Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3134362e31392e38362e302f32342d3234203d3e203430363736.roa
File: 3134362e31392e38362e302f32342d3234203d3e203430363736.roa (raw, json)
Hash identifier: f0DHhDDcQLzTgPBa5gonopsDFjG1V6qMcdyhq4FIxuo=
Subject key identifier: B6:A6:71:46:7E:97:B8:0D:D2:79:BF:74:1E:F7:50:57:7D:05:EE:04
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 59C1675CF6EF7FC3C19A94972E202327EF53201F
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3134362e31392e38362e302f32342d3234203d3e203430363736.roa
Signing time: Fri 01 Dec 2023 07:30:46 +0000
ROA not before: Fri 01 Dec 2023 07:25:46 +0000
ROA not after: Fri 29 Nov 2024 07:30:46 +0000
asID: 40676
IP address blocks: 146.19.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jan 2024 00:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:c1:67:5c:f6:ef:7f:c3:c1:9a:94:97:2e:20:23:27:ef:53:20:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Dec 1 07:25:46 2023 GMT
Not After : Nov 29 07:30:46 2024 GMT
Subject: CN=B6A671467E97B80DD279BF741EF750577D05EE04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:fa:ef:7d:48:78:de:72:86:ed:ed:b2:ab:ae:
f6:8d:bd:a2:92:dd:ea:3e:58:a7:49:66:c2:1d:ad:
ed:d9:5c:fc:fa:d8:1a:11:c3:a1:63:31:9d:88:a7:
86:84:2a:ea:07:45:70:63:3d:00:eb:af:2d:1c:b6:
2e:d0:cc:96:45:34:65:0a:38:94:87:f7:ca:17:e1:
44:c5:a7:44:a0:41:9b:31:46:9f:d4:86:df:ea:de:
35:ca:40:5f:c1:0e:ba:e2:e1:f8:b1:be:32:ae:33:
6c:ba:32:d6:70:e1:e9:66:8e:81:4a:04:60:51:11:
b3:1c:d9:17:c1:ab:c8:d3:43:81:9e:26:36:11:4a:
65:f5:43:0e:2e:93:79:66:b6:e3:ed:62:c5:23:b6:
e7:f8:22:0a:26:f1:e0:60:ff:bf:5d:2b:2c:07:88:
d9:55:45:47:ec:af:ba:29:1a:3f:95:fa:30:4c:f2:
6a:76:22:c0:9a:ee:64:5f:f5:29:b8:c5:61:d5:0c:
e3:22:f6:69:92:83:9f:25:52:53:51:c1:24:be:1b:
c2:38:43:27:f9:31:06:b4:b8:6b:5a:06:a2:7a:cb:
dc:23:d0:69:33:c2:35:91:39:69:91:6c:e0:a8:d6:
3f:86:91:49:c5:96:8a:9a:10:8e:97:00:af:cd:88:
92:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:A6:71:46:7E:97:B8:0D:D2:79:BF:74:1E:F7:50:57:7D:05:EE:04
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3134362e31392e38362e302f32342d3234203d3e203430363736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.86.0/24
Signature Algorithm: sha256WithRSAEncryption
44:33:f7:32:75:68:2a:3c:90:4c:5d:8e:70:99:96:1f:05:5a:
08:90:c9:5b:3b:c2:38:15:42:2b:1f:2f:df:2e:53:00:37:2a:
65:e3:ef:b1:df:ad:4b:87:91:52:10:ec:cf:9b:c3:0e:c0:52:
d1:f9:2c:11:d4:26:f7:2c:70:86:60:7a:7a:57:90:b2:40:81:
45:f2:36:c9:91:17:8d:aa:1a:cf:e5:93:96:ce:ac:24:c2:2c:
0e:87:b4:2d:2e:0a:2a:ee:11:73:a6:22:2d:1c:a6:d2:9b:b4:
ae:30:1b:6c:7f:f2:83:5e:15:a0:16:34:d7:48:94:8e:4e:be:
9f:3e:83:de:a2:8a:ee:a1:b2:29:de:72:59:01:4d:55:ab:07:
9f:19:18:f8:92:0e:cd:d6:82:58:b5:d6:b1:95:ce:a1:10:8e:
32:e8:59:1a:e4:8a:c7:11:7d:61:f3:8c:c9:fe:af:5c:5f:2d:
7b:48:62:99:3a:c3:8d:cd:c6:c6:44:f1:06:2e:a9:47:c0:db:
e9:cb:85:4b:c3:ca:40:0c:a8:1d:13:62:54:45:5a:f4:b4:1e:
00:e6:e9:26:b6:60:2b:8f:f6:fe:4e:08:66:dd:87:0b:ed:7f:
a7:d8:99:b5:87:52:a3:0d:e3:51:e2:40:a6:74:02:9e:97:73:
5b:94:96:34
-----BEGIN CERTIFICATE-----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Generated at Mon Jan 22 04:52:41 2024 by rpki-client on console-fra.rpki-client.org