Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563303a3a2f34382d3438203d3e20323037383431.roa
File: 326130663a383563303a3a2f34382d3438203d3e20323037383431.roa (raw, json)
Hash identifier: ffICEOR7nkRJHBp6OFX7WBnofRFpfsVCHGq3T3eqF30=
Subject key identifier: 24:A1:A2:8B:BD:9B:E7:2E:99:A7:A6:7A:7B:22:EC:7B:F8:21:71:4A
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 5091FAC522197A064D5753365E1980DC7ECF4CEE
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563303a3a2f34382d3438203d3e20323037383431.roa
Signing time: Tue 10 Oct 2023 15:17:21 +0000
ROA not before: Tue 10 Oct 2023 15:12:21 +0000
ROA not after: Tue 08 Oct 2024 15:17:21 +0000
asID: 207841
IP address blocks: 2a0f:85c0::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:91:fa:c5:22:19:7a:06:4d:57:53:36:5e:19:80:dc:7e:cf:4c:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Oct 10 15:12:21 2023 GMT
Not After : Oct 8 15:17:21 2024 GMT
Subject: CN=24A1A28BBD9BE72E99A7A67A7B22EC7BF821714A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:09:e9:eb:98:67:f8:64:3f:6e:8b:b6:c7:f2:
a9:52:34:93:0e:eb:d9:ea:c2:60:11:3e:f4:f7:dd:
66:85:52:e4:de:50:f6:cb:40:df:e2:42:bd:3a:c7:
07:43:59:90:da:34:3e:fe:40:aa:9f:89:9d:76:75:
f7:13:e2:76:4a:80:c8:50:b8:4c:c7:48:c0:cf:16:
81:c5:0d:c4:e5:7d:a4:84:db:e4:1d:6f:f3:51:94:
16:d0:36:6f:a4:12:79:61:c4:02:50:70:37:ed:bf:
32:f4:ef:78:1c:6b:89:b8:ba:84:4c:92:47:eb:ae:
99:9d:e9:26:6f:34:77:f1:9d:27:13:92:af:dc:91:
56:1a:c7:25:e8:dc:c5:ff:6a:c6:84:00:ae:42:06:
07:31:fd:ad:25:73:6e:de:6d:60:a2:e8:5b:02:a2:
7f:04:5e:ec:dc:79:38:44:8d:b1:3d:9e:2e:c2:7c:
86:5e:84:41:12:b8:61:71:65:6d:a2:bb:fb:4a:da:
74:3e:5e:13:80:25:6b:eb:8f:90:fc:74:3b:b1:79:
f0:a8:1b:b1:4f:40:4e:b7:e7:2c:6a:78:89:61:7e:
a3:44:9a:af:b4:de:93:92:f4:f4:21:2c:32:2c:3d:
14:b7:90:e1:56:02:06:48:c6:af:d8:09:ea:bb:78:
82:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:A1:A2:8B:BD:9B:E7:2E:99:A7:A6:7A:7B:22:EC:7B:F8:21:71:4A
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563303a3a2f34382d3438203d3e20323037383431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c0::/48
Signature Algorithm: sha256WithRSAEncryption
40:10:7a:2b:fb:26:4f:8e:12:6e:1e:3a:ed:0a:99:6c:d5:91:
da:9c:af:1a:00:10:eb:4a:b7:6c:0a:b2:df:6f:75:1b:22:1d:
1a:29:77:bb:cd:1f:2d:15:8a:45:d9:ba:2b:41:d5:bc:eb:05:
34:88:0c:a4:0e:65:69:1c:b0:48:34:cd:38:3d:c7:ed:ab:37:
