Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/322e35382e38342e302f32342d3234203d3e203539383935.roa
File: 322e35382e38342e302f32342d3234203d3e203539383935.roa (raw, json)
Hash identifier: x8geP3JC86KBPwtmriYyIT8RSFxSVDaeeWhBWoBsA5c=
Subject key identifier: 3D:09:B2:E3:03:6D:B6:88:12:FB:49:B7:44:2A:15:24:F2:36:51:C0
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 0DA1E582E43BE7A651C1E1A19C05EAFA15F45193
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/322e35382e38342e302f32342d3234203d3e203539383935.roa
Signing time: Tue 12 Mar 2024 10:27:55 +0000
ROA not before: Tue 12 Mar 2024 10:22:55 +0000
ROA not after: Tue 11 Mar 2025 10:27:55 +0000
asID: 59895
IP address blocks: 2.58.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Apr 2024 00:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:a1:e5:82:e4:3b:e7:a6:51:c1:e1:a1:9c:05:ea:fa:15:f4:51:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Mar 12 10:22:55 2024 GMT
Not After : Mar 11 10:27:55 2025 GMT
Subject: CN=3D09B2E3036DB68812FB49B7442A1524F23651C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:db:80:81:9f:0b:a7:1b:01:7d:91:dc:da:97:
fc:e8:fc:49:b7:cd:8d:50:9b:1a:eb:32:54:b1:f9:
b7:79:ca:90:16:25:99:0f:8b:58:33:54:7f:d8:58:
c8:2f:eb:02:39:d7:69:6a:f4:44:35:40:91:ae:38:
c5:e2:ec:77:66:35:48:ac:a4:f7:6b:27:b4:f6:ba:
49:e8:d0:7e:da:cb:ba:a6:36:14:fe:9b:5a:19:91:
95:15:9e:eb:62:a4:be:bb:fc:61:99:d5:bb:d7:04:
8c:46:ab:ef:50:cc:69:b3:15:c7:d2:f6:2b:9f:2a:
1e:a5:9d:53:90:84:5d:c0:7c:69:74:ba:bb:25:b6:
c6:c6:77:8b:1d:ad:0a:da:e3:c1:3f:22:9a:49:b8:
1e:dc:bb:77:c9:36:ae:ca:85:08:85:40:0a:7e:ba:
0d:7d:ec:39:1e:6c:60:ad:ef:cb:2b:cd:df:e1:82:
a3:85:2c:46:29:43:9d:36:2a:03:cd:3e:ff:c1:22:
6e:40:a0:bf:3a:18:92:b2:f4:44:d9:43:02:53:35:
47:29:33:9d:ea:81:59:6e:dd:2a:4e:95:7e:a1:68:
be:39:26:91:9b:34:fb:50:1a:f9:0b:2a:f8:92:fe:
2a:ad:08:af:fb:5e:8f:91:1e:9a:ad:1e:95:41:a6:
2f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:09:B2:E3:03:6D:B6:88:12:FB:49:B7:44:2A:15:24:F2:36:51:C0
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/322e35382e38342e302f32342d3234203d3e203539383935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.84.0/24
Signature Algorithm: sha256WithRSAEncryption
95:18:d5:cc:bf:50:df:b9:f1:6f:8e:5c:a8:3a:f3:6b:f7:7a:
45:49:c1:ca:5b:e0:c2:56:0a:61:bc:c9:0e:f1:15:24:3e:34:
24:80:f0:a5:c8:37:da:7f:e7:3d:95:5c:81:19:ab:9c:42:e3:
e7:a7:09:3b:a1:63:28:bb:db:2d:a9:3d:3b:e5:fc:68:98:a5:
38:74:8a:df:79:86:79:e7:74:76:c6:2b:d9:79:5d:0d:5f:8e:
98:da:89:65:98:d7:80:c2:2e:d0:69:b4:fe:c1:d9:e1:e8:04:
4d:45:f5:3b:0c:c2:3c:8f:f3:43:cd:a3:9a:bd:a3:71:09:e7:
56:db:50:68:9f:8d:97:90:3b:2d:a4:68:6d:ea:36:d0:fe:1a:
fb:fc:ea:54:e8:b8:69:c5:08:4f:b0:e1:bd:e7:60:e5:fe:c4:
b9:ad:f8:0d:ea:00:c7:b7:ff:86:b9:cb:66:4e:9d:80:cf:40:
ae:d7:27:40:ce:64:19:9b:63:e3:b7:f5:12:55:22:19:37:3e:
81:83:72:bd:82:21:b7:a4:a1:f7:e1:f6:ea:62:7b:ee:64:d9:
00:6e:8f:5b:5a:69:bb:a6:bc:97:46:7e:cc:61:b7:b1:b1:5a:
89:fc:c2:af:22:0d:0d:75:a7:b7:98:c9:2f:d6:1c:40:cc:b5:
04:2c:02:1a
-----BEGIN CERTIFICATE-----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Generated at Fri Apr 12 01:07:45 2024 by rpki-client on console-ams.rpki-client.org