Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3362633a3a2f34382d3438203d3e20323135313334.roa
File: 326130663a383563313a3362633a3a2f34382d3438203d3e20323135313334.roa (raw, json)
Hash identifier: DrFemulPHKXXC7ChjsNxo6Gx/ObYfT5W1JcyU1F9AHs=
Subject key identifier: 71:AE:88:D6:D8:40:31:BE:F6:F8:E9:87:13:D8:6F:44:FC:20:25:BB
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 523E9A513F492E48C3A47B0EFFB1ACE3EA6591B2
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3362633a3a2f34382d3438203d3e20323135313334.roa
Signing time: Tue 09 Apr 2024 16:34:10 +0000
ROA not before: Tue 09 Apr 2024 16:29:10 +0000
ROA not after: Tue 08 Apr 2025 16:34:10 +0000
asID: 215134
IP address blocks: 2a0f:85c1:3bc::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:3e:9a:51:3f:49:2e:48:c3:a4:7b:0e:ff:b1:ac:e3:ea:65:91:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Apr 9 16:29:10 2024 GMT
Not After : Apr 8 16:34:10 2025 GMT
Subject: CN=71AE88D6D84031BEF6F8E98713D86F44FC2025BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:bf:d0:f4:c7:b5:ee:fd:83:91:99:8f:80:b3:
af:7d:98:b0:5f:b0:7b:a9:67:45:90:92:0c:f9:b1:
fd:ed:a5:7b:9b:97:c7:c3:00:96:e7:1a:e0:2c:e2:
75:c8:b7:03:1f:d0:6b:3e:46:f5:4b:f4:35:d8:9c:
b9:7d:1e:44:7f:70:4a:a6:c5:d9:8f:60:ae:f3:e1:
e1:56:34:1c:4d:ac:3e:8a:53:be:a9:df:d1:00:ec:
64:4f:8d:b3:e6:8f:c8:f6:0f:cf:0a:03:18:c1:0c:
e8:cb:5e:a3:ca:f6:ea:13:a0:18:f4:49:6e:06:41:
65:7a:98:0d:01:82:b6:84:08:03:33:d9:58:31:38:
9c:8a:3a:0f:0b:3e:a6:9e:47:c9:88:83:eb:78:ff:
28:03:5f:a6:35:2f:06:ad:1f:90:e3:78:c6:e8:a3:
1f:1a:8c:1a:b2:fc:65:ca:14:c6:dd:3f:94:3b:2f:
04:71:a6:47:41:64:7a:65:2e:20:22:43:7d:5d:a2:
31:64:e7:a6:7c:e4:d5:db:35:aa:51:50:8c:fc:c7:
52:9f:9a:22:1d:32:0a:7c:3a:08:7a:27:bb:70:49:
fb:d5:2b:16:28:ee:44:ff:03:12:17:fd:23:2c:58:
31:b1:2b:45:09:2b:2c:8b:95:d9:79:6d:b1:ca:ae:
67:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:AE:88:D6:D8:40:31:BE:F6:F8:E9:87:13:D8:6F:44:FC:20:25:BB
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a3362633a3a2f34382d3438203d3e20323135313334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:3bc::/48
Signature Algorithm: sha256WithRSAEncryption
73:b2:38:41:08:61:c1:7a:51:b6:90:4e:f8:0b:6f:72:43:8e:
ca:6e:56:e9:a0:62:26:c9:9f:4c:f7:60:ee:90:ba:06:6e:cd:
c4:0b:7f:1f:de:aa:dd:6d:82:b8:dc:c4:21:a4:db:18:03:16:
14:61:56:05:18:65:7e:93:33:b1:0e:f4:44:36:fe:73:bc:65:
