Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/322e35382e38342e302f32342d3234203d3e20313938373637.roa
File: 322e35382e38342e302f32342d3234203d3e20313938373637.roa (raw, json)
Hash identifier: W+ld1r93/Idl1z9ioepMNXe+0k7ShdfXGw0nCTI0NrU=
Subject key identifier: C8:E4:DD:32:CF:35:36:34:38:B9:2D:72:63:05:B0:83:07:72:FA:80
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 2B927800124CE0AD29315FD1566094B9D02EB220
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/322e35382e38342e302f32342d3234203d3e20313938373637.roa
Signing time: Thu 08 Jun 2023 18:31:32 +0000
ROA not before: Thu 08 Jun 2023 18:26:32 +0000
ROA not after: Thu 06 Jun 2024 18:31:32 +0000
asID: 198767
IP address blocks: 2.58.84.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:92:78:00:12:4c:e0:ad:29:31:5f:d1:56:60:94:b9:d0:2e:b2:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Jun 8 18:26:32 2023 GMT
Not After : Jun 6 18:31:32 2024 GMT
Subject: CN=C8E4DD32CF35363438B92D726305B0830772FA80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ba:33:af:cc:11:56:57:5f:7b:be:fe:d8:66:
45:3f:63:e6:a4:c2:71:ee:b3:10:47:de:57:1a:1f:
78:f7:8b:70:80:c0:43:2a:c9:86:6d:f8:84:0b:19:
d9:04:69:30:a0:13:c1:9a:6a:5d:e3:76:f8:53:2d:
ed:78:0c:6e:9a:9d:b1:65:ad:c6:2b:6f:48:49:d4:
aa:2b:73:d8:74:20:73:70:69:d2:8e:54:4e:05:e9:
21:11:c5:1a:fe:55:40:26:cd:78:f1:b1:e7:c4:e4:
5c:0c:5c:71:1f:02:79:a4:41:3e:b4:45:4b:b3:53:
60:c3:88:89:3e:95:3f:53:bc:a8:ae:b8:f6:d2:35:
b3:0b:ac:bc:9d:04:0a:f8:5d:ff:a1:f0:6e:50:df:
0c:20:03:e4:1a:49:9e:05:14:5e:eb:f4:46:d6:a6:
2c:e8:98:46:b5:2e:9d:82:27:d6:9e:ee:7c:83:2d:
ac:f2:82:03:d7:08:98:75:06:b5:2b:fc:31:a5:d0:
0c:64:b2:17:29:63:4b:a7:22:59:8c:54:db:0b:e8:
38:93:a6:f0:b6:cb:d0:bc:18:be:0f:27:86:3e:9c:
40:05:56:10:b6:3b:62:69:d6:f9:bf:5e:c9:1b:1e:
65:8e:ab:62:14:69:50:6e:b9:db:75:89:c9:f9:cb:
a9:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:E4:DD:32:CF:35:36:34:38:B9:2D:72:63:05:B0:83:07:72:FA:80
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/322e35382e38342e302f32342d3234203d3e20313938373637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.84.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:57:a2:12:4a:ad:40:05:68:66:cf:05:28:c5:73:11:26:ea:
65:7c:e1:79:44:83:f2:40:c5:fd:d3:26:b0:e9:bf:c3:3f:f3:
da:6e:73:05:cc:e5:1b:6a:52:da:23:89:08:46:16:b7:1f:6b:
d7:73:3b:c3:ee:00:75:4e:1a:fd:6e:51:d2:35:e5:f5:d2:3d:
25:ea:34:ef:2b:d9:b2:6a:28:b8:dc:40:e0:71:f4:fd:13:0e:
c7:38:df:87:f4:af:ab:38:c1:7a:d6:66:0b:51:88:ec:e3:e7:
50:ae:1d:72:77:71:a8:a1:00:9c:74:aa:6c:07:2a:09:4f:39:
b0:ee:5a:68:c8:e2:1a:b6:c7:66:63:35:9c:a0:0c:64:0d:c6:
1e:22:29:f6:9f:c8:f0:1b:b6:1d:f6:4e:76:10:68:f0:b6:8b:
14:40:0f:4c:f6:c2:ba:37:95:0e:a5:4c:67:49:96:97:12:ac:
1e:78:65:1b:07:3a:3b:88:a6:53:48:4c:c5:5c:36:3c:20:82:
17:f9:43:6a:89:12:80:82:a0:02:ef:ed:84:20:6e:26:c7:d7:
3a:af:74:8c:ad:b0:d6:12:ab:94:11:11:41:37:e1:10:13:00:
e1:28:9e:2c:40:be:eb:c1:53:d5:b5:4e:3e:90:3e:3d:4d:cc:
2b:eb:01:bd
-----BEGIN CERTIFICATE-----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Generated at Wed Nov 8 00:50:56 2023 by rpki-client on console-ams.rpki-client.org