Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a38303a3a2f34342d3434203d3e20323039373335.roa
File: 326130663a383563313a38303a3a2f34342d3434203d3e20323039373335.roa (raw, json)
Hash identifier: 4CZ+Bz97rfmOxK+2tcTNX94Pq5C7z+OvfROkMzpxJ6M=
Subject key identifier: 7D:DC:F8:D5:C3:44:55:CA:D5:49:F9:25:7C:C5:83:D5:0F:5F:B2:32
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 539150AFCAA69AD471FE966CE14C4E4E73266466
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a38303a3a2f34342d3434203d3e20323039373335.roa
Signing time: Tue 05 Mar 2024 21:51:14 +0000
ROA not before: Tue 05 Mar 2024 21:46:14 +0000
ROA not after: Tue 04 Mar 2025 21:51:14 +0000
asID: 209735
IP address blocks: 2a0f:85c1:80::/44 maxlen: 44
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:91:50:af:ca:a6:9a:d4:71:fe:96:6c:e1:4c:4e:4e:73:26:64:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Mar 5 21:46:14 2024 GMT
Not After : Mar 4 21:51:14 2025 GMT
Subject: CN=7DDCF8D5C34455CAD549F9257CC583D50F5FB232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:bc:a7:14:66:25:e5:42:c3:8c:9a:67:03:d3:
c9:e9:f5:bb:8c:f7:fa:20:66:c0:07:c5:9b:a0:46:
76:32:c6:a0:51:90:a5:97:0d:86:fc:71:16:60:b8:
23:6c:38:bb:63:c8:86:db:c4:6c:90:7f:dc:a2:af:
dd:7e:94:e1:7e:17:2b:dc:9b:64:e5:a3:47:ec:dd:
ae:0d:40:ad:d9:53:5e:2f:a5:cf:3b:bd:ab:3a:d7:
1b:af:2c:f6:f6:f6:fe:87:30:21:de:b7:71:45:0e:
fa:6c:dd:d8:c4:e2:49:83:1b:12:87:9f:77:0e:3e:
05:88:d2:d3:96:1a:1b:e1:a4:99:9a:c0:2f:a2:9e:
d3:32:08:94:4a:96:7b:0c:ab:48:95:45:fe:68:43:
b7:ad:87:22:eb:c2:5b:9b:5f:2e:1d:a0:c8:eb:54:
6f:7b:ab:99:a4:b9:a4:2b:cf:6a:ed:1e:4e:c2:39:
15:60:6d:6f:47:60:89:26:cb:a6:ea:af:8c:0f:71:
af:e8:47:d6:65:be:40:2a:54:a4:17:e6:86:b1:6e:
a8:be:86:3d:d7:21:a9:73:3a:66:a0:a5:b6:3b:c0:
da:7f:d1:48:ca:35:5a:78:56:de:36:6d:32:0c:7e:
4d:b7:30:2a:21:dc:cb:e6:c6:36:65:03:db:f7:22:
c1:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:DC:F8:D5:C3:44:55:CA:D5:49:F9:25:7C:C5:83:D5:0F:5F:B2:32
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a38303a3a2f34342d3434203d3e20323039373335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:80::/44
Signature Algorithm: sha256WithRSAEncryption
15:50:9f:3d:82:62:7f:5f:80:0f:78:1a:ca:56:3d:94:e7:4d:
30:c4:a2:56:03:d4:19:6a:16:81:b2:1b:51:de:7b:7f:b0:fe:
89:64:a6:0e:a4:58:58:e7:79:3e:9d:24:cb:ed:80:10:f6:0e:
5b:36:16:aa:78:a9:bc:b5:41:ea:f3:40:30:9f:45:37:74:8b:
fb:08:ac:68:32:66:e0:68:fe:15:84:b5:76:77:53:2f:96:26:
80:b9:f8:50:17:e5:4d:c0:98:aa:2a:b9:a5:73:dd:04:1a:06:
ad:a1:9e:35:41:9b:ff:05:00:d5:8e:67:cb:98:a1:8f:d1:f1:
e6:e5:12:74:8e:06:43:1f:c8:ba:8d:a2:3d:27:03:06:0e:59:
05:93:21:37:74:c6:35:7f:6f:4b:15:76:95:29:38:12:ac:1c:
9d:38:0c:03:99:e4:7c:4b:99:81:cd:ba:69:fa:33:10:c5:c7:
2b:52:00:30:3b:f0:63:92:a4:9b:c8:c0:c8:03:83:54:d6:e5:
92:10:73:07:e1:f2:8f:f2:c7:34:df:67:4f:1d:84:7c:bc:c3:
23:25:71:dc:82:08:61:b9:74:fe:d1:4f:68:c3:f1:80:73:ec:
f1:25:e1:fd:f5:4f:26:51:45:62:71:86:86:5e:9c:af:75:82:
b8:80:d6:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org