Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137342e302f32342d3234203d3e20383334.roa
File: 3138352e3137322e3137342e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: clLDPAuPDuDOh5yyuwmO8TRKmL5ppOYxMIdKFz/yvow=
Subject key identifier: 89:C0:B9:1D:F9:7B:F5:57:16:9B:FB:79:D6:E3:D1:8D:87:57:BB:0F
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 324303AADBC49ECD242A6C85D7641EC2F2E9993B
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137342e302f32342d3234203d3e20383334.roa
Signing time: Wed 19 Jun 2024 00:02:13 +0000
ROA not before: Tue 18 Jun 2024 23:57:13 +0000
ROA not after: Wed 18 Jun 2025 00:02:13 +0000
asID: 834
IP address blocks: 185.172.174.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Jun 2024 10:49:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:43:03:aa:db:c4:9e:cd:24:2a:6c:85:d7:64:1e:c2:f2:e9:99:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Jun 18 23:57:13 2024 GMT
Not After : Jun 18 00:02:13 2025 GMT
Subject: CN=89C0B91DF97BF557169BFB79D6E3D18D8757BB0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:b2:a6:9c:4b:cb:d7:b7:a4:03:80:69:5e:97:
2e:37:1c:7e:d8:b0:a2:5a:77:08:f3:fe:29:e1:16:
73:87:7a:f3:4a:62:ae:7f:52:25:87:6c:12:c2:b8:
04:68:64:b5:89:91:5b:17:3c:09:2a:66:3b:74:ef:
14:d2:9a:ea:cb:93:47:d2:ba:bb:18:a6:4d:42:5b:
ae:29:89:f8:2a:23:5c:23:79:dd:cc:b7:7d:5a:28:
5e:61:10:11:7f:fe:c8:26:f0:12:1a:61:7b:0c:aa:
5f:de:f9:9b:3a:f7:db:8a:4c:75:02:2f:72:46:99:
ac:a6:33:ea:93:9d:7c:66:00:bd:e4:c5:74:b5:88:
47:9d:ea:f3:e6:72:91:8b:44:45:a7:47:e7:6a:c0:
4f:21:f5:d4:c8:29:af:9d:fb:ed:cc:76:32:b7:09:
60:66:43:17:30:86:e9:85:26:de:c6:72:e9:83:6b:
ee:fc:59:f1:73:fb:f7:a1:1f:33:fd:86:bd:07:58:
41:b0:3e:13:2a:00:84:92:d1:84:5a:c6:e1:46:09:
63:84:a2:eb:05:59:19:d8:95:c8:aa:16:77:e8:fd:
fc:d2:4e:9a:bc:1d:ee:28:60:56:f1:e1:c5:72:cd:
40:5e:81:74:a3:5f:0a:7d:d2:24:3a:65:41:5d:40:
ce:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:C0:B9:1D:F9:7B:F5:57:16:9B:FB:79:D6:E3:D1:8D:87:57:BB:0F
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137342e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.174.0/24
Signature Algorithm: sha256WithRSAEncryption
af:cc:50:0e:a5:f3:5c:f7:2c:89:8a:97:65:a3:7d:4c:dc:cd:
1a:6d:0e:cf:18:a4:57:6c:f4:6e:78:1d:af:20:65:a3:cf:7c:
3e:d0:e9:b0:2d:b4:ab:b7:ab:9a:9c:cb:82:c5:73:3f:09:e3:
76:aa:fd:8d:2f:d8:f6:43:88:bd:93:e9:f9:19:fb:d1:6d:6f:
1b:67:a4:7d:8a:8e:bf:f5:43:8c:66:92:07:2a:8b:ce:24:b2:
fa:36:25:96:07:e4:42:76:82:fc:10:b4:28:07:aa:50:2a:f2:
10:25:32:49:1b:ca:7c:cc:c0:64:4d:68:a8:00:ee:9c:a1:80:
0c:b4:e0:ce:de:41:1e:57:6e:de:7a:7a:17:97:b8:01:eb:0b:
15:11:26:26:2e:c4:d9:4f:ae:40:92:aa:c2:c1:69:cf:f9:f1:
f0:d7:0e:cc:6d:da:7a:5a:8c:df:c3:85:94:8a:64:28:e9:72:
3e:f8:47:ec:2b:f5:7e:d5:9c:75:49:4c:17:fb:f1:d2:3e:72:
b6:99:d0:ef:e8:02:c0:7d:f2:0c:5b:ae:c8:08:6e:b4:60:84:
04:51:12:86:1c:d1:49:9e:1d:99:0e:28:2c:cb:e0:7f:34:03:
bc:24:3b:b5:d8:a4:57:c5:72:c7:3e:e8:52:27:0d:30:f2:07:
a6:82:6d:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 19 13:46:35 2024 by rpki-client on console-fra.rpki-client.org