq2o9qjLT7ZSEJnO
/xkjXZkQwXXTvL3fGvHbrQx4jOKwJd5Ft7nEVBve3UGm21ZWPcgfx0mes82ZQGXb
hwAQLvpJmFlYKYJM6I15PWOi7hjt/NIQel+ghkKI3JHs0UXYlPeAKWKbSscRwgzP
cOUL0hOu1lZU11mtgpNbRWTct+sIN4yPHc6RtkmnqCdYRgZSUnOuMz9MeVEgaY26
QFDuVSjSpItFFrYthGW6eIZ5iRT3hj0q9WBCqjjG4XrrQ1rQtf0lrVazabyzAgMB
AAGjggKFMIICgTAdBgNVHQ4EFgQUMzaN6luVCh/xeDRh7+kLRRb1dwowHwYDVR0j
BBgwFoAU+feiiFzzAS+hOQ07Mln8eK73rRowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZGI4ZDhiN2QtYzQ4Ni00MjM5LTlkOWYtOGY4ZjVkY2Vk
OGQwLzEvRjlGN0EyODg1Q0YzMDEyRkExMzkwRDNCMzI1OUZDNzhBRUY3QUQxQS5j
cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy
OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GOUY3QTI4ODVDRjMwMTJGQTEzOTBEM0Iz
MjU5RkM3OEFFRjdBRDFBLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF
BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9kYjhkOGI3ZC1jNDg2LTQyMzktOWQ5Zi04ZjhmNWRjZWQ4ZDAvMS8zMjYxMzEz
NDNhMzczNTM4MzEzYTY1MzEzMDMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz
MTM0MzYzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF
BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1geECMA0GCSqGSIb3DQEBCwUAA4IBAQC6
UuqDBL6fbUs+Hn+eAZ0TGNYqYHSi4Yn6lVCnQno1pnV/SsLoaK2BuiHkHPzx7jby
RSCst4bFW4oD1l/U9KJOgpC0XYCv+dh4kYaaZi3ybGgcqtknFqsHhWmBXRf1jvSt
CwCPncfC4bw804WZ4YJmHygP43j1IXj5zot/D+wKVpqRBZKkTeOb/C0b+fR4blfB
7SDUAtWmlBd4dSWOz14D0z/BF78JJxhpriAojmIgbM/zKAVFPWgk67kmrakTFqqu
lqWihJGbgCkSh5V20rjrdiSSdAwGyviEUgiOUkgH3SAQmjIhLJddI85Rmqj18q2e
nTYyILS3yhCLZpkF8aGV
-----END CERTIFICATE-----
Generated at Wed Jul 17 19:33:29 2024 by rpki-client on console-fra.rpki-client.org