Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137352e302f32342d3234203d3e203233343730.roa
File: 3138352e3137322e3137352e302f32342d3234203d3e203233343730.roa (raw, json)
Hash identifier: MN/rzzEWoZz6+eYvs35I5DQTDdNlkq4fpc1YDuuQPRc=
Subject key identifier: 97:E8:20:1F:E2:5C:8A:E1:98:49:0C:51:58:88:F4:A7:F5:46:CB:19
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 20A96BA7AAFAD1EB28C529B5CDE07AF4495C25CA
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137352e302f32342d3234203d3e203233343730.roa
Signing time: Fri 05 Jan 2024 02:34:28 +0000
ROA not before: Fri 05 Jan 2024 02:29:28 +0000
ROA not after: Fri 03 Jan 2025 02:34:28 +0000
asID: 23470
IP address blocks: 185.172.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Feb 2024 09:14:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:a9:6b:a7:aa:fa:d1:eb:28:c5:29:b5:cd:e0:7a:f4:49:5c:25:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Jan 5 02:29:28 2024 GMT
Not After : Jan 3 02:34:28 2025 GMT
Subject: CN=97E8201FE25C8AE198490C515888F4A7F546CB19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:24:be:ac:9e:ac:8a:a7:7d:7a:d8:8d:7a:f4:
07:bc:01:05:b6:5f:fe:34:4c:9f:89:6e:23:57:50:
93:fd:de:4f:5e:f5:b1:c1:4f:94:ed:55:87:67:d3:
40:26:98:0f:ca:76:ac:44:c4:29:88:f7:4a:83:94:
66:9a:f8:23:ad:92:77:01:76:8c:23:8a:c7:42:07:
b8:b4:26:18:87:18:83:b7:73:3f:20:aa:c0:e9:ef:
9f:ed:6f:6b:d5:24:48:cd:cb:1a:74:bb:f1:4e:e2:
8f:88:0c:d1:69:9a:71:4f:5d:6f:90:05:f5:30:4c:
2d:bc:a3:aa:23:0e:c0:0b:92:41:b6:51:24:c0:be:
7b:94:8b:67:8f:00:35:7d:8f:9f:5d:c6:40:17:ac:
2f:1d:3c:ca:61:a4:0a:b9:17:59:9e:9d:fc:67:c7:
9f:26:9d:5f:fa:d7:bd:1c:49:30:aa:75:20:d0:cc:
26:3a:69:e6:43:b9:e4:d0:f6:46:18:db:cc:75:1f:
75:25:e6:38:2b:05:73:f8:94:d3:f3:75:52:8d:6b:
97:83:c0:79:4b:5b:47:24:65:32:4d:76:da:69:44:
b9:4b:a4:0c:17:ba:aa:22:59:8a:17:85:f6:39:f5:
1d:b6:58:02:c1:2a:5b:fd:c3:fb:51:15:f3:4c:09:
31:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:E8:20:1F:E2:5C:8A:E1:98:49:0C:51:58:88:F4:A7:F5:46:CB:19
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137352e302f32342d3234203d3e203233343730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.175.0/24
Signature Algorithm: sha256WithRSAEncryption
99:0c:5a:bd:94:30:c8:4f:45:21:b7:1d:77:74:2f:ee:08:81:
5e:97:24:b9:ac:8b:e6:fa:c7:cb:48:be:8d:7a:fc:dc:29:77:
97:e2:e1:26:65:cc:a9:97:16:ab:04:14:8a:b5:ec:b7:44:e9:
50:09:3f:72:cf:95:69:c8:af:c0:a7:38:ef:20:ed:50:0b:bd:
15:f3:73:f4:d2:8b:2a:62:53:50:2d:56:ea:2e:8e:d2:04:97:
1a:7f:8d:5b:9a:ee:cc:e4:d6:fc:44:bb:76:42:54:29:6c:71:
03:5b:c2:11:90:d8:1d:cf:18:b8:39:05:0a:95:79:fc:eb:3d:
42:00:c9:59:ed:0c:9b:53:bc:5d:ea:72:8d:f4:ec:58:ca:84:
1d:76:d9:13:48:e4:90:55:7e:17:bf:1d:b2:25:f5:2e:ce:bb:
26:2c:bb:f4:80:07:d4:0c:d7:79:3a:c2:1d:d1:36:03:30:7b:
98:07:f0:10:11:70:6e:8c:45:56:dd:3d:1e:73:64:92:bd:c4:
a7:6e:85:a8:d3:37:49:90:9e:6b:1b:3a:b2:6c:4d:f5:6e:96:
7a:f4:b2:52:53:fe:b0:61:fd:ee:46:9f:37:5a:71:d3:dd:3b:
41:ad:ce:50:3d:2d:29:85:0b:a0:8e:7b:33:47:c2:50:0f:f2:
c2:7c:71:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:17 2024 by rpki-client on console-fra.rpki-client.org