1c:cd:42:b1:44:04:2a:95:80:ba:eb:25:69:a4:a8:f6:1e:ad:
4f:85:6c:12:84:38:9f:4f:f5:cc:73:01:60:ef:a0:87:dc:38:
d4:9a:c8:27:34:d5:23:2f:10:11:8a:1c:a9:37:35:15:e5:14:
c2:d5:9a:ad:78:9a:e0:38:85:27:31:ae:82:3a:2d:4a:83:cb:
cd:13:02:69:ce:6f:7b:76:47:b2:1c:fa:6b:78:a6:a2:9a:90:
4c:53:5b:d5:91:c7:61:61:d5:7c:f5:56:bb:b8:60:be:2b:79:
45:6b:35:a1:6d:27:74:24:f1:c3:d9:84:aa:df:8f:29:1e:19:
d6:03:ed:24:25:57:68:aa:4f:ef:bd:90:d3:ad:f4:27:da:55:
2f:a2:66:b9:24:b0:8a:b5:0a:46:48:d6:12:c8:9c:6e:cd:e5:
5e:f6:56:e2:da:23:fe:90:86:57:ce:3f:66:ba:52:c9:64:92:
88:d8:f2:37
-----BEGIN CERTIFICATE-----
MIIFNjCCBB6gAwIBAgIUUJH6xSIZegZNV1M2XhmA3H7PTO4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWFlNDQzNzAyOTY1OTUzOWY1NGY5MDBiMzVlNDNiZTA2
YTk0YjM3YjAeFw0yMzEwMTAxNTEyMjFaFw0yNDEwMDgxNTE3MjFaMDMxMTAvBgNV
BAMTKDI0QTFBMjhCQkQ5QkU3MkU5OUE3QTY3QTdCMjJFQzdCRjgyMTcxNEEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSCenrmGf4ZD9ui7bH8qlSNJMO
69nqwmARPvT33WaFUuTeUPbLQN/iQr06xwdDWZDaND7+QKqfiZ12dfcT4nZKgMhQ
uEzHSMDPFoHFDcTlfaSE2+Qdb/NRlBbQNm+kEnlhxAJQcDftvzL073gca4m4uoRM
kkfrrpmd6SZvNHfxnScTkq/ckVYaxyXo3MX/asaEAK5CBgcx/a0lc27ebWCi6FsC
on8EXuzceThEjbE9ni7CfIZehEESuGFxZW2iu/tK2nQ+XhOAJWvrj5D8dDuxefCo
G7FPQE635yxqeIlhfqNEmq+03pOS9PQhLDIsPRS3kOFWAgZIxq/YCeq7eIJ/AgMB
AAGjggJAMIICPDAdBgNVHQ4EFgQUJKGii72b5y6Zp6Z6eyLse/ghcUowHwYDVR0j
BBgwFoAUWuRDcClllTn1T5ALNeQ74GqUs3swDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmMyMGFkZDMtYTg4ZS00YmIyLWE4NGQtNTVkYTIxMjhm
MTk2LzAvNUFFNDQzNzAyOTY1OTUzOUY1NEY5MDBCMzVFNDNCRTA2QTk0QjM3Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1d1UkRjQ2xsbFRuMVQ1QUxOZVE3NEdx
VXMzcy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmMyMGFkZDMt
YTg4ZS00YmIyLWE4NGQtNTVkYTIxMjhmMTk2LzAvMzI2MTMwNjYzYTM4MzU2MzMw
M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMDM3MzgzNDMxLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcA
Kg+FwAAAMA0GCSqGSIb3DQEBCwUAA4IBAQBAEHor+yZPjhJuHjrtCpls1ZHanK8a
ABDrSrdsCrLfb3UbIh0aKXe7zR8tFYpF2borQdW86wU0iAykDmVpHLBINM04Pcft
qzcczUKxRAQqlYC66yVppKj2Hq1PhWwShDifT/XMcwFg76CH3DjUmsgnNNUjLxAR
ihypNzUV5RTC1ZqteJrgOIUnMa6COi1Kg8vNEwJpzm97dkeyHPpreKaimpBMU1vV
kcdhYdV89Va7uGC+K3lFazWhbSd0JPHD2YSq348pHhnWA+0kJVdoqk/vvZDTrfQn
2lUvoma5JLCKtQpGSNYSyJxuzeVe9lbi2iP+kIZXzj9mulLJZJKI2PI3
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:10 2024 by rpki-client on console-ams.rpki-client.org