Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/2/32332e3136342e3135332e302f32342d3234203d3e203630383538.roa
File: 32332e3136342e3135332e302f32342d3234203d3e203630383538.roa (raw, json)
Hash identifier: 4tT2YebbH/RxmTZXtN1QKk6qJqUyzbfQ+jyAACIXKlo=
Subject key identifier: BA:5D:CF:D4:73:4C:D5:87:93:13:C3:95:85:87:13:F1:D1:98:5B:46
Certificate issuer: /CN=d90d8aba2a75232dac0a4973b29677a14573561ef341199600
Certificate serial: 7617D1C3EB948511FA6D4E5C58D36A4D43290C55
Authority key identifier: 44:17:C6:2B:C8:BB:64:8A:4A:97:DD:F6:50:5C:2E:44:3E:4B:35:FF
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a75232dac0a4973b29677a14573561ef341199600.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/2/32332e3136342e3135332e302f32342d3234203d3e203630383538.roa
Signing time: Wed 22 May 2024 18:36:22 +0000
ROA not before: Wed 22 May 2024 18:31:22 +0000
ROA not after: Wed 21 May 2025 18:36:22 +0000
asID: 60858
IP address blocks: 23.164.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Aug 2024 17:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:17:d1:c3:eb:94:85:11:fa:6d:4e:5c:58:d3:6a:4d:43:29:0c:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d90d8aba2a75232dac0a4973b29677a14573561ef341199600
Validity
Not Before: May 22 18:31:22 2024 GMT
Not After : May 21 18:36:22 2025 GMT
Subject: CN=BA5DCFD4734CD5879313C395858713F1D1985B46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:53:a3:49:03:cd:0f:26:02:e4:75:37:17:12:
0f:c3:e2:e9:6f:f8:f1:14:50:a2:53:f2:0f:25:b0:
0d:86:03:b3:4f:2a:5f:a4:31:8a:d0:7e:3e:e7:dc:
99:1e:7b:49:88:58:8a:3d:d2:13:f7:53:b3:65:d0:
de:a7:1a:b9:d0:9c:d6:dc:5e:0b:63:96:ce:73:5f:
92:60:a9:8a:10:c8:d0:91:31:63:d3:11:bf:cb:9d:
7f:55:e8:fe:eb:22:52:3f:3b:bd:f5:71:6d:eb:65:
02:e0:d3:9c:b9:b4:a1:45:6d:34:98:04:0c:92:ae:
8c:32:0a:53:3a:a6:ba:0f:c8:ef:54:22:8a:ae:88:
bb:c9:32:25:54:d6:81:82:94:fe:68:c7:4b:c3:f2:
d2:7f:73:71:90:99:38:a5:84:30:78:05:4c:37:b1:
eb:9e:f5:36:08:15:55:95:13:b1:e7:60:41:4f:8a:
62:b9:8a:26:36:44:5c:16:43:f2:f6:f0:40:db:88:
3c:0c:77:8a:de:cc:18:ea:5d:d6:26:ce:fe:29:24:
74:fc:ad:7d:82:c5:fb:61:0c:a7:7b:85:8e:35:68:
7f:90:e7:af:58:48:2d:21:34:bf:1a:0a:6a:29:07:
08:9b:36:8c:98:ed:ea:44:22:cf:db:5d:6d:44:1f:
c7:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:5D:CF:D4:73:4C:D5:87:93:13:C3:95:85:87:13:F1:D1:98:5B:46
X509v3 Authority Key Identifier:
keyid:44:17:C6:2B:C8:BB:64:8A:4A:97:DD:F6:50:5C:2E:44:3E:4B:35:FF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/2/4417C62BC8BB648A4A97DDF6505C2E443E4B35FF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a75232dac0a4973b29677a14573561ef341199600.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/2/32332e3136342e3135332e302f32342d3234203d3e203630383538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.164.153.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:94:af:67:b2:df:cd:c1:b5:93:b3:d4:d2:1f:74:89:3f:bd:
b2:24:b6:58:85:b8:c7:25:e9:37:73:00:2f:8e:86:d9:d6:f2:
24:84:9e:6c:eb:bc:ca:bb:b1:74:b2:9a:71:41:c0:35:8f:50:
5c:6c:1c:f8:3d:7d:14:fc:fc:40:ed:b9:9e:ac:34:d3:2b:93:
43:c6:db:2b:2e:9a:ff:d3:84:65:7e:ed:a9:c9:26:16:e4:35:
8f:76:63:c8:b1:42:2d:90:52:ea:26:62:92:b4:c8:ea:4b:8f:
2a:72:7c:14:79:0b:99:a7:bb:9c:ca:dd:2c:7f:e1:09:41:70:
dc:f8:26:0a:43:14:1d:47:97:59:e8:48:8e:b4:0b:df:e8:15:
66:86:fe:2d:25:bd:25:1b:7d:14:17:b2:95:fa:4a:ce:91:50:
db:b0:eb:ca:33:c2:da:90:27:91:6b:aa:17:4e:a5:f9:92:32:
ca:b8:79:aa:de:dc:ed:ea:c2:93:7f:0b:d7:e3:fa:49:e2:a4:
af:9b:db:5a:f9:24:a7:92:38:41:1a:de:53:59:57:09:df:62:
c7:5b:62:ea:d4:dd:b8:e1:e7:fd:16:d3:01:d1:f9:23:80:22:
7b:72:12:5e:32:41:85:a5:10:f1:0c:f8:32:b4:a9:9c:8b:dc:
a4:76:ef:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 20 19:03:39 2024 by rpki-client on console-ams.rpki-client.org