Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/352e3138302e3134382e302f32332d3234203d3e20323131343339.roa
File: 352e3138302e3134382e302f32332d3234203d3e20323131343339.roa (raw, json)
Hash identifier: knPX0XTmMpBcydyWksvI4PR+4gRXRR9ao93DfjEyI9Y=
Subject key identifier: B3:01:B9:66:E6:0B:3F:48:89:C5:2A:29:A5:E3:B6:5E:CB:19:6F:F8
Certificate issuer: /CN=08fb9ba827e6f10a7af37490803dd5a076397235
Certificate serial: 2F2B840927D4E3EFA2F9E09029827758534579A6
Authority key identifier: 08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/352e3138302e3134382e302f32332d3234203d3e20323131343339.roa
Signing time: Wed 04 Oct 2023 13:16:46 +0000
ROA not before: Wed 04 Oct 2023 13:11:46 +0000
ROA not after: Wed 02 Oct 2024 13:16:46 +0000
asID: 211439
IP address blocks: 5.180.148.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 05:10:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:2b:84:09:27:d4:e3:ef:a2:f9:e0:90:29:82:77:58:53:45:79:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fb9ba827e6f10a7af37490803dd5a076397235
Validity
Not Before: Oct 4 13:11:46 2023 GMT
Not After : Oct 2 13:16:46 2024 GMT
Subject: CN=B301B966E60B3F4889C52A29A5E3B65ECB196FF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:59:95:61:7e:6f:da:36:d8:7b:fe:00:d7:89:
d4:4a:a3:4e:a3:a7:83:f2:d6:e1:d6:c9:75:04:2f:
0c:62:4c:7e:76:2f:88:61:10:c6:ab:93:8f:ad:5b:
3c:80:fa:96:69:11:b0:1a:c4:90:fd:f0:cd:61:4b:
c7:ef:bd:9e:ff:cb:68:e7:63:5c:37:2e:d7:cc:38:
b6:04:7a:c5:7c:1a:13:18:7b:ac:81:af:18:c1:26:
ad:f8:e8:b5:19:92:90:c5:20:d4:f7:fa:07:59:df:
55:d8:1e:df:a8:d5:13:fc:11:b7:9a:ea:d9:94:1f:
98:46:10:e0:e3:c3:cf:eb:fc:54:d0:f1:7a:86:31:
9f:d7:63:34:3e:a5:30:a1:6e:ab:7a:2a:26:fd:5c:
ea:92:c4:86:ab:af:01:3f:3e:2b:7c:00:d1:d7:9d:
a0:b2:75:11:aa:d6:cc:ee:c2:7f:d1:05:b8:36:7d:
9f:cb:08:59:86:b7:15:97:3a:17:62:8d:33:43:94:
3e:83:8e:fe:b5:07:3a:f6:52:61:ec:82:d8:f8:78:
e6:b7:44:c7:0d:43:c9:e9:0b:f0:95:59:47:b7:34:
7f:61:2c:dc:4e:6a:bb:03:1d:30:03:06:28:dd:87:
91:e0:b1:99:98:03:a2:d1:1c:53:b4:03:82:a6:61:
8c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:01:B9:66:E6:0B:3F:48:89:C5:2A:29:A5:E3:B6:5E:CB:19:6F:F8
X509v3 Authority Key Identifier:
keyid:08:FB:9B:A8:27:E6:F1:0A:7A:F3:74:90:80:3D:D5:A0:76:39:72:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/08FB9BA827E6F10A7AF37490803DD5A076397235.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPubqCfm8Qp683SQgD3VoHY5cjU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/2/352e3138302e3134382e302f32332d3234203d3e20323131343339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.148.0/23
Signature Algorithm: sha256WithRSAEncryption
08:64:24:b1:68:5c:46:d9:b9:62:4b:b4:58:b5:a8:eb:a3:7c:
36:03:49:c7:e4:b4:a2:81:cb:56:63:9a:23:50:15:d6:e3:d1:
ff:57:13:32:42:de:89:19:63:89:62:f0:f7:40:b6:1b:a4:61:
89:58:92:d1:79:03:10:1f:22:f7:c9:78:84:d5:f3:c5:fc:1e:
42:72:b4:6c:97:10:42:e2:9a:73:38:a3:23:0f:87:23:a2:c2:
72:f3:ef:9d:ed:74:b5:ce:6b:84:37:02:9f:76:61:d1:cb:16:
d0:c0:cb:b4:df:d3:e2:fc:2d:b6:98:87:10:99:c0:e6:f6:37:
1f:2f:f2:30:8d:7a:e8:64:7a:41:19:cf:28:29:be:cf:59:d0:
36:67:21:90:01:3c:47:64:0c:3b:05:24:cb:15:92:c9:0f:5a:
c3:d1:ce:30:32:83:a7:bb:74:ab:7c:c2:73:b2:02:47:8f:01:
43:ed:06:a3:32:9a:b9:06:f5:c5:d4:07:5b:ce:e1:14:48:b7:
e5:ad:2e:3e:9e:e0:34:b3:7f:67:cf:b9:5d:23:11:04:1c:e7:
1c:98:79:0d:e6:6b:85:80:1d:22:07:37:72:80:ed:ed:9e:8a:
ef:ce:ad:5b:19:f5:7b:3b:52:8c:5d:2e:fc:5d:4d:9b:9c:57:
2f:8f:70:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org