Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3362303a3a2f34382d3438203d3e20323135313533.roa
File: 326130663a383563313a3362303a3a2f34382d3438203d3e20323135313533.roa (raw, json)
Hash identifier: etWq6++uKmsXKJsCVzLdPnxIPDNoG0PKrPwzaCVm4HA=
Subject key identifier: 0A:F8:34:4C:33:95:B4:DD:B1:64:86:FE:AC:D3:78:27:6D:CC:9F:18
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 11ED2A6CCE195CFFD3A20E13BE0D9BF23ACC16F3
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3362303a3a2f34382d3438203d3e20323135313533.roa
Signing time: Sun 14 Apr 2024 19:04:44 +0000
ROA not before: Sun 14 Apr 2024 18:59:44 +0000
ROA not after: Sun 13 Apr 2025 19:04:44 +0000
asID: 215153
IP address blocks: 2a0f:85c1:3b0::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:ed:2a:6c:ce:19:5c:ff:d3:a2:0e:13:be:0d:9b:f2:3a:cc:16:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Apr 14 18:59:44 2024 GMT
Not After : Apr 13 19:04:44 2025 GMT
Subject: CN=0AF8344C3395B4DDB16486FEACD378276DCC9F18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:21:7e:d6:f5:17:c5:f5:8c:c9:c3:dc:7b:95:
d7:41:c3:d6:a8:30:40:5d:70:52:71:10:ea:fe:82:
61:36:67:a7:b3:01:b8:fe:46:8a:e3:1c:77:31:5d:
1b:5b:d9:34:93:3a:c3:d6:b9:03:8d:1c:4f:2c:a9:
40:fe:3e:b5:f0:62:57:32:d0:e4:f0:f3:4f:d9:da:
5f:bb:df:4a:aa:8a:b9:b3:6f:e6:a7:f6:44:c5:6c:
48:1c:cd:47:94:a8:79:f0:96:28:9d:85:ba:e6:33:
52:2b:33:45:e6:fb:8d:93:13:8b:1b:e5:27:d2:15:
e4:4d:72:8b:f4:2d:12:23:31:9e:b3:86:27:bb:88:
2f:dc:90:c0:be:e0:66:4f:c9:28:54:93:97:6a:bf:
fb:3b:19:f5:55:03:0a:82:3f:a0:05:df:41:82:f7:
a3:57:45:16:87:60:4e:4b:b0:48:cf:eb:e5:76:a3:
38:1e:48:fb:54:a5:3b:2a:a2:67:b6:c1:8f:21:e8:
16:f0:83:ce:96:07:3e:9c:a9:3d:9a:9f:1f:51:9d:
4d:67:75:90:d2:ab:f9:c8:c0:9a:8a:3d:f2:04:f9:
95:71:44:7c:07:37:3b:5d:74:ac:fd:33:fb:75:0b:
f7:a0:81:e8:43:fd:30:64:6c:ae:55:40:24:a6:b3:
4a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:F8:34:4C:33:95:B4:DD:B1:64:86:FE:AC:D3:78:27:6D:CC:9F:18
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3362303a3a2f34382d3438203d3e20323135313533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:3b0::/48
Signature Algorithm: sha256WithRSAEncryption
47:e7:c8:35:20:bd:7a:6c:29:82:b7:1a:2d:f1:05:c9:bb:a6:
bc:13:d8:fa:4d:77:47:bc:19:08:c5:7e:4c:74:fe:2d:1a:9c:
31:41:41:d7:55:3b:cc:a0:e6:b0:a9:08:86:ff:c4:e3:d8:9b:
1a:25:76:4d:37:d4:81:26:98:2e:b0:ce:a2:3d:0c:0e:a0:67:
