Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538313a6634333a3a2f34382d3438203d3e20323134363433.roa
File: 326131343a373538313a6634333a3a2f34382d3438203d3e20323134363433.roa (raw, json)
Hash identifier: E+4nwfzTBDc82DVwF1pMflIZ8NdJIsUH84rasqQ7uSA=
Subject key identifier: 36:56:BD:08:05:92:49:53:6B:FD:2C:36:63:FB:33:60:5E:57:26:99
Certificate issuer: /CN=F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A
Certificate serial: 68E75E692B48D6151F0AB12112AE523058E764FA
Authority key identifier: F9:F7:A2:88:5C:F3:01:2F:A1:39:0D:3B:32:59:FC:78:AE:F7:AD:1A
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538313a6634333a3a2f34382d3438203d3e20323134363433.roa
Signing time: Wed 26 Jun 2024 01:20:53 +0000
ROA not before: Wed 26 Jun 2024 01:15:53 +0000
ROA not after: Wed 25 Jun 2025 01:20:53 +0000
asID: 214643
IP address blocks: 2a14:7581:f43::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 27 Jun 2024 06:20:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:e7:5e:69:2b:48:d6:15:1f:0a:b1:21:12:ae:52:30:58:e7:64:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A
Validity
Not Before: Jun 26 01:15:53 2024 GMT
Not After : Jun 25 01:20:53 2025 GMT
Subject: CN=3656BD08059249536BFD2C3663FB33605E572699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:13:ec:b8:11:58:ce:bc:27:e0:c6:40:75:ed:
40:02:f6:a4:ec:07:c8:e3:77:0f:ac:b1:8b:5a:23:
e7:c9:c8:e4:89:e9:f7:98:0b:27:6e:65:56:a3:cc:
c6:9b:8a:e6:cc:d5:cd:76:05:54:10:13:06:eb:06:
50:1a:5f:60:a2:3d:df:d7:08:8e:5d:13:b7:c0:2e:
57:ce:57:78:50:c7:8d:bb:cc:4b:ad:36:2b:c9:c4:
07:c3:5d:3a:af:ed:28:e7:8b:d0:84:1c:4b:8e:63:
26:ca:5d:38:28:08:4b:d5:4b:7e:24:59:14:70:d8:
08:c4:ab:c3:63:16:87:63:58:95:a0:5f:02:91:71:
48:9e:2d:db:ae:1e:34:ca:e0:f8:2e:e7:24:ca:c3:
b6:d1:26:dd:c0:c9:02:cc:32:59:3d:d3:5e:ac:93:
4e:58:82:8c:31:cb:84:37:8e:62:01:b8:b1:65:3d:
52:64:99:14:9f:40:54:b6:32:a0:00:68:ee:9b:58:
54:f7:89:aa:d4:f3:d3:25:8b:1d:8b:52:f9:1c:3a:
d4:de:ba:d9:b1:1f:25:4c:a6:cc:b5:71:e9:94:00:
f5:96:95:12:4c:23:54:76:3c:42:25:0a:a5:3b:6c:
56:bd:b6:4f:0b:fd:f7:fb:db:92:9f:45:20:4f:c7:
c5:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:56:BD:08:05:92:49:53:6B:FD:2C:36:63:FB:33:60:5E:57:26:99
X509v3 Authority Key Identifier:
keyid:F9:F7:A2:88:5C:F3:01:2F:A1:39:0D:3B:32:59:FC:78:AE:F7:AD:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538313a6634333a3a2f34382d3438203d3e20323134363433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:f43::/48
Signature Algorithm: sha256WithRSAEncryption
5d:70:f8:50:1b:d8:b5:c0:44:1f:e1:da:f0:d9:0f:b3:32:ed:
72:a4:61:40:f3:06:f2:2b:ed:0c:ee:f2:fe:c6:75:29:c8:a4:
87:fe:02:c2:52:c6:37:fa:b2:db:59:ff:95:25:ce:03:23:26:
3d:b4:7c:cf:f1:9a:7f:c7:c2:df:51:1d:d1:70:e7:ac:de:11:
2e:46:ae:a0:1d:ed:62:76:c7:d9:8b:a9:8a:2c:44:c1:91:e7:
23:6f:9b:bf:06:1e:ef:1a:2a:1d:79:4b:11:e4:e2:11:d4:64:
2a:8c:0e:6a:49:cb:04:70:d7:70:0c:df:f0:9b:00:18:74:37:
8f:0f:ec:db:c6:ff:9f:ba:3a:79:ed:06:b2:0b:f1:97:9c:95:
a9:9a:98:6b:5b:9d:13:3a:8a:60:27:a0:c2:ad:ae:ed:ed:ef:
d9:d3:4b:4c:03:88:83:cc:bf:01:71:4c:6e:25:72:0b:58:60:
6e:31:33:3a:1a:c4:48:d6:c7:6f:e9:45:91:05:3a:aa:ff:33:
26:b0:29:4b:e7:08:69:0e:b8:e6:8e:06:50:7c:2e:e1:d7:e1:
69:ae:24:d7:a2:34:87:de:47:80:bd:2f:1d:12:96:e0:22:42:
f7:af:77:7a:4a:62:f7:90:7f:bf:2d:60:59:4c:13:9d:30:15:
3f:73:73:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 27 12:26:59 2024 by rpki-client on console-ams.rpki-client.org