Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ed998082-a17e-46c1-a5a8-7d197c958639/0/326131343a3763353a623030623a3a2f34382d3438203d3e20323132313439.roa
File: 326131343a3763353a623030623a3a2f34382d3438203d3e20323132313439.roa (raw, json)
Hash identifier: gi68+SnaWrXm7IELkphzFSTlGOwlc6VGDfpt/1uLsVY=
Subject key identifier: 82:CB:5B:6C:5E:48:0C:16:7C:72:B6:4E:91:30:35:B6:EF:03:91:A9
Certificate issuer: /CN=74442e33a8f61580b6b4dfc4828d95e07891f4bc
Certificate serial: 2958527A402EBF47CD8BABAD488838910B30B781
Authority key identifier: 74:44:2E:33:A8:F6:15:80:B6:B4:DF:C4:82:8D:95:E0:78:91:F4:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dEQuM6j2FYC2tN_Ego2V4HiR9Lw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ed998082-a17e-46c1-a5a8-7d197c958639/0/326131343a3763353a623030623a3a2f34382d3438203d3e20323132313439.roa
Signing time: Wed 21 Feb 2024 15:37:58 +0000
ROA not before: Wed 21 Feb 2024 15:32:58 +0000
ROA not after: Wed 19 Feb 2025 15:37:58 +0000
asID: 212149
IP address blocks: 2a14:7c5:b00b::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 22 Feb 2024 17:41:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:58:52:7a:40:2e:bf:47:cd:8b:ab:ad:48:88:38:91:0b:30:b7:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74442e33a8f61580b6b4dfc4828d95e07891f4bc
Validity
Not Before: Feb 21 15:32:58 2024 GMT
Not After : Feb 19 15:37:58 2025 GMT
Subject: CN=82CB5B6C5E480C167C72B64E913035B6EF0391A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:94:7e:dd:2f:fd:70:ad:60:dd:b0:ea:4d:29:
10:ec:9b:05:eb:0a:4f:b4:99:f7:c5:b4:b2:58:b0:
65:17:d6:f5:75:72:1d:75:3f:a0:64:0c:70:ad:a7:
95:3b:50:ee:2f:50:08:db:a8:7b:66:b9:37:e5:3c:
a0:08:e8:44:69:e1:53:8d:19:a6:ca:f4:2c:a1:e6:
f4:94:ef:c2:c6:49:16:8a:3a:74:d8:83:fb:2f:73:
5b:f2:cc:5a:f7:65:49:7d:cd:e5:44:0c:64:ab:da:
6e:c6:ee:5b:7e:26:26:3a:ac:c1:7a:95:df:1b:f8:
de:48:85:9f:95:96:88:40:7b:0e:46:d8:d3:05:63:
50:27:07:3c:17:77:e2:4d:53:bf:f9:1c:9d:4f:a5:
e2:79:ed:80:40:68:ef:0e:74:a7:96:28:f7:b4:8c:
bb:59:db:ee:66:aa:a3:d1:04:2c:a2:0c:f2:f5:58:
3c:1d:60:93:39:c9:3e:d8:d8:58:65:63:7b:f5:85:
4d:32:02:60:17:a6:2f:53:0d:48:5a:fe:f0:c7:7a:
12:45:50:51:1e:90:aa:8b:71:ba:43:33:84:c0:6c:
d2:25:04:79:a7:17:21:3d:27:70:93:d9:70:fe:92:
d4:1d:50:61:60:61:32:5e:ed:1a:9b:bd:37:a2:5c:
b9:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:CB:5B:6C:5E:48:0C:16:7C:72:B6:4E:91:30:35:B6:EF:03:91:A9
X509v3 Authority Key Identifier:
keyid:74:44:2E:33:A8:F6:15:80:B6:B4:DF:C4:82:8D:95:E0:78:91:F4:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ed998082-a17e-46c1-a5a8-7d197c958639/0/74442E33A8F61580B6B4DFC4828D95E07891F4BC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dEQuM6j2FYC2tN_Ego2V4HiR9Lw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ed998082-a17e-46c1-a5a8-7d197c958639/0/326131343a3763353a623030623a3a2f34382d3438203d3e20323132313439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7c5:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
96:c1:bf:6b:61:49:a6:59:48:80:1a:2c:42:a9:44:58:e0:57:
2c:f9:90:a3:6c:50:1e:7b:33:59:4f:f8:06:0a:95:f7:26:0d:
f7:88:c4:5b:6d:c5:cd:93:51:52:b3:15:64:82:2d:91:f2:f2:
b4:13:ad:f7:96:2b:4c:88:ab:f4:10:15:59:3d:7a:09:8c:29:
a7:9a:e6:a7:d9:33:9a:02:d0:f5:19:68:53:83:ab:c8:47:4a:
3f:63:47:f9:53:fd:19:10:60:7d:ca:91:ef:8a:7a:16:0b:b3:
24:9e:5e:e6:c6:cf:9b:0e:5a:c7:e1:ad:44:ef:17:d9:ad:0b:
15:df:2e:d8:67:ad:7e:6e:ec:88:96:3f:fb:3a:26:ac:0c:7f:
72:7e:36:75:2e:88:5a:87:6a:5b:aa:03:c7:10:16:1e:85:35:
84:82:04:a7:be:3f:28:71:17:1d:51:40:18:34:91:fe:27:e4:
4e:89:35:40:b0:03:11:e9:b2:74:ba:7b:ac:de:4f:ab:5a:e0:
67:c7:80:37:40:37:7e:81:33:53:6a:81:2f:f8:f8:75:d9:9d:
50:b6:61:5d:71:21:28:d9:2a:43:cb:dc:2d:92:33:d0:3a:fb:
11:25:87:5f:a0:59:c7:11:f7:c5:c3:db:6e:43:df:3f:0c:b0:
32:be:6c:70
-----BEGIN CERTIFICATE-----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Generated at Thu Feb 22 20:07:07 2024 by rpki-client on console-ams.rpki-client.org