Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/37382e32342e3132362e302f32332d3234203d3e2033323537.roa
File: 37382e32342e3132362e302f32332d3234203d3e2033323537.roa (raw, json)
Hash identifier: QcLdXj1Hvk4MCDKvIqWx1IrkVfoNU58Gyw0eas9iTKk=
Subject key identifier: 12:89:C3:12:12:03:E3:B5:9A:EB:E6:07:64:72:FF:F9:69:66:32:C3
Certificate issuer: /CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444
Certificate serial: 3C1C2FAD0B89E4AFE113CC8CB3F51CF4D991F7DE
Authority key identifier: D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/37382e32342e3132362e302f32332d3234203d3e2033323537.roa
Signing time: Wed 14 Jun 2023 20:30:16 +0000
ROA not before: Wed 14 Jun 2023 20:25:16 +0000
ROA not after: Wed 12 Jun 2024 20:30:16 +0000
asID: 3257
IP address blocks: 78.24.126.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:1c:2f:ad:0b:89:e4:af:e1:13:cc:8c:b3:f5:1c:f4:d9:91:f7:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444
Validity
Not Before: Jun 14 20:25:16 2023 GMT
Not After : Jun 12 20:30:16 2024 GMT
Subject: CN=1289C3121203E3B59AEBE6076472FFF9696632C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1d:35:b4:1b:40:66:b3:56:33:76:c1:0a:bf:
40:76:3c:8d:56:26:12:43:3e:74:6b:1f:e8:86:3f:
c4:a5:9f:17:1b:70:49:19:2f:4b:e5:65:49:98:f4:
5f:84:c0:a8:bf:f6:f2:98:bd:44:bc:b3:29:d1:f7:
6d:1d:46:02:cb:1f:c3:af:2d:a9:0b:7a:17:5a:af:
73:30:e2:6e:4d:78:20:26:4f:e8:5d:73:eb:02:77:
c6:aa:28:58:19:7e:4a:4f:0c:97:51:20:df:99:ab:
88:47:44:80:36:fd:b2:4e:3f:8e:e9:3d:c5:78:13:
ef:c3:11:8c:8b:ac:2d:ae:17:7f:21:95:09:51:28:
d1:7f:ca:ed:bd:49:29:f8:aa:4f:ee:86:66:12:7e:
bb:96:0f:d3:1f:af:98:75:89:c7:95:b3:f4:5d:01:
18:77:ea:80:1d:76:3c:02:a0:a4:3f:1c:10:fa:de:
3a:16:b0:84:57:a4:0e:84:40:40:8d:ba:8b:c9:6a:
96:b8:89:9c:17:5e:0d:03:2a:f1:db:1a:aa:d5:40:
d3:62:cf:4e:dd:fe:74:b3:da:cc:ff:cd:b0:66:0b:
cc:77:64:93:29:d4:0b:df:5f:7c:fc:7e:67:c0:a4:
56:e8:27:75:b0:fe:c9:0a:49:0d:60:8b:fe:64:94:
21:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:89:C3:12:12:03:E3:B5:9A:EB:E6:07:64:72:FF:F9:69:66:32:C3
X509v3 Authority Key Identifier:
keyid:D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/37382e32342e3132362e302f32332d3234203d3e2033323537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.24.126.0/23
Signature Algorithm: sha256WithRSAEncryption
50:51:2e:94:b5:8b:a8:c0:97:71:d4:84:d9:16:99:de:cf:b2:
3b:2a:93:16:11:6e:fe:75:c5:47:aa:b8:2d:35:3e:a1:e9:f8:
e3:cc:b7:57:3a:bd:b9:ef:63:35:64:68:22:28:d9:93:55:bb:
b7:f0:8d:ca:8c:17:ba:55:05:9c:50:1f:cb:31:4e:10:5e:21:
3c:54:8c:1d:86:1e:65:49:cc:81:71:6d:38:97:91:fd:ba:63:
a6:fd:7f:4b:18:37:dc:dd:60:92:e7:16:e1:2b:75:df:20:49:
11:0a:51:b5:b4:9f:86:dd:f7:67:a9:c3:10:89:38:60:51:6c:
e6:9b:2f:fd:bd:75:a5:81:21:0c:e4:aa:25:8c:9f:10:c3:d1:
d1:b1:a7:11:33:fd:fb:b6:f3:9d:af:74:9d:e9:71:97:bd:f1:
d8:f2:b6:4d:2c:95:08:09:56:c4:24:35:58:09:eb:aa:5d:80:
8e:c0:1a:34:7e:10:b9:7b:ba:29:86:85:f2:1d:6b:b4:8a:21:
57:82:85:e5:4b:0a:6c:31:29:30:f4:37:32:f0:c6:16:1a:20:
7d:ce:b8:5b:eb:bf:f1:93:41:40:ce:01:45:02:87:1b:55:0c:
98:5f:62:48:e1:86:a2:d3:a6:4b:d6:a8:5f:a5:a6:dc:7f:a2:
17:3c:43:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 15 00:46:27 2023 by rpki-client on console-fra.rpki-client.org