a5:5a:f5:d8:61:10:02:ed:6e:ba:17:84:fc:8c:85:56:f8:6b:
52:b9:ed:f0:3b:50:6b:90:2e:e4:c3:55:f6:b3:b8:b3:8d:69:
fc:c9:5f:c0:14:0c:4d:85:b9:87:fe:21:aa:4c:2c:ec:fb:4e:
c3:14:6e:78:df:4d:3e:d1:83:c4:a7:c3:d3:16:5f:41:94:d0:
f4:5b:7f:ab:b3:d7:43:21:90:ca:45:5d:b9:84:9b:c7:4e:5b:
86:47:96:53:63:ae:96:5f:28:69:00:15:42:4c:b8:a9:52:9d:
0f:2a:4b:e7:07:f2:a9:32:43:b0:1f:3c:8a:04:f4:30:76:17:
b0:b3:7a:f7:34:35:8d:fa:ca:e2:85:34:4d:87:32:84:7c:a8:
17:44:a7:8c:2a:dc:52:c5:57:25:2c:39:6e:71:86:c9:8d:a3:
04:49:49:3e:6d:99:b8:74:3d:0d:60:c6:9a:90:2d:0a:8f:7e:
8d:db:f5:26
-----BEGIN CERTIFICATE-----
MIIFPjCCBCagAwIBAgIUUj6aUT9JLkjDpHsO/7Gs4+plkbIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWFlNDQzNzAyOTY1OTUzOWY1NGY5MDBiMzVlNDNiZTA2
YTk0YjM3YjAeFw0yNDA0MDkxNjI5MTBaFw0yNTA0MDgxNjM0MTBaMDMxMTAvBgNV
BAMTKDcxQUU4OEQ2RDg0MDMxQkVGNkY4RTk4NzEzRDg2RjQ0RkMyMDI1QkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYv9D0x7Xu/YORmY+As699mLBf
sHupZ0WQkgz5sf3tpXubl8fDAJbnGuAs4nXItwMf0Gs+RvVL9DXYnLl9HkR/cEqm
xdmPYK7z4eFWNBxNrD6KU76p39EA7GRPjbPmj8j2D88KAxjBDOjLXqPK9uoToBj0
SW4GQWV6mA0BgraECAMz2VgxOJyKOg8LPqaeR8mIg+t4/ygDX6Y1LwatH5DjeMbo
ox8ajBqy/GXKFMbdP5Q7LwRxpkdBZHplLiAiQ31dojFk56Z85NXbNapRUIz8x1Kf
miIdMgp8Ogh6J7twSfvVKxYo7kT/AxIX/SMsWDGxK0UJKyyLldl5bbHKrmfNAgMB
AAGjggJIMIICRDAdBgNVHQ4EFgQUca6I1thAMb72+OmHE9hvRPwgJbswHwYDVR0j
BBgwFoAUWuRDcClllTn1T5ALNeQ74GqUs3swDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmMyMGFkZDMtYTg4ZS00YmIyLWE4NGQtNTVkYTIxMjhm
MTk2LzAvNUFFNDQzNzAyOTY1OTUzOUY1NEY5MDBCMzVFNDNCRTA2QTk0QjM3Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1d1UkRjQ2xsbFRuMVQ1QUxOZVE3NEdx
VXMzcy5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmMyMGFkZDMt
YTg4ZS00YmIyLWE4NGQtNTVkYTIxMjhmMTk2LzAvMzI2MTMwNjYzYTM4MzU2MzMx
M2EzMzYyNjMzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzMTMzMzQucm9h
MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E
AgACMAkDBwAqD4XBA7wwDQYJKoZIhvcNAQELBQADggEBAHOyOEEIYcF6UbaQTvgL
b3JDjspuVumgYibJn0z3YO6QugZuzcQLfx/eqt1tgrjcxCGk2xgDFhRhVgUYZX6T
M7EO9EQ2/nO8ZaVa9dhhEALtbroXhPyMhVb4a1K57fA7UGuQLuTDVfazuLONafzJ
X8AUDE2FuYf+IapMLOz7TsMUbnjfTT7Rg8Snw9MWX0GU0PRbf6uz10MhkMpFXbmE
m8dOW4ZHllNjrpZfKGkAFUJMuKlSnQ8qS+cH8qkyQ7AfPIoE9DB2F7Czevc0NY36
yuKFNE2HMoR8qBdEp4wq3FLFVyUsOW5xhsmNowRJST5tmbh0PQ1gxpqQLQqPfo3b
9SY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org