Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/5/32332e3137372e38382e302f32342d3234203d3e203630383538.roa
File: 32332e3137372e38382e302f32342d3234203d3e203630383538.roa (raw, json)
Hash identifier: cnGaIIc8xtY/WcY8n2KLRACUnQn1x8YDyrRtdUT6+PY=
Subject key identifier: 44:04:94:0A:1B:36:5A:E5:05:74:BB:A1:1E:F3:90:77:8F:22:34:B7
Certificate issuer: /CN=96a2b0e2d1ed38ae6fa24f6e3eae4950e503abf9957077da6e
Certificate serial: 1BC1861D05DF494B07B13A3F91B3CB4FB2E13D6C
Authority key identifier: 80:2F:06:87:6C:FA:0F:E0:30:90:97:CF:7C:0C:EE:45:53:D2:D2:15
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/3c85ceae-9f38-49c6-ad1e-39e9bfeab158/96a2b0e2d1ed38ae6fa24f6e3eae4950e503abf9957077da6e.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/5/32332e3137372e38382e302f32342d3234203d3e203630383538.roa
Signing time: Wed 22 May 2024 18:35:46 +0000
ROA not before: Wed 22 May 2024 18:30:46 +0000
ROA not after: Wed 21 May 2025 18:35:46 +0000
asID: 60858
IP address blocks: 23.177.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 15 Jun 2024 21:58:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:c1:86:1d:05:df:49:4b:07:b1:3a:3f:91:b3:cb:4f:b2:e1:3d:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96a2b0e2d1ed38ae6fa24f6e3eae4950e503abf9957077da6e
Validity
Not Before: May 22 18:30:46 2024 GMT
Not After : May 21 18:35:46 2025 GMT
Subject: CN=4404940A1B365AE50574BBA11EF390778F2234B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:e1:04:bc:5f:bd:44:0c:5b:60:52:92:2a:04:
32:a7:a8:80:a1:26:32:4c:40:4d:bb:ac:15:77:31:
5a:c9:33:1f:c1:03:19:f8:e1:66:09:37:1c:0c:c8:
c1:e1:82:3a:0e:6f:fb:7e:61:07:13:48:37:4c:1a:
f9:6c:87:ad:dd:5a:22:81:f1:03:d0:c5:9f:30:33:
59:bf:0a:ee:f9:fc:89:f1:7e:1d:5b:4c:ec:c9:8b:
52:ad:9d:9c:2e:f6:22:88:f9:2d:8c:ef:8d:78:82:
0c:31:ff:fc:15:e8:67:a0:75:1a:73:3d:23:2a:99:
63:ce:01:55:9c:5d:32:ad:81:14:e7:c4:19:cc:22:
d2:54:f6:4b:b6:c3:75:33:3c:07:96:21:e3:e4:fe:
41:54:80:2e:09:a0:44:d7:8f:66:86:16:bf:80:d2:
67:7f:f0:84:f6:16:90:44:9e:c3:b1:b0:8c:18:44:
2d:dc:a8:59:9f:4b:e7:68:16:40:9b:14:3e:e8:28:
52:70:55:83:ce:fd:5d:49:63:58:71:97:6f:9a:ff:
70:ae:71:d3:9a:33:cf:03:68:a9:20:0a:98:a1:ea:
a8:8f:73:ec:59:c2:a5:57:23:ae:9c:e1:09:25:20:
30:b5:ae:ee:5c:9c:b2:f1:54:a6:9d:9d:45:86:b0:
0f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:04:94:0A:1B:36:5A:E5:05:74:BB:A1:1E:F3:90:77:8F:22:34:B7
X509v3 Authority Key Identifier:
keyid:80:2F:06:87:6C:FA:0F:E0:30:90:97:CF:7C:0C:EE:45:53:D2:D2:15
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/5/802F06876CFA0FE0309097CF7C0CEE4553D2D215.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/3c85ceae-9f38-49c6-ad1e-39e9bfeab158/96a2b0e2d1ed38ae6fa24f6e3eae4950e503abf9957077da6e.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/5/32332e3137372e38382e302f32342d3234203d3e203630383538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.177.88.0/24
Signature Algorithm: sha256WithRSAEncryption
39:74:15:81:3d:e9:eb:73:43:08:27:bb:89:a0:a2:8b:d0:f0:
17:20:46:2f:3b:f4:37:5a:b6:92:55:85:8f:23:9a:70:58:98:
cd:02:f4:cd:37:16:d9:5c:6a:36:1c:5b:a2:2e:e9:ee:c0:67:
81:86:23:28:d9:ef:6b:af:eb:4c:f1:33:57:0c:26:37:5f:8a:
eb:fd:0e:77:03:ae:5e:a1:c0:1d:60:ea:0a:e1:0f:7c:c7:fc:
8d:9a:50:14:2a:41:53:c9:7d:fa:dc:c9:ff:a9:ee:0d:b6:6a:
32:e3:64:e7:52:16:9d:3a:ad:2b:06:58:f0:4a:05:f6:9c:98:
84:b7:71:80:2e:1c:ea:7d:79:9c:34:3e:e5:73:9a:fc:4b:e7:
59:fa:a8:11:b7:16:00:7d:d6:49:44:1d:fd:e8:ba:3e:5a:eb:
c5:15:c2:d2:a0:9c:60:9c:fe:63:7e:21:4a:8b:3c:19:74:c1:
71:ad:97:24:58:68:f2:f0:71:17:d3:0c:ea:ba:c7:9a:3f:50:
b0:0d:ab:ca:bd:be:d2:a7:f3:c4:26:7d:69:5f:c9:00:da:9a:
ce:6d:2f:f1:88:11:3c:4d:bb:16:10:79:e8:12:56:77:7f:53:
43:26:bb:77:88:10:4f:e9:f7:ab:e7:c1:6b:eb:60:9f:db:43:
4b:e8:af:be
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Jun 15 23:54:24 2024 by rpki-client on console-ams.rpki-client.org