Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538313a6634383a3a2f34352d3435203d3e20323134363433.roa
File: 326131343a373538313a6634383a3a2f34352d3435203d3e20323134363433.roa (raw, json)
Hash identifier: p0L/fgS/Y7oDBpoUF/vw0YbJcNDmdwgzTN4Al5DNPzk=
Subject key identifier: 94:77:22:E6:EF:D0:75:DA:7B:C1:5B:E4:B6:56:37:6D:DF:A1:FF:53
Certificate issuer: /CN=F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A
Certificate serial: 3BA9A54D382005B55A12F3C4CAC980CB0B6C34D1
Authority key identifier: F9:F7:A2:88:5C:F3:01:2F:A1:39:0D:3B:32:59:FC:78:AE:F7:AD:1A
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538313a6634383a3a2f34352d3435203d3e20323134363433.roa
Signing time: Wed 26 Jun 2024 15:06:34 +0000
ROA not before: Wed 26 Jun 2024 15:01:34 +0000
ROA not after: Wed 25 Jun 2025 15:06:34 +0000
asID: 214643
IP address blocks: 2a14:7581:f48::/45 maxlen: 45
Validation: Failed, certificate revoked on Thu 27 Jun 2024 06:20:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:a9:a5:4d:38:20:05:b5:5a:12:f3:c4:ca:c9:80:cb:0b:6c:34:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A
Validity
Not Before: Jun 26 15:01:34 2024 GMT
Not After : Jun 25 15:06:34 2025 GMT
Subject: CN=947722E6EFD075DA7BC15BE4B656376DDFA1FF53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:49:ff:a7:7f:71:6a:1f:c9:81:d2:f9:32:3a:
26:f1:2d:98:d7:80:ea:c3:89:81:4c:bb:e0:a9:85:
c1:3b:bd:dd:9d:d1:47:64:a4:30:44:ef:e4:b6:59:
3f:f7:b0:4d:f5:28:14:21:bb:70:30:90:28:13:a1:
c4:b4:56:58:ad:b8:bc:28:ae:de:9c:15:b7:a0:57:
7a:69:18:a2:91:51:dc:15:bb:33:5b:48:ff:c8:3e:
5c:9f:a8:08:a9:00:1e:27:7b:6f:c4:5c:9b:7f:eb:
1e:da:a9:a0:f9:6d:c7:ad:0e:d4:4c:2b:92:09:b1:
40:82:19:0c:32:68:2a:87:ce:a3:c3:7a:a0:bc:f2:
e3:98:60:dd:5a:b4:22:09:1e:5d:2c:eb:f7:88:34:
71:e8:3e:fc:6d:6c:7c:11:4a:fc:b9:64:ea:cf:52:
45:9e:6d:5f:36:f8:c1:23:69:d4:ef:cd:f1:a9:8c:
74:2d:9a:49:07:9c:73:ee:d5:4b:1f:8e:14:7c:90:
16:dc:21:1f:14:e5:5e:4c:dc:73:1d:f3:76:a8:38:
e8:43:55:dc:25:69:1e:de:ba:f1:6a:a8:b2:6e:ed:
3e:d5:14:82:69:40:75:31:62:81:3a:31:3c:3b:f8:
5c:b3:bb:58:cc:8e:c5:16:34:a6:0c:ca:13:ac:cc:
8b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:77:22:E6:EF:D0:75:DA:7B:C1:5B:E4:B6:56:37:6D:DF:A1:FF:53
X509v3 Authority Key Identifier:
keyid:F9:F7:A2:88:5C:F3:01:2F:A1:39:0D:3B:32:59:FC:78:AE:F7:AD:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538313a6634383a3a2f34352d3435203d3e20323134363433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:f48::/45
Signature Algorithm: sha256WithRSAEncryption
97:ae:00:52:22:fa:cf:85:53:46:6d:87:72:60:41:e2:dc:a7:
17:8d:5d:bf:23:e9:c9:69:cc:de:60:2d:89:98:7e:ed:13:b4:
6c:30:62:c2:37:ce:a9:e8:9f:8c:c9:e9:67:09:6c:c4:03:74:
5f:97:08:de:19:ee:85:93:f0:ad:ee:0c:fd:20:0c:8b:af:0d:
4d:75:90:aa:c7:66:5b:13:dc:86:90:9e:3a:11:24:2b:6e:25:
df:64:5b:34:bc:fe:70:e2:dd:c7:21:de:fc:e8:3f:e5:6a:ac:
ff:5b:f7:ae:90:c6:c4:71:73:72:db:bd:a7:30:ad:d4:38:ec:
6a:36:36:be:5d:7e:c4:d0:b4:16:a4:91:5f:4e:f6:04:bf:c6:
8e:f2:7c:21:23:01:33:85:d9:ad:0c:a2:dd:c2:ac:b3:e0:0b:
24:12:43:5b:28:4b:38:a8:2d:83:9d:a1:eb:b6:b1:6c:17:aa:
0d:82:40:4f:22:3e:56:91:c5:73:1e:74:3a:0a:cb:e9:77:cb:
30:d2:8b:02:37:32:c5:00:bd:00:6f:a2:04:3e:7d:13:56:08:
a7:96:c7:3e:18:f8:59:db:66:84:f3:d1:f6:ae:8d:93:b0:51:
03:68:80:5f:1a:36:a1:b3:34:c4:ba:92:4c:75:4c:c1:c4:97:
1f:77:d6:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 27 10:23:53 2024 by rpki-client on console-fra.rpki-client.org