Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/37382e32342e3132362e302f32332d3234203d3e20383334.roa
File: 37382e32342e3132362e302f32332d3234203d3e20383334.roa (raw, json)
Hash identifier: yJYsZov3P77qjRPRzR9C3W8zRn03cagLQTHOd2fJpOA=
Subject key identifier: 30:65:F6:3E:7D:62:D5:7F:17:DF:85:2B:BB:8C:A6:03:2A:27:CE:B0
Certificate issuer: /CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444
Certificate serial: 5B3CDAC68AC2C6019229B814AED4E3B73989CFD8
Authority key identifier: D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/37382e32342e3132362e302f32332d3234203d3e20383334.roa
Signing time: Sun 15 Oct 2023 00:00:07 +0000
ROA not before: Sat 14 Oct 2023 23:55:07 +0000
ROA not after: Sun 13 Oct 2024 00:00:07 +0000
asID: 834
IP address blocks: 78.24.126.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Mar 2024 16:43:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:3c:da:c6:8a:c2:c6:01:92:29:b8:14:ae:d4:e3:b7:39:89:cf:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444
Validity
Not Before: Oct 14 23:55:07 2023 GMT
Not After : Oct 13 00:00:07 2024 GMT
Subject: CN=3065F63E7D62D57F17DF852BBB8CA6032A27CEB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:0e:a1:cb:9b:34:f5:4b:15:1d:0e:00:df:71:
c7:78:6e:63:6b:f7:61:20:08:f4:cb:34:11:8d:0b:
64:1b:6e:db:b2:66:c9:37:2c:9c:e0:74:5e:77:25:
51:a4:0c:54:0f:0b:1c:28:52:50:3e:09:b0:93:bf:
dd:9d:02:1d:6a:27:57:60:36:a8:0b:e5:e5:17:62:
97:1d:48:50:1a:34:6b:fa:bb:6f:27:aa:e7:a5:f9:
b4:7f:88:37:0a:bf:c5:69:7d:b1:70:f6:86:11:ec:
a2:0b:3c:3b:17:c4:eb:bf:08:92:af:23:dc:20:d7:
a1:dd:b3:81:0d:b3:60:1c:28:1c:50:dd:81:87:88:
1b:bc:11:8c:5d:c5:23:0d:9d:84:3f:25:65:73:d9:
32:44:61:c4:d3:05:33:10:99:cf:0d:a0:34:79:1a:
21:10:11:c6:06:85:16:e2:6f:9a:63:b3:b5:7e:e8:
1b:a0:3c:36:05:08:78:e7:b7:80:82:7c:54:93:2d:
dd:4e:7e:4b:43:45:75:99:2e:41:ef:9d:e4:48:7c:
5b:21:6b:dc:20:00:24:59:d0:db:dc:85:55:4c:10:
58:ac:5a:71:6d:78:9e:b8:70:95:c6:85:b1:63:e5:
4b:f4:8e:dc:e9:3f:6e:ad:4d:08:21:c8:7f:db:7b:
ff:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:65:F6:3E:7D:62:D5:7F:17:DF:85:2B:BB:8C:A6:03:2A:27:CE:B0
X509v3 Authority Key Identifier:
keyid:D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/37382e32342e3132362e302f32332d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.24.126.0/23
Signature Algorithm: sha256WithRSAEncryption
33:54:b1:4c:3f:a0:9f:b8:2e:17:68:1d:cd:2f:c6:4d:f8:a0:
71:21:8a:92:26:72:70:2f:70:3b:68:c5:70:e0:d2:b7:b3:c3:
