Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/326131333a393634343a32303a3a2f34382d3438203d3e20313233313233.roa
File: 326131333a393634343a32303a3a2f34382d3438203d3e20313233313233.roa (raw, json)
Hash identifier: Q7AC3560+ygvHcpQtAA0WX28+C2b61ezY6gnkK1iUpA=
Subject key identifier: D8:79:6C:BA:40:7B:65:6E:B8:B5:0A:FE:1C:27:09:71:E9:06:AD:79
Certificate issuer: /CN=f1d0572fe72991bd32854bac716676ebdad22ace
Certificate serial: 720EAA78B92597DED81998F57993C3701159A5E6
Authority key identifier: F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/326131333a393634343a32303a3a2f34382d3438203d3e20313233313233.roa
Signing time: Fri 09 Aug 2024 20:45:59 +0000
ROA not before: Fri 09 Aug 2024 20:40:59 +0000
ROA not after: Fri 08 Aug 2025 20:45:59 +0000
asID: 123123
IP address blocks: 2a13:9644:20::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 09 Aug 2024 21:26:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:0e:aa:78:b9:25:97:de:d8:19:98:f5:79:93:c3:70:11:59:a5:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d0572fe72991bd32854bac716676ebdad22ace
Validity
Not Before: Aug 9 20:40:59 2024 GMT
Not After : Aug 8 20:45:59 2025 GMT
Subject: CN=D8796CBA407B656EB8B50AFE1C270971E906AD79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:72:fc:b1:ea:26:79:60:2d:d8:c6:72:e8:2f:
d2:7c:da:82:92:1f:d0:d4:28:a7:53:45:6d:d1:64:
42:e1:51:85:26:77:55:0a:44:93:8a:0f:c7:01:a6:
b2:57:dc:03:a4:5a:27:93:eb:52:92:04:ba:dd:1c:
7a:16:64:67:b4:b7:a5:c9:56:f1:80:0c:52:69:16:
f1:30:eb:42:53:38:81:83:0c:39:6b:7e:4b:f6:3a:
b6:81:71:9e:43:57:71:a0:bc:38:96:68:fb:0f:67:
4d:9f:be:84:2c:1d:21:04:45:af:65:e1:f1:b4:dc:
ae:56:62:2d:be:63:89:85:35:06:b5:6c:fd:da:78:
af:b6:b8:33:74:94:fb:69:39:82:5a:31:4e:63:8c:
70:c0:60:3c:3e:48:30:e4:43:63:1f:52:51:e4:02:
64:ea:dd:a8:5b:7f:71:9c:de:db:0e:ad:10:27:3a:
19:7f:5f:1e:66:55:55:6b:87:6e:82:5e:67:2a:b0:
46:d8:e4:2a:dd:2d:3b:96:76:dc:a7:8f:f3:11:aa:
25:9d:df:21:97:90:e4:16:0f:a0:66:ea:72:87:ce:
0b:41:99:16:66:08:b9:8b:82:e8:40:60:4a:c3:39:
3d:c6:8c:a9:a3:eb:00:75:4b:d7:54:46:db:97:97:
99:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:79:6C:BA:40:7B:65:6E:B8:B5:0A:FE:1C:27:09:71:E9:06:AD:79
X509v3 Authority Key Identifier:
keyid:F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/326131333a393634343a32303a3a2f34382d3438203d3e20313233313233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9644:20::/48
Signature Algorithm: sha256WithRSAEncryption
21:5e:8c:28:c0:e6:f4:d9:68:b0:6d:9d:17:0e:5c:10:8d:a2:
62:42:61:75:82:79:98:7e:b7:a9:73:65:2c:55:c2:2b:41:95:
3d:f4:61:96:00:16:52:a1:f2:16:18:3e:04:40:57:44:50:af:
6f:e2:65:98:c7:a0:be:37:18:5d:5e:b9:17:0b:91:d7:c7:ba:
3f:18:86:2c:c6:0e:2f:4e:b8:0a:12:4b:17:aa:ae:fb:fd:ce:
3f:a2:e9:6a:47:dc:eb:c6:e5:85:b2:7f:40:6b:00:e9:b2:5e:
cd:aa:18:7f:b1:57:bb:d6:e7:dd:5d:31:b5:7c:88:cb:75:df:
b1:50:d1:0a:c8:08:ac:b7:d0:44:62:b9:a5:70:e0:ee:f0:e9:
58:dc:c6:77:c5:8c:e0:2a:c5:25:53:99:e9:fc:3d:6d:83:b2:
e8:c8:1b:60:c1:a7:d2:1c:ba:b6:06:3b:66:d6:c0:1d:0c:0f:
bb:a4:8a:a8:07:a4:0d:9f:75:52:cc:8a:21:30:45:f3:f7:44:
5e:3c:36:d4:f5:cc:89:58:d0:ee:51:2a:32:d5:d4:8f:86:02:
ea:ac:cd:7a:86:b6:8e:67:06:04:88:6d:cc:1d:cb:02:e6:dc:
68:26:c0:31:eb:c9:7a:0b:10:2d:12:5a:9d:17:c8:c5:8d:61:
ba:93:8f:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:28:07 2025 by rpki-client