Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a626565663a3a2f34382d3438203d3e20323037373831.roa
File: 326130663a383563313a626565663a3a2f34382d3438203d3e20323037373831.roa (raw, json)
Hash identifier: tV6DSt98Rr2/BLuDnYe7Vlg5zNjzKu1UoHZFnEqYGvA=
Subject key identifier: 65:BA:C6:09:16:6D:64:BD:A0:9C:27:39:08:77:AC:8E:D6:08:B5:3F
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 703E1AC22B9575FB6AA5BDE8B360161ACBCFB134
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a626565663a3a2f34382d3438203d3e20323037373831.roa
Signing time: Tue 10 Oct 2023 15:16:17 +0000
ROA not before: Tue 10 Oct 2023 15:11:17 +0000
ROA not after: Tue 08 Oct 2024 15:16:17 +0000
asID: 207781
IP address blocks: 2a0f:85c1:beef::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 16:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:3e:1a:c2:2b:95:75:fb:6a:a5:bd:e8:b3:60:16:1a:cb:cf:b1:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Oct 10 15:11:17 2023 GMT
Not After : Oct 8 15:16:17 2024 GMT
Subject: CN=65BAC609166D64BDA09C27390877AC8ED608B53F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:9c:7b:d1:ed:d4:73:42:f2:b4:58:06:bd:e2:
e4:51:8b:df:46:b9:fa:94:39:71:5b:b3:e5:b7:9d:
29:2f:fe:07:11:ed:69:23:0e:d1:50:86:98:0a:25:
de:25:75:6b:4f:3a:6e:af:9c:79:a7:ee:d2:31:b6:
b6:1c:2e:4f:b7:55:24:cf:91:97:6c:42:69:a3:60:
1a:c7:75:40:5f:20:a2:64:d4:ac:d4:90:c4:7e:1d:
37:83:f6:17:d4:b7:75:fb:d2:f6:66:0d:38:c1:2d:
ef:b3:38:eb:6d:89:3c:45:59:30:79:3e:51:7b:10:
05:f6:24:cb:cd:68:c9:99:9a:fe:d3:3a:e6:e9:61:
50:c7:44:f3:1e:dc:5b:96:b9:e7:ee:28:0e:32:52:
43:22:4e:dc:cc:fd:df:8f:03:e4:d5:e2:1d:96:17:
64:cd:7e:f5:5a:33:68:53:79:19:86:42:a1:ad:79:
20:a0:69:a4:5a:9f:10:59:5b:e5:bd:38:29:5a:ca:
f0:4b:49:ec:8f:4d:e0:41:e3:32:76:bc:cf:75:ad:
44:7c:83:67:5c:0d:09:cc:ce:d2:b0:86:c6:80:0b:
f5:3b:91:fe:7f:05:65:86:fd:6e:6b:04:fa:87:46:
1d:02:cc:d0:9a:b9:dd:8b:56:db:f2:54:42:8f:f7:
79:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:BA:C6:09:16:6D:64:BD:A0:9C:27:39:08:77:AC:8E:D6:08:B5:3F
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/326130663a383563313a626565663a3a2f34382d3438203d3e20323037373831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:beef::/48
Signature Algorithm: sha256WithRSAEncryption
46:a3:0f:23:61:0b:5b:45:83:4e:00:92:54:8e:9f:31:0d:a4:
c6:8e:fe:3a:2a:b7:4a:9b:3a:81:fa:5d:65:0e:1d:48:28:6c:
da:a0:f2:32:34:33:ba:b0:a7:f8:20:06:7a:56:03:fc:cd:b7:
00:d7:54:61:0f:7e:f1:3e:4c:03:55:86:17:58:f9:ef:d9:0d:
0b:b3:7a:d0:40:fa:5a:da:95:3b:4f:19:9b:59:70:60:4d:d3:
22:51:bc:c7:74:4c:69:e6:9c:1a:e3:5f:b3:ca:51:89:90:d7:
8a:c0:ab:91:0c:d3:51:73:18:cf:1e:15:9b:fa:9c:70:19:d3:
5e:18:2d:b1:2a:51:be:85:85:f2:31:25:27:a4:e2:c5:aa:47:
da:90:87:92:b9:60:97:0f:74:38:04:ee:5f:43:07:47:d5:1d:
b9:58:7c:7e:38:2a:ae:cd:b6:07:31:7b:8d:1e:bd:99:66:99:
30:35:12:5e:31:30:41:1e:dd:9e:e2:ef:c8:b1:18:b6:42:71:
bb:fd:77:0a:2b:08:8f:ec:39:ad:4a:18:e9:26:ae:0a:c1:bd:
0e:f8:10:0e:b5:f2:c8:ca:be:dc:2a:ab:85:d7:08:e0:f2:10:
22:ed:7d:a6:a4:56:e7:dc:a4:be:18:69:5c:62:a2:15:93:9a:
1e:af:4b:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 18:17:04 2024 by rpki-client on console-fra.rpki-client.org