Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538313a6666643a3a2f34382d3438203d3e20323134363433.roa
File: 326131343a373538313a6666643a3a2f34382d3438203d3e20323134363433.roa (raw, json)
Hash identifier: DonXVIIRwXFtMDsb9sdBklqAYfI9iT73LuaaHDDwZzQ=
Subject key identifier: 33:5C:0F:D8:93:04:D6:67:30:00:27:75:B2:05:C0:CA:70:1D:3F:6E
Certificate issuer: /CN=F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A
Certificate serial: B2F6BB759C86F47EA09C343C1076039755A4F8
Authority key identifier: F9:F7:A2:88:5C:F3:01:2F:A1:39:0D:3B:32:59:FC:78:AE:F7:AD:1A
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538313a6666643a3a2f34382d3438203d3e20323134363433.roa
Signing time: Tue 25 Jun 2024 09:47:27 +0000
ROA not before: Tue 25 Jun 2024 09:42:27 +0000
ROA not after: Tue 24 Jun 2025 09:47:27 +0000
asID: 214643
IP address blocks: 2a14:7581:ffd::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 06 Oct 2024 18:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
b2:f6:bb:75:9c:86:f4:7e:a0:9c:34:3c:10:76:03:97:55:a4:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A
Validity
Not Before: Jun 25 09:42:27 2024 GMT
Not After : Jun 24 09:47:27 2025 GMT
Subject: CN=335C0FD89304D66730002775B205C0CA701D3F6E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:31:6b:79:16:32:27:d5:7d:7d:30:20:7a:f7:
5c:05:bd:cb:e4:b5:6f:e2:3e:2c:13:78:b7:0e:5a:
ca:46:4d:3c:85:0c:dd:83:31:6f:1d:e0:c1:4c:92:
19:72:7b:96:f1:9f:15:dc:0c:3b:6c:73:66:63:7c:
65:83:c5:99:64:d6:1e:42:13:af:9a:e0:07:d4:a7:
ba:57:6b:e3:97:33:86:b4:0e:d2:ee:76:38:2a:d1:
9d:16:bb:c6:fa:ea:3e:40:d6:95:b3:3e:43:0e:10:
d0:54:7d:11:2c:05:22:9b:bf:d7:52:c1:88:99:cd:
14:45:c5:56:7a:6a:8d:da:f6:f5:9a:cb:29:4d:4f:
15:24:32:5c:f0:3c:72:5c:74:f4:19:28:97:ab:cc:
f2:be:81:5f:ee:5d:f8:1c:64:79:c2:27:d8:91:75:
86:58:38:6e:16:92:0f:de:ec:ef:36:7f:cb:7f:34:
d8:65:ae:93:be:3e:23:24:39:ba:7c:bc:0b:eb:c6:
32:42:6f:7a:2d:de:d3:fe:4f:6a:89:54:ba:c5:d5:
ca:cc:dc:1e:6a:1e:e5:af:0b:20:67:e1:14:ac:0f:
92:f0:03:29:f6:5a:d3:51:9f:09:81:ed:ee:15:06:
88:cd:ca:02:86:0b:75:fd:86:43:88:ae:2d:94:c4:
ab:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:5C:0F:D8:93:04:D6:67:30:00:27:75:B2:05:C0:CA:70:1D:3F:6E
X509v3 Authority Key Identifier:
keyid:F9:F7:A2:88:5C:F3:01:2F:A1:39:0D:3B:32:59:FC:78:AE:F7:AD:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538313a6666643a3a2f34382d3438203d3e20323134363433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:ffd::/48
Signature Algorithm: sha256WithRSAEncryption
16:d7:18:11:89:de:7d:81:12:f0:c8:84:ad:04:20:4f:7a:77:
74:d8:c1:9d:84:8c:24:41:d3:a6:25:a3:8f:15:d5:62:04:b2:
3c:68:45:50:a5:77:ff:1a:8d:03:b6:96:bd:79:c9:c3:17:87:
c0:b6:5a:b6:3f:df:dd:fc:38:0c:ea:4a:f2:ef:00:5a:b7:99:
3a:bc:be:a8:e3:c3:f2:67:a8:1c:29:f0:f5:25:14:da:88:d9:
b4:94:5d:52:ab:e4:3a:4a:13:11:bb:d5:bd:9d:22:98:59:32:
34:69:a7:ee:49:84:bb:e1:05:86:23:ad:a1:07:27:c3:c5:24:
2f:dc:a1:a4:e4:96:9c:3f:66:84:5c:d3:5a:4a:0c:a7:b8:e5:
ef:f7:85:ec:a4:86:77:df:ee:7e:0e:3f:b1:55:c4:54:96:d9:
19:32:95:6a:24:20:63:06:b5:cb:06:51:5e:0c:77:37:98:cb:
27:fc:8a:38:42:76:a0:2f:3f:c5:f8:0f:2d:c8:08:ce:d8:db:
b2:5e:9f:b3:47:3a:07:4b:79:87:98:ee:d6:06:6a:f9:ae:47:
62:f3:3d:b7:5a:56:91:8e:7e:56:27:2c:2b:05:ce:18:bf:0b:
08:dc:ff:3e:71:cc:ff:15:d1:0e:75:d5:77:3c:d4:95:7f:2f:
41:61:37:ca
-----BEGIN CERTIFICATE-----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Generated at Sun Oct 6 21:05:55 2024 by rpki-client on console-ams.rpki-client.org