Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ed998082-a17e-46c1-a5a8-7d197c958639/0/326131343a3763303a3a2f32392d3239203d3e203531333936.roa
File: 326131343a3763303a3a2f32392d3239203d3e203531333936.roa (raw, json)
Hash identifier: uMch34s8VaWSTrPgYVBFSsz5WSjyAT4sVfyZd6Kz6jY=
Subject key identifier: 91:42:BD:D9:D2:D3:AC:9D:78:F3:DD:CC:C8:88:8E:4D:43:1E:97:81
Certificate issuer: /CN=74442e33a8f61580b6b4dfc4828d95e07891f4bc
Certificate serial: 250A4562FA73BB8566284B5BB1650D8EDF4BC353
Authority key identifier: 74:44:2E:33:A8:F6:15:80:B6:B4:DF:C4:82:8D:95:E0:78:91:F4:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dEQuM6j2FYC2tN_Ego2V4HiR9Lw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ed998082-a17e-46c1-a5a8-7d197c958639/0/326131343a3763303a3a2f32392d3239203d3e203531333936.roa
Signing time: Wed 21 Feb 2024 18:47:06 +0000
ROA not before: Wed 21 Feb 2024 18:42:06 +0000
ROA not after: Wed 19 Feb 2025 18:47:06 +0000
asID: 51396
IP address blocks: 2a14:7c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 22 Feb 2024 17:18:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:0a:45:62:fa:73:bb:85:66:28:4b:5b:b1:65:0d:8e:df:4b:c3:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74442e33a8f61580b6b4dfc4828d95e07891f4bc
Validity
Not Before: Feb 21 18:42:06 2024 GMT
Not After : Feb 19 18:47:06 2025 GMT
Subject: CN=9142BDD9D2D3AC9D78F3DDCCC8888E4D431E9781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d8:b3:ba:45:d5:b4:23:b2:86:bf:91:96:23:
f0:cb:72:b6:2e:92:4f:60:82:04:e7:56:0b:1b:c7:
a8:f6:50:e0:7e:22:1c:eb:6d:de:e0:76:d8:59:d1:
ab:a5:37:8b:30:89:e0:7d:9e:37:1b:32:35:3e:66:
c9:03:50:6f:23:e1:a5:0f:cf:a2:78:44:01:84:67:
78:89:f4:42:47:a2:e1:9d:d1:b9:cd:1c:e7:82:db:
d6:fc:57:64:fc:3f:a9:f0:8d:a7:a4:bd:25:5c:5a:
f3:c8:68:46:9c:d1:f3:59:fb:70:ed:88:46:06:3b:
98:a2:74:9f:7b:ef:82:ad:10:f1:f4:e6:58:6c:43:
e7:8e:52:4c:33:3c:68:d8:65:fa:45:1a:a6:20:b6:
30:77:ca:a5:c4:10:79:96:e2:3d:11:51:96:69:e1:
59:0e:e7:d7:f9:43:18:49:93:71:27:25:f5:20:5f:
6d:bb:dc:f6:b5:fb:93:ed:99:73:de:03:7f:40:db:
e5:a2:b5:f6:da:a2:e3:cd:58:19:8f:45:13:08:54:
75:e3:cd:e1:05:29:fd:55:66:9c:b9:b1:7c:31:9e:
86:72:78:d5:96:9a:a6:fd:f4:16:db:29:8c:cb:8a:
80:f1:c4:8c:e3:9a:e9:50:5c:d8:87:dd:8a:15:e0:
f9:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:42:BD:D9:D2:D3:AC:9D:78:F3:DD:CC:C8:88:8E:4D:43:1E:97:81
X509v3 Authority Key Identifier:
keyid:74:44:2E:33:A8:F6:15:80:B6:B4:DF:C4:82:8D:95:E0:78:91:F4:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ed998082-a17e-46c1-a5a8-7d197c958639/0/74442E33A8F61580B6B4DFC4828D95E07891F4BC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dEQuM6j2FYC2tN_Ego2V4HiR9Lw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ed998082-a17e-46c1-a5a8-7d197c958639/0/326131343a3763303a3a2f32392d3239203d3e203531333936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7c0::/29
Signature Algorithm: sha256WithRSAEncryption
02:81:5f:c2:64:ed:ea:c8:89:37:72:60:0c:5e:4e:5f:93:b6:
11:34:ab:07:82:47:36:8b:b4:3e:a5:dc:3c:1e:61:14:93:9f:
f8:c2:b0:00:34:5c:f9:93:2f:1a:47:3a:5f:ae:7e:c6:b5:87:
b5:d4:53:47:3b:14:1d:d5:fd:f3:04:a4:1b:b0:b0:4d:3b:15:
15:7f:ec:9a:f5:b6:bd:32:30:a2:ad:be:d5:f9:c9:ee:5c:14:
23:a0:6a:9c:7d:28:10:9c:9d:a1:27:1f:51:5e:72:3d:28:57:
33:40:c2:a6:0b:24:30:91:fa:5a:b5:7c:16:e2:b5:cc:e6:50:
4b:2c:29:30:a5:0c:76:85:ba:31:97:28:6d:88:fe:40:a6:b5:
bb:7f:47:4e:06:ed:4f:04:24:30:73:ee:51:f5:23:99:94:ca:
cd:f8:14:6c:e2:9e:fe:3b:af:99:61:e9:32:d0:6d:4a:a9:8b:
f6:4c:5b:71:8a:3a:6f:c6:18:6c:75:25:fb:09:fe:13:f8:03:
a5:c2:c8:3c:f5:bb:81:4e:2f:fe:03:cc:af:bd:87:e3:65:13:
a4:97:4c:e8:86:e8:53:6a:e0:9e:b6:24:10:5e:0a:1c:de:8b:
42:cc:e8:76:54:83:a3:11:ac:c7:93:df:8d:40:34:7d:49:57:
d7:fe:4a:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 22 20:07:07 2024 by rpki-client on console-ams.rpki-client.org