Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/3130392e3137352e3132382e302f31372d3137203d3e203432363839.roa
File: 3130392e3137352e3132382e302f31372d3137203d3e203432363839.roa (raw, json)
Hash identifier: O37/p9vrIeJ+63SU/Kos4gA540MkXO9VJ3BDzf/gpao=
Subject key identifier: B6:0E:B7:2A:40:C8:9E:F9:52:57:28:ED:0F:95:00:B2:2C:CD:9F:BF
Certificate issuer: /CN=735d93706cbf4688ce7d60fc0ed693d4cc4a9326
Certificate serial: 3A4F3B6F417B563761C3A1D441E61E8FDD384962
Authority key identifier: 73:5D:93:70:6C:BF:46:88:CE:7D:60:FC:0E:D6:93:D4:CC:4A:93:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c12TcGy_RojOfWD8DtaT1MxKkyY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/3130392e3137352e3132382e302f31372d3137203d3e203432363839.roa
Signing time: Tue 19 Mar 2024 10:23:50 +0000
ROA not before: Tue 19 Mar 2024 10:18:50 +0000
ROA not after: Tue 18 Mar 2025 10:23:50 +0000
asID: 42689
IP address blocks: 109.175.128.0/17 maxlen: 17
Validation: Failed, certificate revoked on Thu 07 Nov 2024 10:44:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:4f:3b:6f:41:7b:56:37:61:c3:a1:d4:41:e6:1e:8f:dd:38:49:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=735d93706cbf4688ce7d60fc0ed693d4cc4a9326
Validity
Not Before: Mar 19 10:18:50 2024 GMT
Not After : Mar 18 10:23:50 2025 GMT
Subject: CN=B60EB72A40C89EF9525728ED0F9500B22CCD9FBF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:56:d6:88:0d:c8:14:db:30:03:05:17:11:57:
c2:44:b0:d2:37:1b:be:0c:99:10:71:03:30:cd:52:
0e:74:5e:c1:e6:e4:38:58:d4:a0:b3:be:16:b2:7f:
60:4e:42:4a:61:93:e0:26:40:ea:d5:53:1c:08:70:
f3:b1:59:68:69:14:92:d7:bd:19:2d:a8:63:52:27:
09:6c:07:3e:19:56:19:39:83:66:9b:69:a8:3f:ac:
35:8e:15:d9:99:7c:05:ed:a5:ab:f5:df:e3:5c:23:
96:da:6d:9c:47:61:5e:30:55:56:78:c8:13:12:5d:
ac:ff:74:27:75:a6:48:eb:b1:ab:15:5d:4b:fe:95:
01:22:60:fd:09:f4:90:0d:5e:10:6d:fa:53:df:90:
2b:2e:3a:90:b3:10:20:9e:ef:6d:ea:bc:4e:09:90:
f6:f6:17:78:d0:83:9c:44:27:f0:8f:7a:c0:b0:32:
2c:b4:c3:2b:4a:59:12:c7:40:54:fb:84:6f:60:d1:
7f:dc:b0:9c:e9:b2:88:72:34:de:cf:6f:ac:e3:5f:
aa:87:1f:c1:ec:40:fa:ce:d6:37:00:49:03:4d:3a:
18:49:b8:49:51:c6:d1:66:ee:63:ed:e9:c9:22:6f:
79:94:f5:c8:c5:55:70:4d:87:da:06:d1:ca:1a:a0:
11:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:0E:B7:2A:40:C8:9E:F9:52:57:28:ED:0F:95:00:B2:2C:CD:9F:BF
X509v3 Authority Key Identifier:
keyid:73:5D:93:70:6C:BF:46:88:CE:7D:60:FC:0E:D6:93:D4:CC:4A:93:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/735D93706CBF4688CE7D60FC0ED693D4CC4A9326.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c12TcGy_RojOfWD8DtaT1MxKkyY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2e6da5c7-670a-41b1-96eb-3899388b292c/0/3130392e3137352e3132382e302f31372d3137203d3e203432363839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.175.128.0/17
Signature Algorithm: sha256WithRSAEncryption
a6:97:af:fc:57:d4:0d:bb:53:16:eb:5f:9c:ad:df:e3:4d:91:
fe:d2:7f:e9:6f:ba:a0:2a:c7:7f:90:58:0e:b7:23:13:f6:39:
fa:b8:b9:b7:e9:8a:db:dd:bd:c4:d0:2d:7c:5e:20:4e:d2:3a:
60:b9:5b:75:54:9b:a1:b3:89:20:58:93:e9:b9:f4:42:b0:f9:
0f:ff:3b:fa:81:eb:50:c8:1d:2f:fa:f9:26:ab:a4:28:95:4d:
30:a0:f8:f3:10:8c:46:92:0b:6f:16:aa:b6:50:14:eb:ea:8b:
9d:fe:f0:90:36:77:3d:20:e9:cd:39:7e:65:17:bc:44:c7:68:
35:36:64:8f:a5:6f:db:a6:a5:ca:b3:7e:57:ca:99:bf:6f:70:
f2:d4:9d:eb:6a:16:8e:8a:bd:d7:e9:b4:b6:7e:bf:71:50:23:
aa:c8:dd:7b:7e:42:80:da:07:01:a9:ec:0b:92:0e:bc:84:c5:
49:c7:af:90:e6:2d:73:bf:ce:4f:b8:69:9d:66:be:c9:64:3c:
3e:5b:67:75:63:65:43:c9:10:20:27:d9:97:de:98:9e:1f:05:
93:52:5d:44:bf:a4:84:f0:01:1e:f9:2f:47:3e:a0:81:75:be:
fa:92:15:f6:83:b7:a6:42:86:48:a9:ec:3f:d2:53:0a:b0:96:
35:c8:cc:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 7 14:04:44 2024 by rpki-client on console-ams.rpki-client.org