Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538313a6634663a3a2f34382d3438203d3e20323134363433.roa
File: 326131343a373538313a6634663a3a2f34382d3438203d3e20323134363433.roa (raw, json)
Hash identifier: oBgi68SYCQHmyLHbD/y7TXjav0O49mHae9JoSEvbGVQ=
Subject key identifier: 36:60:46:79:CB:FD:45:E5:1B:17:51:6A:D5:9F:54:70:8D:B6:77:EA
Certificate issuer: /CN=F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A
Certificate serial: 54F3479859DA772AF7996272CD4D421C341521A6
Authority key identifier: F9:F7:A2:88:5C:F3:01:2F:A1:39:0D:3B:32:59:FC:78:AE:F7:AD:1A
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538313a6634663a3a2f34382d3438203d3e20323134363433.roa
Signing time: Tue 25 Jun 2024 09:39:40 +0000
ROA not before: Tue 25 Jun 2024 09:34:40 +0000
ROA not after: Tue 24 Jun 2025 09:39:40 +0000
asID: 214643
IP address blocks: 2a14:7581:f4f::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 27 Jun 2024 06:20:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:f3:47:98:59:da:77:2a:f7:99:62:72:cd:4d:42:1c:34:15:21:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A
Validity
Not Before: Jun 25 09:34:40 2024 GMT
Not After : Jun 24 09:39:40 2025 GMT
Subject: CN=36604679CBFD45E51B17516AD59F54708DB677EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b0:8e:b1:8b:84:72:9d:63:8f:e5:69:4a:f7:
c0:09:a5:f1:9c:8f:73:0c:12:25:fd:69:8b:61:c0:
3d:cd:8d:ab:ff:6d:d0:e0:06:32:14:7b:ac:09:27:
7c:85:b1:d2:3a:f0:7f:f8:b6:04:82:4b:32:ac:dc:
b3:8f:48:2d:13:2e:37:b8:8d:1f:dd:dc:f5:a7:ca:
e1:53:fb:3a:ff:e2:79:cc:92:0f:33:db:4f:5f:92:
07:8c:8c:7c:01:ac:af:52:3d:2a:0e:c1:a0:2d:c2:
d1:0a:98:94:fa:29:fa:86:51:5b:9c:d9:08:e6:93:
25:a4:1d:24:5b:d1:67:89:9c:d1:15:28:4c:29:22:
cf:ae:38:69:a8:66:a4:3f:4f:95:91:95:cb:78:d6:
8c:de:0d:ef:5f:e6:f3:f8:88:5e:32:16:73:fd:a8:
1d:fc:76:d9:f0:ca:e0:15:a7:39:0e:44:a9:d5:f1:
bb:7a:fe:35:3b:88:a7:4e:b3:eb:fc:d1:bb:f8:a7:
a8:fd:8a:59:03:e8:a6:8c:93:ee:ce:c2:59:6d:9d:
1c:fe:80:1f:4b:56:b2:bb:c6:0b:80:9e:32:6d:8e:
66:e9:28:c8:9a:85:af:c4:35:6d:7d:5f:2a:e6:c7:
8e:f3:29:85:99:8e:63:aa:9f:07:1b:5b:99:cc:d2:
24:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:60:46:79:CB:FD:45:E5:1B:17:51:6A:D5:9F:54:70:8D:B6:77:EA
X509v3 Authority Key Identifier:
keyid:F9:F7:A2:88:5C:F3:01:2F:A1:39:0D:3B:32:59:FC:78:AE:F7:AD:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538313a6634663a3a2f34382d3438203d3e20323134363433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:f4f::/48
Signature Algorithm: sha256WithRSAEncryption
90:3c:3e:53:18:d0:99:07:41:12:c0:9b:c2:fe:b9:72:67:a7:
fe:30:a9:67:05:9c:66:96:4b:50:2a:7e:93:4d:be:78:34:b0:
9e:b2:81:b0:c1:60:5f:d8:05:98:13:f3:ea:51:34:eb:fb:d1:
a8:72:df:3a:7e:3f:68:bb:72:6e:81:b4:42:a8:45:34:02:a8:
cd:12:37:18:39:71:29:9b:ed:1e:b4:60:07:2f:9d:1b:7b:13:
b9:79:6a:59:b2:f2:af:75:cf:be:31:b6:45:54:98:9f:b4:f6:
35:12:d5:b9:9a:51:c4:e9:1b:6a:59:46:aa:c4:b5:45:3e:48:
cc:78:3c:2f:c5:e3:ba:06:9e:7a:5f:33:ae:d7:de:e5:81:43:
6f:53:98:7a:36:64:af:73:c8:83:81:58:45:38:63:d6:eb:3e:
df:6e:8a:fb:40:35:01:a1:c3:da:23:8a:75:19:c7:92:93:30:
1a:88:c2:26:23:cb:23:cb:5e:d2:6f:46:87:15:8e:11:48:08:
e1:ba:66:15:84:c7:f5:0f:cc:d4:fe:69:36:90:e8:8f:8e:15:
38:7b:3c:bb:6a:34:fe:79:5a:73:90:ad:64:99:7d:8f:f9:ac:
0c:66:d9:85:75:de:a1:9a:e2:b0:d1:ad:73:90:98:94:19:98:
59:6c:ae:d3
-----BEGIN CERTIFICATE-----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Generated at Thu Jun 27 12:26:59 2024 by rpki-client on console-ams.rpki-client.org