Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3339363a3a2f34382d3438203d3e20323135333739.roa
File: 326130663a383563313a3339363a3a2f34382d3438203d3e20323135333739.roa (raw, json)
Hash identifier: 1J3RKeeTRm6Tm8J3K8Ev2VZCDoiQFErngmHDGmdRZrI=
Subject key identifier: 36:21:4A:B1:1A:5F:0A:74:C6:76:85:E4:FF:27:D6:3C:B9:C4:AA:52
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 535A7E4747B98320E2EFFD308F861A0C6F5BAE9F
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3339363a3a2f34382d3438203d3e20323135333739.roa
Signing time: Mon 04 Mar 2024 15:48:51 +0000
ROA not before: Mon 04 Mar 2024 15:43:51 +0000
ROA not after: Mon 03 Mar 2025 15:48:51 +0000
asID: 215379
IP address blocks: 2a0f:85c1:396::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:5a:7e:47:47:b9:83:20:e2:ef:fd:30:8f:86:1a:0c:6f:5b:ae:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Mar 4 15:43:51 2024 GMT
Not After : Mar 3 15:48:51 2025 GMT
Subject: CN=36214AB11A5F0A74C67685E4FF27D63CB9C4AA52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:de:8b:91:ad:03:b1:b9:28:2f:e5:d9:50:11:
b1:9a:10:36:16:d3:8a:39:e9:b4:63:cd:e0:a9:d3:
d2:2e:54:a3:f8:24:10:ed:68:1c:98:ab:10:f8:99:
02:0f:3a:97:f1:c8:0c:4f:90:16:8c:97:37:99:17:
ee:ea:e5:d1:0c:83:d6:8c:7c:a4:3d:30:19:c9:1e:
c7:70:29:58:c5:ae:22:fa:45:75:1b:d1:15:c4:bb:
4a:71:19:41:d9:9c:12:f8:a2:f4:a6:60:51:e4:88:
58:e2:ed:3e:54:47:d0:e4:9a:19:75:54:21:03:dd:
5d:32:5e:fd:93:5e:8e:ed:a1:c1:86:2f:1f:02:93:
e7:a1:ea:56:2e:eb:75:ac:5b:1e:70:b2:b5:25:9c:
79:c4:bf:16:fb:ef:28:50:d8:39:f1:df:e3:67:14:
d7:ed:74:0b:00:7d:46:05:ac:7b:12:ca:7e:72:b8:
cc:02:c6:35:f4:49:d5:38:e1:b0:84:69:b1:1c:1a:
31:d0:ed:60:19:12:84:ee:fe:a4:83:0d:c0:62:68:
99:3a:e9:95:1d:f9:38:e4:52:d8:36:4a:bd:60:0b:
de:4e:6a:ae:77:74:79:74:f3:e7:5f:7a:a4:2a:4b:
ce:12:cf:d2:93:fc:da:ad:b3:ad:26:db:60:3f:ee:
b9:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:21:4A:B1:1A:5F:0A:74:C6:76:85:E4:FF:27:D6:3C:B9:C4:AA:52
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3339363a3a2f34382d3438203d3e20323135333739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:396::/48
Signature Algorithm: sha256WithRSAEncryption
71:24:b7:b8:26:e1:da:4b:35:dc:46:58:f8:fd:03:e8:ff:96:
f3:ec:02:5d:5a:ed:44:ab:17:09:91:81:c5:df:48:d2:b9:e3:
ae:da:19:08:18:dd:63:66:52:a5:2d:af:fc:bb:82:68:ce:e5:
54:88:da:8e:b9:52:50:45:6b:e9:ea:42:51:7c:0e:3c:f0:c3:
18:70:f0:1a:91:de:58:97:c3:ad:1b:cf:35:0c:6b:27:ab:04:
eb:14:43:11:10:18:fc:c3:b9:45:8a:68:e2:31:6a:08:03:df:
ce:a9:3b:93:9d:ab:55:d7:68:aa:0b:61:dd:fc:80:ce:1b:08:
21:a7:0e:bf:4e:f4:5f:bd:2f:db:82:db:1f:ef:d5:40:50:6a:
58:d9:74:2c:08:da:54:78:6c:1a:cf:19:cf:a8:e4:d0:eb:53:
53:38:d3:3c:0f:77:7a:39:42:a6:fc:02:f5:a0:60:e1:51:26:
12:4e:a7:49:da:d1:73:2e:87:a3:de:4f:ab:29:00:4a:22:5e:
ab:e2:76:75:32:c2:16:2d:06:b1:ff:ec:f9:31:9f:f9:da:5b:
31:56:e7:9b:9e:73:01:f1:b4:f2:b4:30:56:09:95:b5:c6:80:
67:d1:7a:cd:80:cc:db:f0:c2:94:11:41:cd:2e:21:39:b4:5f:
88:f9:35:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org