Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/33362e3235352e39322e302f32332d3234203d3e20313334383233.roa
File: 33362e3235352e39322e302f32332d3234203d3e20313334383233.roa (raw, json)
Hash identifier: D2qLwjK8QkA71zShTm3nPHH5alxIdz6jf59fUnn7A7o=
Subject key identifier: 6C:C6:A6:3E:10:24:73:27:4D:41:77:D4:95:D3:64:37:E0:5E:CB:F6
Certificate issuer: /CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Certificate serial: 2E20298280A978DAE18B4622F3A33EBFFE3E8B9C
Authority key identifier: 3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/33362e3235352e39322e302f32332d3234203d3e20313334383233.roa
Signing time: Wed 05 Apr 2023 09:18:00 +0000
ROA not before: Wed 05 Apr 2023 09:13:00 +0000
ROA not after: Wed 03 Apr 2024 09:18:00 +0000
asID: 134823
IP address blocks: 36.255.92.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Jan 2024 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:20:29:82:80:a9:78:da:e1:8b:46:22:f3:a3:3e:bf:fe:3e:8b:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Validity
Not Before: Apr 5 09:13:00 2023 GMT
Not After : Apr 3 09:18:00 2024 GMT
Subject: CN=6CC6A63E102473274D4177D495D36437E05ECBF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c9:1a:b7:ed:94:96:2e:65:a6:88:0f:67:62:
32:0c:d8:5f:16:c8:2a:f5:0f:83:1f:6e:a3:5d:f3:
92:97:78:19:b8:2f:18:09:f8:49:ea:3c:46:41:55:
4b:59:26:78:43:88:bd:08:6d:e8:e2:b5:09:ef:55:
98:22:c5:b2:d4:d7:fb:8d:9f:15:b0:81:43:c7:bc:
36:16:f2:91:30:62:17:2a:67:52:46:6f:60:c9:de:
54:83:b4:c7:1f:35:c8:06:8a:6d:85:e3:9d:d8:3a:
0f:56:10:d9:de:19:1b:7d:0e:1e:f1:f0:b0:e5:96:
c0:1c:d4:58:df:da:b0:95:aa:b2:83:01:bc:03:b7:
56:87:c4:ee:52:ec:e2:b6:e7:a5:2a:76:2b:b8:7c:
1d:5f:12:6a:8a:f8:9d:81:22:1a:ed:74:a9:af:c7:
33:20:49:c7:5c:39:69:e9:d6:14:26:99:52:55:79:
2d:9a:8d:f3:18:24:cb:8b:27:4f:b8:60:0e:8a:c3:
38:0b:4f:f2:29:74:64:7d:4b:42:93:a5:49:17:bf:
9f:a1:c6:58:fe:6c:71:85:0a:0e:ee:c5:2d:7d:01:
c0:1a:43:04:fe:ba:ba:4e:4e:b8:0b:45:73:5c:ad:
d3:38:56:a4:fc:f6:23:e4:5d:f8:c6:2a:00:9b:63:
9b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:C6:A6:3E:10:24:73:27:4D:41:77:D4:95:D3:64:37:E0:5E:CB:F6
X509v3 Authority Key Identifier:
keyid:3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/33362e3235352e39322e302f32332d3234203d3e20313334383233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
36.255.92.0/23
Signature Algorithm: sha256WithRSAEncryption
af:7e:8d:f4:f0:c1:4e:b9:5e:63:32:44:91:f1:86:aa:68:c8:
24:40:70:ca:42:59:c0:7a:ec:d1:1c:91:c4:6d:e6:06:44:d6:
26:d8:98:c5:c9:dd:56:29:6f:ec:41:9c:db:ea:20:4a:ce:7e:
27:b9:7f:de:9c:3b:21:37:3e:54:47:2c:04:fc:2b:06:8c:2c:
7b:08:9b:4c:53:34:4f:64:a6:61:b5:86:7e:d6:17:81:c4:ab:
b0:9a:37:1b:e7:99:cb:bc:8c:fe:69:7c:67:bf:10:ae:62:92:
77:6f:85:d5:ca:7c:dc:ba:88:32:3b:f1:8d:90:49:65:ec:fc:
ec:42:84:e8:85:c9:1a:19:6a:35:31:4c:ef:0c:b9:de:03:2e:
60:90:21:73:d7:ba:81:ed:a7:49:26:af:a9:18:c3:23:67:23:
74:05:42:28:79:1e:eb:2a:69:a3:ed:1b:1c:47:1f:bf:e1:ff:
99:b5:3d:a7:82:c5:d2:0b:f6:a7:a0:35:72:0c:eb:b4:39:af:
56:8c:11:59:5b:0a:4d:b4:c7:8d:aa:f5:90:67:70:1b:d4:6f:
49:20:d7:45:b9:2f:e5:eb:6d:4b:9a:09:2e:ac:03:15:68:fc:
35:c4:ba:07:24:2f:ae:fa:71:e9:8f:2e:02:40:9b:ab:af:b2:
9e:a0:74:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 01:04:08 2024 by rpki-client on console-ams.rpki-client.org