Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ecb30322-94f7-4e61-8691-5c1b611b0a95/1/326130613a363034343a393034303a3a2f34342d3434203d3e20323135343433.roa
File: 326130613a363034343a393034303a3a2f34342d3434203d3e20323135343433.roa (raw, json)
Hash identifier: rPND7tpo4s+6EgOD+JGwDP7hLnU6yGM4NcO2Imnx5jQ=
Subject key identifier: 95:97:63:9B:2B:12:32:11:E8:09:AF:4D:5E:BB:76:13:72:B9:CD:CC
Certificate issuer: /CN=488BD86AFDB1BE238E1E3EADE85A0520B2AF66DF
Certificate serial: 0FE96D13B2CFB811FDFD845FA58062BFCDE6C99A
Authority key identifier: 48:8B:D8:6A:FD:B1:BE:23:8E:1E:3E:AD:E8:5A:05:20:B2:AF:66:DF
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/488BD86AFDB1BE238E1E3EADE85A0520B2AF66DF.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ecb30322-94f7-4e61-8691-5c1b611b0a95/1/326130613a363034343a393034303a3a2f34342d3434203d3e20323135343433.roa
Signing time: Thu 22 Feb 2024 14:08:41 +0000
ROA not before: Thu 22 Feb 2024 14:03:41 +0000
ROA not after: Thu 20 Feb 2025 14:08:41 +0000
asID: 215443
IP address blocks: 2a0a:6044:9040::/44 maxlen: 44
Validation: Failed, certificate revoked on Wed 07 Aug 2024 18:19:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:e9:6d:13:b2:cf:b8:11:fd:fd:84:5f:a5:80:62:bf:cd:e6:c9:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=488BD86AFDB1BE238E1E3EADE85A0520B2AF66DF
Validity
Not Before: Feb 22 14:03:41 2024 GMT
Not After : Feb 20 14:08:41 2025 GMT
Subject: CN=9597639B2B123211E809AF4D5EBB761372B9CDCC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9b:eb:7d:a3:88:17:d4:ce:b4:80:53:74:b0:
f5:1c:d5:6d:42:6a:68:8c:7d:40:49:2d:ef:01:46:
ec:76:7b:68:b3:39:05:41:c1:65:1a:90:88:5d:93:
21:a2:b1:06:8b:30:fd:93:78:0c:ad:6c:92:ab:a0:
69:1e:d9:8c:11:b8:95:9a:fb:9d:44:0b:4f:ce:cf:
b1:e5:6c:cb:f1:a9:d5:33:0b:ea:a5:16:2d:a8:b6:
0b:c2:ca:6a:3e:68:ac:e7:9e:d1:b0:4a:b8:5d:6e:
85:09:3c:4c:a7:97:86:71:40:54:d2:16:78:4c:cc:
a1:bb:b8:db:3c:17:e4:76:98:7c:f8:56:6c:c4:21:
5c:db:d8:53:be:6a:c3:45:86:f9:2b:84:1f:ef:9b:
97:ba:90:7b:1b:a2:54:37:57:70:21:0f:e2:35:80:
16:45:fc:95:f1:18:45:68:09:de:86:b1:48:26:2b:
d2:9a:22:79:41:d0:bc:6a:22:78:98:86:ab:c8:f2:
33:0e:96:aa:30:0b:e2:85:b7:2c:6c:33:da:f4:53:
67:06:87:5c:dd:44:52:4c:c9:ba:28:7f:36:fa:a1:
7d:59:a2:f0:e5:c0:87:a2:27:ec:88:98:1e:c4:78:
94:65:b5:10:c6:3e:8e:73:be:57:2c:63:9d:ba:41:
cd:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:97:63:9B:2B:12:32:11:E8:09:AF:4D:5E:BB:76:13:72:B9:CD:CC
X509v3 Authority Key Identifier:
keyid:48:8B:D8:6A:FD:B1:BE:23:8E:1E:3E:AD:E8:5A:05:20:B2:AF:66:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ecb30322-94f7-4e61-8691-5c1b611b0a95/1/488BD86AFDB1BE238E1E3EADE85A0520B2AF66DF.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/488BD86AFDB1BE238E1E3EADE85A0520B2AF66DF.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ecb30322-94f7-4e61-8691-5c1b611b0a95/1/326130613a363034343a393034303a3a2f34342d3434203d3e20323135343433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:9040::/44
Signature Algorithm: sha256WithRSAEncryption
51:07:d6:7d:6c:3b:d9:a9:26:84:50:03:7f:a3:09:22:22:35:
71:6b:3c:f1:8d:8a:7f:e8:cf:47:0b:eb:a1:36:01:73:06:82:
35:59:8b:2d:4d:4d:e4:25:ac:9e:5d:86:09:8e:59:4c:01:07:
6d:b5:da:6a:09:9c:55:6c:54:5d:3e:65:c6:01:1e:7e:48:20:
b5:0d:43:5d:63:51:58:e4:2a:12:b7:52:2f:d6:67:d2:ae:dd:
32:d8:7b:6e:da:30:14:4b:d1:5b:5a:28:e4:8a:90:99:07:a0:
86:b6:38:f3:41:b2:1a:b7:3a:90:ac:ec:84:b1:58:6e:34:aa:
0c:b1:5a:81:74:f4:c6:04:f1:e1:32:55:9d:a4:f4:c9:10:5c:
86:26:d5:1d:bb:4c:d7:2f:df:78:20:13:20:fe:66:07:e7:f6:
c9:4c:1a:dd:33:0e:8f:4b:56:a0:85:5d:79:9b:b8:87:32:90:
ce:13:fa:31:f2:bd:52:22:6c:a6:d4:fe:17:83:8f:36:99:e9:
54:c3:51:6f:0d:33:27:c4:38:ae:ae:c4:ba:78:33:12:f4:c8:
c7:46:09:c7:82:98:f1:da:8b:a3:13:38:a7:33:e8:5b:19:54:
0c:2c:d0:0b:fb:4b:c7:d9:1e:cb:83:92:33:1f:84:d7:f0:ee:
38:f4:ef:d7
-----BEGIN CERTIFICATE-----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Generated at Wed Aug 7 22:21:34 2024 by rpki-client on console-ams.rpki-client.org