Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a32373a3a2f34382d3438203d3e20323130353332.roa
File: 326130663a383563313a32373a3a2f34382d3438203d3e20323130353332.roa (raw, json)
Hash identifier: GomDbCZqa9HUXven7ahQswL284tw5qFt39XYewZsykQ=
Subject key identifier: 76:DB:0F:ED:66:8A:65:4C:3F:12:AC:86:DE:AC:21:0A:5F:7A:4D:96
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 3B56954764AE32A8A251C8B9158EA79B00BD1C27
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a32373a3a2f34382d3438203d3e20323130353332.roa
Signing time: Tue 10 Oct 2023 15:19:27 +0000
ROA not before: Tue 10 Oct 2023 15:14:27 +0000
ROA not after: Tue 08 Oct 2024 15:19:27 +0000
asID: 210532
IP address blocks: 2a0f:85c1:27::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:56:95:47:64:ae:32:a8:a2:51:c8:b9:15:8e:a7:9b:00:bd:1c:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Oct 10 15:14:27 2023 GMT
Not After : Oct 8 15:19:27 2024 GMT
Subject: CN=76DB0FED668A654C3F12AC86DEAC210A5F7A4D96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:05:7b:a6:65:f4:44:db:8b:fa:c7:cd:54:4e:
e1:a0:44:33:f0:ae:a2:d8:5f:dd:ce:b2:76:a6:97:
29:e7:47:a4:8f:75:0b:3d:7d:76:1e:fb:8f:c3:5b:
4d:7c:5b:66:3f:14:93:7f:23:a2:43:bf:18:1d:20:
fc:96:65:44:8f:18:a1:33:33:e9:0b:62:3c:cd:af:
58:fa:12:d1:0a:7e:64:59:d0:ae:5b:43:69:cc:66:
7a:77:f4:d0:36:2f:7b:12:54:21:c4:bc:69:e9:2e:
fa:27:d2:0a:8c:e2:8b:8b:54:0d:ad:18:9e:7f:2d:
ac:89:a9:79:dd:d8:92:42:e8:d3:f3:35:ed:ff:63:
74:0d:56:ee:e7:70:0e:2d:94:2b:79:61:b0:85:46:
2c:94:5f:82:cc:fa:f9:a2:6b:ed:ba:ca:97:46:f7:
f3:ef:db:c5:6a:fb:4b:c1:cb:e2:cc:91:2a:94:94:
ba:93:7b:93:bd:b6:07:b3:01:30:51:6f:85:f5:44:
48:b5:36:17:b4:1d:f7:8f:9e:6a:17:07:7d:2c:ec:
5b:19:1d:c2:f9:e6:8c:11:77:f6:e5:dc:b4:5b:25:
66:2b:51:78:0e:da:0f:26:14:cc:35:88:70:25:94:
10:32:aa:da:cf:79:89:33:3f:ee:dc:1c:c2:12:6a:
f6:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:DB:0F:ED:66:8A:65:4C:3F:12:AC:86:DE:AC:21:0A:5F:7A:4D:96
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a32373a3a2f34382d3438203d3e20323130353332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:27::/48
Signature Algorithm: sha256WithRSAEncryption
02:da:05:db:11:2c:18:de:d6:38:7d:10:dd:35:d4:eb:3d:26:
83:35:5a:4b:d6:40:42:62:9e:49:72:55:98:db:41:98:80:28:
2a:90:2b:78:f1:94:4d:51:e1:39:9b:45:f2:af:e5:3a:fa:5d:
90:9e:bb:c6:e1:29:f6:a8:ca:d8:b6:93:97:96:3e:0b:b3:96:
