Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/322e35382e38342e302f32342d3234203d3e20383334.roa
File: 322e35382e38342e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: 6WyrE6eQnzcAdACUfDY8ZfANHpc98YYlJ4BeiHJjJ9w=
Subject key identifier: 31:74:1A:8A:BC:A9:7D:86:15:B7:B9:0D:A1:65:F4:60:C0:63:55:A9
Certificate issuer: /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial: 13200AEC3A77E315B25295247B19D14C14E213C9
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/322e35382e38342e302f32342d3234203d3e20383334.roa
Signing time: Fri 12 Apr 2024 00:02:33 +0000
ROA not before: Thu 11 Apr 2024 23:57:33 +0000
ROA not after: Fri 11 Apr 2025 00:02:33 +0000
asID: 834
IP address blocks: 2.58.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Apr 2024 15:02:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:20:0a:ec:3a:77:e3:15:b2:52:95:24:7b:19:d1:4c:14:e2:13:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Validity
Not Before: Apr 11 23:57:33 2024 GMT
Not After : Apr 11 00:02:33 2025 GMT
Subject: CN=31741A8ABCA97D8615B7B90DA165F460C06355A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:cc:01:ed:4c:0e:70:a7:a6:fc:a2:ce:9d:ba:
3f:3a:1e:21:4c:c6:db:d8:28:31:09:a4:7c:f2:57:
a1:77:c0:90:7a:0e:2a:01:17:98:d3:d1:17:a5:63:
aa:84:65:10:f4:7c:bc:bf:c3:76:ad:3a:8c:08:11:
85:38:fe:bd:a6:a0:e9:ae:d6:d8:7b:fe:29:55:c7:
a1:d3:6b:99:c2:74:3c:69:c3:9f:9c:a5:5a:02:7a:
04:fd:63:cb:f9:ef:ca:5d:da:c5:1a:8b:83:b3:e8:
c9:c2:ae:cc:8f:c4:90:e5:b9:2e:84:d0:03:9c:bd:
a4:2b:8e:00:ac:51:ad:f0:b5:c7:dd:f2:95:ec:f5:
53:c4:e4:b6:3c:55:f1:41:56:ce:1c:07:c3:80:2b:
83:83:41:f2:38:a8:14:42:40:22:7d:f6:c7:a4:f7:
3f:02:e0:ec:b2:e2:10:36:22:0a:1f:bc:af:ba:82:
17:d5:a6:c1:1b:9c:5b:2d:da:60:38:3e:ba:d2:a2:
0f:b6:13:75:d8:2b:16:b0:a6:0c:8c:cb:5a:53:59:
c7:5d:47:7a:a6:fd:12:8e:4f:c2:86:2b:a8:fa:9c:
f9:8e:13:d8:b6:c1:22:81:d7:1e:63:dc:ec:82:6c:
1f:6c:96:73:9f:6e:82:bb:9a:42:2e:6d:d1:83:f0:
55:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:74:1A:8A:BC:A9:7D:86:15:B7:B9:0D:A1:65:F4:60:C0:63:55:A9
X509v3 Authority Key Identifier:
keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/322e35382e38342e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.84.0/24
Signature Algorithm: sha256WithRSAEncryption
85:7f:82:95:a9:d6:9f:84:b3:a2:1a:d2:55:a2:4a:f6:96:87:
b7:4a:bc:f5:6e:39:d4:0a:c8:e7:3d:49:01:a3:28:5f:99:c4:
cb:f1:d9:e2:19:6c:57:0a:2a:ad:ff:2c:d2:3f:2d:02:b2:7d:
5e:21:de:62:1a:b4:5b:77:9c:38:b4:1e:2b:d5:af:ef:1d:ac:
37:39:1e:71:32:0b:7a:fb:e4:08:d9:38:48:ee:61:20:7e:89:
44:ed:62:7c:f7:cf:2c:56:8e:44:df:a9:f4:c5:3d:ca:01:ea:
94:26:ba:f5:04:c7:cf:e0:25:7b:d4:cf:d0:9c:ae:69:83:0f:
4f:65:38:9d:d8:4d:57:67:9d:9e:a0:c9:a5:6c:b6:fd:9c:66:
d9:24:9e:0f:0e:d0:dd:7d:82:6b:f4:f3:b7:a8:94:75:ea:16:
09:cb:99:b0:e3:93:0c:28:87:48:7e:3b:da:69:14:bd:a1:e1:
ce:8b:e5:fe:cf:1d:11:9d:7b:c1:d5:8f:b3:5e:6f:39:83:35:
4f:2a:bc:0c:b2:fd:bf:3d:2c:2e:55:8a:2e:42:94:a8:46:39:
f0:1c:02:8c:54:e6:c0:72:57:f2:54:cf:25:ee:11:9f:55:fc:
cb:07:96:54:19:9f:18:09:19:80:aa:04:54:79:00:d2:18:fd:
c5:aa:0a:f1
-----BEGIN CERTIFICATE-----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Generated at Fri Apr 12 17:38:47 2024 by rpki-client on console-ams.rpki-client.org