Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136382e302f32322d3234203d3e20383334.roa
File: 3130392e3131302e3136382e302f32322d3234203d3e20383334.roa (raw, json)
Hash identifier: 1ACnB0KXMVitb39UJYxBnBB2eJSuutCOihveUd9pgzA=
Subject key identifier: 07:58:D0:E9:44:7E:15:1F:EB:40:85:6F:DB:15:5C:60:B8:16:4D:5A
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 4DC69467497032313D51D3AE849D4D6468D1FD88
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136382e302f32322d3234203d3e20383334.roa
Signing time: Thu 29 Feb 2024 00:00:39 +0000
ROA not before: Wed 28 Feb 2024 23:55:39 +0000
ROA not after: Thu 27 Feb 2025 00:00:39 +0000
asID: 834
IP address blocks: 109.110.168.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 10 Mar 2024 10:44:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:c6:94:67:49:70:32:31:3d:51:d3:ae:84:9d:4d:64:68:d1:fd:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Feb 28 23:55:39 2024 GMT
Not After : Feb 27 00:00:39 2025 GMT
Subject: CN=0758D0E9447E151FEB40856FDB155C60B8164D5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:fa:45:bf:35:be:dc:3e:8f:3f:31:3a:8d:5a:
5d:20:13:34:5a:8b:81:ce:dd:8d:49:1f:fb:79:8d:
dc:97:05:c7:5b:28:8b:58:b2:e9:dd:25:c0:91:59:
cc:2a:fc:1b:cf:fc:e8:81:a6:db:df:95:e6:97:e2:
35:71:7d:d3:8f:77:07:ed:2e:ca:c2:ae:5c:ee:d6:
26:73:f1:dc:e1:c0:fb:25:5c:66:b4:69:a1:71:cc:
18:5d:9b:c6:6b:c3:ab:1d:c5:54:bf:52:3d:d3:94:
9b:e2:52:cb:26:97:a9:61:1f:65:9a:45:51:93:ac:
86:2f:16:0a:37:a3:39:87:4d:18:53:2c:80:4e:b6:
2a:fe:74:2a:ba:95:06:74:5e:22:21:bc:05:9e:45:
74:a2:80:89:23:cd:bb:76:8c:e5:40:87:8d:6e:d8:
79:d2:50:59:fc:89:7b:78:55:d1:0e:fd:51:5a:27:
f0:a0:a3:bb:41:c1:2d:c2:9f:e0:95:4b:61:3d:9e:
07:00:4b:e1:5e:79:b2:11:3b:39:f0:e0:cb:64:6a:
5b:00:22:9b:45:7f:7c:d0:2f:ae:16:5d:ce:bf:36:
7a:85:08:7e:65:b5:1e:cf:41:1c:82:7e:8c:2e:af:
f4:54:61:ee:af:9c:9f:52:7d:fd:2a:db:ad:59:a4:
b9:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:58:D0:E9:44:7E:15:1F:EB:40:85:6F:DB:15:5C:60:B8:16:4D:5A
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3136382e302f32322d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.168.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:06:f3:0f:4b:8e:c4:86:ef:27:95:9f:31:ae:36:26:ee:05:
ab:94:64:91:0a:92:ce:ec:7c:59:1b:30:b0:89:e5:97:43:09:
97:fc:b9:7f:3e:a9:3a:56:d2:c3:ec:c5:a1:4f:70:a9:91:91:
0b:9a:b0:0b:ae:db:d0:56:88:53:9f:7f:2e:f4:3d:e7:2b:a8:
c7:49:27:0d:02:73:a8:c5:2d:2d:88:d2:a1:17:30:04:cc:da:
13:ce:1a:5a:cf:3f:6d:d9:02:69:9d:8c:2d:58:59:42:9b:eb:
eb:7e:f1:d2:3a:81:7f:57:d3:9e:3f:18:db:bb:06:5f:16:fa:
c0:6a:fc:ae:ef:d8:69:1e:cb:19:42:8b:79:fc:11:b1:1e:c8:
92:12:48:31:9e:32:5a:f4:a2:1c:0d:f7:23:8c:5a:7f:31:4d:
89:05:61:74:e8:a1:d5:42:49:1b:d8:86:a5:cf:0b:16:2c:b3:
36:92:d2:3c:63:aa:d8:f3:e7:4b:eb:9a:4c:ad:59:29:b1:ea:
d6:cd:46:d2:4f:8a:0f:64:8b:3a:24:1f:04:56:d1:63:35:3d:
ae:6d:4f:56:df:99:3f:c3:bd:40:d0:68:87:98:df:55:ed:2f:
51:bc:32:87:45:db:89:ee:2f:6e:60:f4:8e:3a:61:e1:ee:b3:
cd:9f:36:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 10 11:50:22 2024 by rpki-client on console-fra.rpki-client.org