Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3361643a3a2f34382d3438203d3e20323135313732.roa
File: 326130663a383563313a3361643a3a2f34382d3438203d3e20323135313732.roa (raw, json)
Hash identifier: Iku9Ga4CyMUL7uUBTHkNWyJDs53J7Ik9CBO4aF26O00=
Subject key identifier: DA:40:D1:38:98:7A:AE:4F:8B:95:85:56:D5:CE:25:66:92:44:96:57
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 457B1910329DB0066B91EC4AF88CD394FC199E86
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3361643a3a2f34382d3438203d3e20323135313732.roa
Signing time: Wed 03 Apr 2024 18:50:46 +0000
ROA not before: Wed 03 Apr 2024 18:45:46 +0000
ROA not after: Wed 02 Apr 2025 18:50:46 +0000
asID: 215172
IP address blocks: 2a0f:85c1:3ad::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:7b:19:10:32:9d:b0:06:6b:91:ec:4a:f8:8c:d3:94:fc:19:9e:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Apr 3 18:45:46 2024 GMT
Not After : Apr 2 18:50:46 2025 GMT
Subject: CN=DA40D138987AAE4F8B958556D5CE256692449657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:b9:69:5d:52:d1:dc:36:08:95:a8:17:0b:3d:
93:30:0a:c1:8c:e4:84:10:92:fe:63:47:25:fd:0a:
a0:2d:81:81:6d:b5:bf:5b:73:be:39:ac:be:d1:f2:
58:bb:83:82:99:d7:04:fe:6b:9b:c0:1f:be:ec:ff:
18:e2:7c:7e:fb:e3:8b:ac:fd:96:a5:90:65:2d:69:
5d:b0:87:4b:91:43:95:f9:1d:3f:1a:61:d2:98:e1:
aa:fe:e9:ef:60:48:99:11:50:51:b7:5d:bc:d6:4d:
84:20:80:25:81:7a:33:dc:f1:1e:a2:5d:9f:0c:70:
40:e0:10:36:64:cd:03:94:97:b0:05:07:ae:1a:31:
18:ff:49:2e:a7:7d:0d:30:85:be:d9:b7:ee:e2:6c:
d4:9d:58:31:92:0c:a1:e5:86:c3:8e:53:13:93:89:
b6:05:73:44:55:b0:8c:fd:7c:7b:58:6c:13:22:50:
26:49:dd:94:58:ae:49:c2:73:b7:3f:c5:98:2d:34:
1c:f3:9f:2d:d5:93:e9:47:62:ab:cb:31:77:a9:b3:
db:c6:a9:85:3c:d5:b5:5e:9f:73:8c:a2:e5:cc:3d:
44:e0:5c:9b:b5:6b:9f:a0:0a:f8:fd:9a:a1:67:19:
ac:55:c6:ce:6d:13:b2:78:ac:35:2e:f3:e9:5b:ae:
d0:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:40:D1:38:98:7A:AE:4F:8B:95:85:56:D5:CE:25:66:92:44:96:57
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3361643a3a2f34382d3438203d3e20323135313732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:3ad::/48
Signature Algorithm: sha256WithRSAEncryption
2d:41:91:5e:9d:10:c4:a2:05:39:31:d1:65:15:3e:a7:fe:cf:
73:40:85:a0:9a:93:c4:ea:cc:d4:b0:c5:86:c9:18:bb:f6:2a:
73:7f:9f:0e:29:72:3a:9d:e9:79:bb:f9:4d:c3:7b:58:38:01:
7f:f9:ab:6c:28:84:f8:24:dd:71:02:80:1b:e3:7a:6e:02:8f:
ea:c0:f1:74:8a:09:c6:57:f1:17:03:9a:9f:eb:f1:84:0f:0c:
ae:02:8a:94:36:54:f6:c5:36:1a:c9:d5:67:df:31:14:b2:b5:
bd:5a:5d:f6:84:04:89:be:46:a8:d4:8b:56:a0:7a:ba:46:a1:
14:65:3d:a3:86:f8:c9:40:21:83:4b:c7:09:b3:68:26:c8:47:
ce:bd:eb:4a:7c:6e:92:cb:4c:24:5f:f5:f7:48:58:45:42:96:
50:4e:7f:08:20:d7:65:fe:2a:1d:e0:c2:b1:6d:60:b2:41:23:
9f:25:d2:c8:70:6b:4a:67:06:ae:a2:1a:31:f0:c7:02:c6:cb:
6f:3a:a8:14:e8:e6:de:f7:42:14:9a:32:bf:04:d2:e9:74:71:
b5:82:b1:12:8e:8f:6b:53:09:74:f3:b3:c1:e6:c3:c0:07:16:
48:36:c9:03:ef:6a:01:cb:ae:de:65:7d:5d:48:c3:1c:c1:56:
f6:c0:30:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:10 2024 by rpki-client on console-ams.rpki-client.org