33:64:84:99:1f:64:19:c5:60:07:46:38:a8:ea:0c:c8:6d:79:
14:56:a0:92:49:5b:a7:ae:34:f0:bc:cc:81:ed:51:cb:cc:dc:
4b:20:cd:64:6f:1a:04:03:59:9d:a9:be:72:84:5a:da:ff:c2:
2c:ad:39:ad:8a:08:28:6a:fc:bd:ec:a2:a7:ef:1f:72:78:ae:
9d:fe:80:b2:9d:81:f5:2a:2c:c4:ea:5e:a7:83:b4:9b:87:d2:
7d:ce:22:c6:95:0a:9f:87:f8:57:39:41:3a:97:c6:d6:17:e4:
e2:42:3a:f8:7f:37:c5:5f:08:7b:8b:54:fc:3f:04:79:8e:ee:
ae:17:10:b1:18:ec:28:57:bf:28:3c:0f:18:70:cf:3d:ab:4f:
b7:1b:45:ce:53:bf:98:5d:a2:ba:78:56:1a:c4:00:98:14:6c:
61:05:14:b2:d6:f2:9b:c4:c3:a9:e8:13:49:d0:60:38:bb:f0:
8e:67:28:1a:45:0c:41:2d:97:9a:a7:61:32:3b:b8:ca:ff:bf:
8c:db:be:0b:39:e9:b8:85:88:fa:58:5a:2d:30:76:f5:7b:2b:
8c:94:b0:26
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgIUWzzaxorCxgGSKbgUrtTjtzmJz9gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZDAxYmEwMTNiYzFlNmQ4NmYwZDZkNThlYWZhNTRlMjdm
YWRhMzQ0NDAeFw0yMzEwMTQyMzU1MDdaFw0yNDEwMTMwMDAwMDdaMDMxMTAvBgNV
BAMTKDMwNjVGNjNFN0Q2MkQ1N0YxN0RGODUyQkJCOENBNjAzMkEyN0NFQjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpDqHLmzT1SxUdDgDfccd4bmNr
92EgCPTLNBGNC2QbbtuyZsk3LJzgdF53JVGkDFQPCxwoUlA+CbCTv92dAh1qJ1dg
NqgL5eUXYpcdSFAaNGv6u28nquel+bR/iDcKv8VpfbFw9oYR7KILPDsXxOu/CJKv
I9wg16Hds4ENs2AcKBxQ3YGHiBu8EYxdxSMNnYQ/JWVz2TJEYcTTBTMQmc8NoDR5
GiEQEcYGhRbib5pjs7V+6BugPDYFCHjnt4CCfFSTLd1OfktDRXWZLkHvneRIfFsh
a9wgACRZ0NvchVVMEFisWnFteJ64cJXGhbFj5Uv0jtzpP26tTQghyH/be/+JAgMB
AAGjggI3MIICMzAdBgNVHQ4EFgQUMGX2Pn1i1X8X34Uru4ymAyonzrAwHwYDVR0j
BBgwFoAU0BugE7webYbw1tWOr6VOJ/raNEQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYTUyMmE1MmYtNjUzNC00MTY1LWE2YTctZWY5Zjc0ZWY5
NDMxLzEvRDAxQkEwMTNCQzFFNkQ4NkYwRDZENThFQUZBNTRFMjdGQURBMzQ0NC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBCdWdFN3dlYllidzF0V09yNlZPSl9y
YU5FUS5jZXIwgacGCCsGAQUFBwELBIGaMIGXMIGUBggrBgEFBQcwC4aBh3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYTUyMmE1MmYt
NjUzNC00MTY1LWE2YTctZWY5Zjc0ZWY5NDMxLzEvMzczODJlMzIzNDJlMzEzMjM2
MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBThh+MA0G
CSqGSIb3DQEBCwUAA4IBAQAzVLFMP6CfuC4XaB3NL8ZN+KBxIYqSJnJwL3A7aMVw
4NK3s8MzZISZH2QZxWAHRjio6gzIbXkUVqCSSVunrjTwvMyB7VHLzNxLIM1kbxoE
A1mdqb5yhFra/8IsrTmtiggoavy97KKn7x9yeK6d/oCynYH1KizE6l6ng7Sbh9J9
ziLGlQqfh/hXOUE6l8bWF+TiQjr4fzfFXwh7i1T8PwR5ju6uFxCxGOwoV78oPA8Y
cM89q0+3G0XOU7+YXaK6eFYaxACYFGxhBRSy1vKbxMOp6BNJ0GA4u/COZygaRQxB
LZeap2EyO7jK/7+M274LOem4hYj6WFotMHb1eyuMlLAm
Generated at Thu Mar 21 20:35:49 2024 by rpki-client on console-fra.rpki-client.org