f1:52:c6:c5:e2:95:9b:0e:53:df:3e:da:0d:03:f3:fe:e4:2b:
4d:1a:48:a6:cd:10:0b:2b:4f:d7:c4:af:eb:36:88:b8:11:99:
21:e7:ad:91:84:ff:be:f1:75:30:e0:0e:08:bc:70:40:2c:d8:
d1:06:54:50:aa:67:d6:d1:63:bb:c6:28:ed:21:ad:ab:dc:83:
5d:b7:fc:6c:eb:8e:c4:82:fb:dc:89:2e:5f:82:a3:35:47:7a:
4e:50:d0:86:6a:b0:17:68:72:98:42:34:23:44:93:62:36:d3:
9f:45:fa:d0:aa:1b:5c:41:fc:bf:e2:8c:66:de:92:50:b5:4c:
17:8a:93:5a:91:d2:33:8d:ad:cc:de:eb:e1:d1:ad:2b:39:01:
2e:b6:b0:a6:29:cf:ef:47:4b:c8:d6:1b:0a:89:76:60:9a:87:
bd:a9:a2:00:6e:86:20:b2:f8:aa:df:9c:f4:9c:f4:b1:dc:5d:
5a:9e:1c:4a
-----BEGIN CERTIFICATE-----
MIIFPDCCBCSgAwIBAgIUO1aVR2SuMqiiUci5FY6nmwC9HCcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWFlNDQzNzAyOTY1OTUzOWY1NGY5MDBiMzVlNDNiZTA2
YTk0YjM3YjAeFw0yMzEwMTAxNTE0MjdaFw0yNDEwMDgxNTE5MjdaMDMxMTAvBgNV
BAMTKDc2REIwRkVENjY4QTY1NEMzRjEyQUM4NkRFQUMyMTBBNUY3QTREOTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgBXumZfRE24v6x81UTuGgRDPw
rqLYX93OsnamlynnR6SPdQs9fXYe+4/DW018W2Y/FJN/I6JDvxgdIPyWZUSPGKEz
M+kLYjzNr1j6EtEKfmRZ0K5bQ2nMZnp39NA2L3sSVCHEvGnpLvon0gqM4ouLVA2t
GJ5/LayJqXnd2JJC6NPzNe3/Y3QNVu7ncA4tlCt5YbCFRiyUX4LM+vmia+26ypdG
9/Pv28Vq+0vBy+LMkSqUlLqTe5O9tgezATBRb4X1REi1Nhe0HfePnmoXB30s7FsZ
HcL55owRd/bl3LRbJWYrUXgO2g8mFMw1iHAllBAyqtrPeYkzP+7cHMISavYFAgMB
AAGjggJGMIICQjAdBgNVHQ4EFgQUdtsP7WaKZUw/EqyG3qwhCl96TZYwHwYDVR0j
BBgwFoAUWuRDcClllTn1T5ALNeQ74GqUs3swDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmMyMGFkZDMtYTg4ZS00YmIyLWE4NGQtNTVkYTIxMjhm
MTk2LzAvNUFFNDQzNzAyOTY1OTUzOUY1NEY5MDBCMzVFNDNCRTA2QTk0QjM3Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1d1UkRjQ2xsbFRuMVQ1QUxOZVE3NEdx
VXMzcy5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmMyMGFkZDMt
YTg4ZS00YmIyLWE4NGQtNTVkYTIxMjhmMTk2LzAvMzI2MTMwNjYzYTM4MzU2MzMx
M2EzMjM3M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMTMwMzUzMzMyLnJvYTAY
BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA
AjAJAwcAKg+FwQAnMA0GCSqGSIb3DQEBCwUAA4IBAQAC2gXbESwY3tY4fRDdNdTr
PSaDNVpL1kBCYp5JclWY20GYgCgqkCt48ZRNUeE5m0Xyr+U6+l2QnrvG4Sn2qMrY
tpOXlj4Ls5bxUsbF4pWbDlPfPtoNA/P+5CtNGkimzRALK0/XxK/rNoi4EZkh562R
hP++8XUw4A4IvHBALNjRBlRQqmfW0WO7xijtIa2r3INdt/xs647EgvvciS5fgqM1
R3pOUNCGarAXaHKYQjQjRJNiNtOfRfrQqhtcQfy/4oxm3pJQtUwXipNakdIzja3M
3uvh0a0rOQEutrCmKc/vR0vI1hsKiXZgmoe9qaIAboYgsviq35z0nPSx3F1anhxK
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:10 2024 by rpki-client on console-ams.rpki-client.org