ea:55:a1:82:cd:17:e9:28:51:f5:11:ee:91:82:a5:f5:10:d0:
98:67:29:57:a5:73:78:e6:1f:f6:47:6c:29:77:27:d9:79:ce:
3d:d7:f5:3b:8d:27:ff:4c:a8:22:9b:99:22:ca:13:80:75:a0:
9a:39:43:59:f7:6f:0a:49:94:4c:1a:8c:68:0b:d5:7f:85:ac:
82:0f:04:d3:6f:b3:82:7f:18:24:cf:88:31:c8:f1:c1:ff:95:
e2:c0:c9:5c:7a:7f:0a:38:b9:15:11:3b:b2:67:34:57:9f:78:
41:ec:24:81:6d:0d:2f:93:0f:e3:ac:ed:06:05:a8:c3:5c:f2:
99:2e:e4:ec:10:3d:e6:95:2a:96:b4:fb:72:6a:77:15:e5:29:
02:f8:24:99:4d:c5:4c:9b:f9:84:17:bb:00:1d:c7:08:e3:95:
7a:a5:6a:c4:be:a2:4b:6c:82:87:f2:da:96:bc:28:79:4c:db:
50:af:da:d7
-----BEGIN CERTIFICATE-----
MIIFPjCCBCagAwIBAgIUEe0qbM4ZXP/Tog4Tvg2b8jrMFvMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWFlNDQzNzAyOTY1OTUzOWY1NGY5MDBiMzVlNDNiZTA2
YTk0YjM3YjAeFw0yNDA0MTQxODU5NDRaFw0yNTA0MTMxOTA0NDRaMDMxMTAvBgNV
BAMTKDBBRjgzNDRDMzM5NUI0RERCMTY0ODZGRUFDRDM3ODI3NkRDQzlGMTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeIX7W9RfF9YzJw9x7lddBw9ao
MEBdcFJxEOr+gmE2Z6ezAbj+RorjHHcxXRtb2TSTOsPWuQONHE8sqUD+PrXwYlcy
0OTw80/Z2l+730qqirmzb+an9kTFbEgczUeUqHnwliidhbrmM1IrM0Xm+42TE4sb
5SfSFeRNcov0LRIjMZ6zhie7iC/ckMC+4GZPyShUk5dqv/s7GfVVAwqCP6AF30GC
96NXRRaHYE5LsEjP6+V2ozgeSPtUpTsqome2wY8h6Bbwg86WBz6cqT2anx9RnU1n
dZDSq/nIwJqKPfIE+ZVxRHwHNztddKz9M/t1C/eggehD/TBkbK5VQCSms0rJAgMB
AAGjggJIMIICRDAdBgNVHQ4EFgQUCvg0TDOVtN2xZIb+rNN4J23MnxgwHwYDVR0j
BBgwFoAUWuRDcClllTn1T5ALNeQ74GqUs3swDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmMyMGFkZDMtYTg4ZS00YmIyLWE4NGQtNTVkYTIxMjhm
MTk2LzAvNUFFNDQzNzAyOTY1OTUzOUY1NEY5MDBCMzVFNDNCRTA2QTk0QjM3Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1d1UkRjQ2xsbFRuMVQ1QUxOZVE3NEdx
VXMzcy5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmMyMGFkZDMt
YTg4ZS00YmIyLWE4NGQtNTVkYTIxMjhmMTk2LzAvMzI2MTMwNjYzYTM4MzU2MzMx
M2EzMzYyMzAzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzMTM1MzMucm9h
MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E
AgACMAkDBwAqD4XBA7AwDQYJKoZIhvcNAQELBQADggEBAEfnyDUgvXpsKYK3Gi3x
Bcm7prwT2PpNd0e8GQjFfkx0/i0anDFBQddVO8yg5rCpCIb/xOPYmxoldk031IEm
mC6wzqI9DA6gZ+pVoYLNF+koUfUR7pGCpfUQ0JhnKVelc3jmH/ZHbCl3J9l5zj3X
9TuNJ/9MqCKbmSLKE4B1oJo5Q1n3bwpJlEwajGgL1X+FrIIPBNNvs4J/GCTPiDHI
8cH/leLAyVx6fwo4uRURO7JnNFefeEHsJIFtDS+TD+Os7QYFqMNc8pku5OwQPeaV
Kpa0+3JqdxXlKQL4JJlNxUyb+YQXuwAdxwjjlXqlasS+oktsgofy2pa8KHlM21Cv
2tc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org