Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/37382e32342e3132362e302f32332d3234203d3e20383334.roa
File: 37382e32342e3132362e302f32332d3234203d3e20383334.roa (raw, json)
Hash identifier: n7z0yso/L5007b7iO4zkBoC1Ekv5pyz0ApohL9qrB5k=
Subject key identifier: AD:59:49:ED:6E:86:F4:CF:52:2D:E0:81:51:3D:1B:43:4F:0A:BD:35
Certificate issuer: /CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444
Certificate serial: 4327DBE1493A839F8F81AC6CF5105897F7B586CF
Authority key identifier: D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/37382e32342e3132362e302f32332d3234203d3e20383334.roa
Signing time: Sat 01 Jun 2024 00:01:45 +0000
ROA not before: Fri 31 May 2024 23:56:45 +0000
ROA not after: Sat 31 May 2025 00:01:45 +0000
asID: 834
IP address blocks: 78.24.126.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Jul 2024 20:40:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:27:db:e1:49:3a:83:9f:8f:81:ac:6c:f5:10:58:97:f7:b5:86:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444
Validity
Not Before: May 31 23:56:45 2024 GMT
Not After : May 31 00:01:45 2025 GMT
Subject: CN=AD5949ED6E86F4CF522DE081513D1B434F0ABD35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:48:bd:d9:d9:df:92:9c:2f:3e:86:2c:72:e3:
f2:a7:43:be:59:88:34:1b:3c:bc:ac:b4:95:a8:52:
40:f5:27:a5:9a:5c:2d:75:04:bf:e1:2c:c4:21:51:
ed:90:6e:59:8e:af:7a:ab:f7:e7:86:53:31:be:b5:
7a:2a:ee:a5:ac:54:97:e0:06:10:8f:fe:65:4a:97:
5a:de:ae:de:0b:4c:5f:91:8a:d8:d1:d0:1e:10:c1:
df:80:46:3c:b5:0e:5e:ff:ff:cc:15:93:d8:32:c2:
92:12:b2:0d:22:3d:e7:2b:19:c8:a0:e5:08:d8:31:
87:22:bc:37:3e:c1:a0:46:a0:d4:81:fb:00:4b:28:
dc:17:21:65:fc:71:6b:bf:9d:aa:22:0a:46:5a:fc:
54:a1:79:f1:6b:6b:39:a9:f4:fd:ce:9f:4b:e9:93:
6b:8f:44:db:50:02:cc:ec:df:58:22:86:12:db:e6:
3c:de:fe:6e:e4:09:70:75:07:ea:94:48:86:b2:34:
23:45:85:77:80:f7:88:3c:1c:71:5d:e7:9e:76:93:
c4:39:58:e8:64:6d:46:e2:ca:0e:39:5d:6e:8f:6f:
f2:bf:a4:cf:1c:88:3f:44:0b:b1:4c:b8:7d:9f:cb:
f3:b5:89:d7:45:04:f3:a2:28:87:2c:d8:61:c8:3a:
15:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:59:49:ED:6E:86:F4:CF:52:2D:E0:81:51:3D:1B:43:4F:0A:BD:35
X509v3 Authority Key Identifier:
keyid:D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/37382e32342e3132362e302f32332d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.24.126.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:bc:cf:c6:be:6e:69:0d:84:54:ab:c1:0f:f9:a7:ab:01:3f:
e1:05:ad:c6:fd:1b:0f:ea:39:5b:b0:85:ba:15:14:64:b7:e5:
98:6b:bc:eb:f8:31:b7:72:df:a0:13:ea:15:17:1a:c2:a7:94:
ed:79:b2:3f:f8:c6:d1:17:e2:61:20:fd:7c:07:2f:aa:87:6a:
d6:60:90:f1:73:87:fd:86:9c:9b:0b:6f:ed:0e:55:da:d1:22:
d9:5e:96:40:7c:57:33:53:da:f8:9b:13:99:32:77:89:2d:88:
2a:40:38:09:ea:1e:b5:dc:57:9e:8a:c9:6d:a3:76:17:9e:5f:
42:f8:98:3a:73:f2:77:1f:59:3e:0a:e5:1e:67:3d:da:13:a9:
a4:c7:95:89:3b:a2:37:b9:e7:44:5c:84:92:3f:b3:11:a3:16:
47:c7:7d:b6:76:a4:ae:a8:ac:a4:85:64:df:49:c1:ea:98:24:
bc:22:c4:2d:39:ee:ab:e4:15:9f:8f:06:8e:1f:fa:e7:a5:31:
a6:33:93:73:ab:9f:3e:d4:c6:1f:9e:86:b1:b5:6f:d4:33:c7:
17:53:bd:55:ad:14:ab:f8:c0:0e:9c:78:18:47:5f:bb:3c:63:
12:80:dd:41:8a:27:fd:23:54:a2:30:da:ba:d3:06:8c:a2:1b:
cd:fd:85:ad
-----BEGIN CERTIFICATE-----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Generated at Tue Jul 23 22:49:40 2024 by rpki-client on console-ams.rpki-client.org