Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/37382e32342e3132362e302f32332d3234203d3e20323036313139.roa
File: 37382e32342e3132362e302f32332d3234203d3e20323036313139.roa (raw, json)
Hash identifier: 7sg2JcYG/A83ApNT1/rgpqMVEiRcGsrj5/06Ej0v1Aw=
Subject key identifier: F3:CE:16:23:71:FD:A1:CC:9D:8E:09:4E:58:25:F8:BB:83:A1:11:D2
Certificate issuer: /CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444
Certificate serial: 645AEB446E020F6268794190F16632A3D0AE1C65
Authority key identifier: D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/37382e32342e3132362e302f32332d3234203d3e20323036313139.roa
Signing time: Thu 21 Mar 2024 16:43:10 +0000
ROA not before: Thu 21 Mar 2024 16:38:10 +0000
ROA not after: Thu 20 Mar 2025 16:43:10 +0000
asID: 206119
IP address blocks: 78.24.126.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 28 Apr 2024 12:52:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:5a:eb:44:6e:02:0f:62:68:79:41:90:f1:66:32:a3:d0:ae:1c:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444
Validity
Not Before: Mar 21 16:38:10 2024 GMT
Not After : Mar 20 16:43:10 2025 GMT
Subject: CN=F3CE162371FDA1CC9D8E094E5825F8BB83A111D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:9f:b5:33:d0:1b:29:a5:db:9a:1d:55:fc:8f:
2f:03:c9:ad:17:0f:2d:ae:94:19:ca:59:bd:d2:29:
cc:49:4d:55:da:31:d1:28:ee:11:03:f4:fb:89:f9:
b7:03:7f:b2:8a:73:ce:05:1c:cd:b3:42:c8:6a:74:
59:df:28:1a:ff:97:12:d5:ec:6d:96:10:4c:84:f0:
aa:37:c0:bd:87:89:ee:c9:4e:47:01:08:a3:a1:9d:
07:61:6c:cc:91:76:d5:7a:17:46:22:45:6d:b9:42:
79:5d:71:a2:e5:bc:c6:ff:21:e9:88:cf:ab:59:a0:
39:68:04:fb:44:3a:9a:dc:89:55:4e:5b:95:52:1a:
4b:4a:73:d0:d8:97:45:f2:cd:e7:c3:d9:00:82:73:
6e:e4:1d:b8:93:e9:cf:0c:50:a0:cf:07:d9:d0:5c:
36:11:45:81:fb:e6:fd:ba:27:f5:c2:f2:f1:a8:d5:
af:c9:a3:ec:9d:73:cb:22:4d:71:d0:df:f3:80:f9:
c4:0a:d1:3a:92:7f:88:97:21:47:55:6a:da:d7:5e:
4d:0c:62:ea:92:32:17:0c:48:26:85:88:9f:f5:a7:
86:5f:a8:81:0a:d1:f2:49:22:cb:04:91:13:71:d7:
7b:c2:c0:0f:a0:72:34:af:67:3a:49:34:6a:e3:83:
1d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:CE:16:23:71:FD:A1:CC:9D:8E:09:4E:58:25:F8:BB:83:A1:11:D2
X509v3 Authority Key Identifier:
keyid:D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/37382e32342e3132362e302f32332d3234203d3e20323036313139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.24.126.0/23
Signature Algorithm: sha256WithRSAEncryption
7c:01:5d:ae:78:f3:29:92:3e:c0:dc:b4:e2:66:52:9e:fd:27:
6d:34:dd:6c:84:96:a7:3c:d1:c6:b1:61:8e:52:96:4b:cc:35:
f4:a3:05:d4:2b:d8:bf:28:60:e8:8f:1a:02:c7:ca:68:ed:42:
84:65:3e:6a:8a:83:7a:5b:20:db:8d:10:3f:8b:27:6e:06:eb:
0e:4c:ea:a3:51:22:4a:bc:6d:da:c2:bc:28:fb:68:45:d6:e5:
ea:ae:b7:bc:f6:60:e9:ba:5b:0d:4e:d5:94:4a:76:b3:41:ba:
fe:3f:f1:2a:fe:37:14:58:96:72:ed:13:2e:90:92:6c:31:40:
8c:ba:ca:25:cb:34:9b:03:52:85:f5:53:3f:cf:d0:bb:88:a0:
72:c7:88:c5:2b:9b:f6:a7:3a:65:7e:89:8c:57:28:bd:0a:f6:
a0:71:10:81:f5:7b:0a:1d:ac:c8:13:dd:7e:75:b4:4f:03:87:
a5:26:a1:c7:20:5a:2a:81:c9:20:89:c7:f3:09:98:d3:9d:e3:
e3:38:62:45:59:7a:b6:88:ab:3f:41:78:d7:16:96:40:b2:a7:
1d:23:72:be:f0:71:e6:1c:b1:d6:25:76:d5:5c:9d:f2:65:8d:
cd:a1:d1:c4:68:6a:fd:c5:9a:63:09:b8:49:7f:b2:06:53:13:
d2:2c:55:73
-----BEGIN CERTIFICATE-----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Generated at Sun Apr 28 15:55:42 2024 by rpki-client on console-ams.rpki-client.org