Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137302e302f32342d3234203d3e20333938343635.roa
File: 3130392e3131302e3137302e302f32342d3234203d3e20333938343635.roa (raw, json)
Hash identifier: fLontHl88bCmVvqYbHSz9nF7Elsahrjq+8Gszbjz4Fg=
Subject key identifier: DE:E4:07:5C:67:22:85:0D:55:C8:53:50:A9:A7:C6:01:FA:4D:ED:A5
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 024A868F929807BFEACA9A599ACEBC076FD052B1
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137302e302f32342d3234203d3e20333938343635.roa
Signing time: Sat 14 Dec 2024 07:17:53 +0000
ROA not before: Sat 14 Dec 2024 07:12:53 +0000
ROA not after: Sat 13 Dec 2025 07:17:53 +0000
asID: 398465
IP address blocks: 109.110.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 Jan 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:4a:86:8f:92:98:07:bf:ea:ca:9a:59:9a:ce:bc:07:6f:d0:52:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Dec 14 07:12:53 2024 GMT
Not After : Dec 13 07:17:53 2025 GMT
Subject: CN=DEE4075C6722850D55C85350A9A7C601FA4DEDA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e9:35:e1:ad:f4:eb:66:a3:0e:ec:19:73:4c:
3c:a2:4c:a7:d8:8f:29:61:88:9b:19:fe:a6:3e:79:
62:9b:0b:76:4d:1c:62:2e:43:45:7b:e7:5b:8e:b0:
f0:bd:92:34:b6:fe:51:7e:bd:60:bd:17:22:64:af:
c1:73:45:99:e9:82:41:e1:ff:1c:a1:a7:d1:0f:e7:
a0:78:af:69:69:4b:e4:ff:fe:46:c7:00:54:ed:4c:
b4:c6:d1:ee:c9:fd:2e:9f:52:95:37:6f:c8:9d:99:
f5:c6:bf:85:26:2d:c5:28:3f:a7:b6:81:2b:a8:40:
64:d9:23:21:26:5d:4e:ce:8a:a1:9e:97:cd:47:60:
2b:d3:34:57:2d:29:98:3d:28:18:b6:6c:96:d1:30:
c2:cf:64:38:5d:cc:fe:f5:19:5e:0a:4e:c5:83:70:
13:9f:23:6f:d9:ec:22:fd:6f:50:73:0c:4d:af:00:
90:8b:a7:39:fe:80:78:03:6e:43:0c:6d:c8:f2:b3:
db:a9:a3:10:cb:70:aa:c2:f4:79:16:85:2b:5f:6e:
ac:ed:73:60:04:d4:b4:88:27:12:71:b9:29:bf:59:
08:a4:81:03:72:a7:12:83:95:f1:87:04:45:3e:11:
63:d4:ef:d0:db:e6:d2:b4:17:70:cf:fb:8e:f7:1c:
83:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:E4:07:5C:67:22:85:0D:55:C8:53:50:A9:A7:C6:01:FA:4D:ED:A5
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137302e302f32342d3234203d3e20333938343635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.170.0/24
Signature Algorithm: sha256WithRSAEncryption
77:3c:95:e8:ca:58:1b:42:88:9b:bc:23:71:c9:0c:b5:83:67:
7c:95:2a:53:cf:c6:30:d6:1c:df:24:9a:21:c4:24:17:3d:eb:
90:a7:07:2a:77:4f:74:90:75:c1:fb:64:cd:76:24:a4:29:71:
33:1a:e5:ee:5a:17:44:d4:f4:2e:ef:2c:ec:47:a4:79:a5:51:
a6:5e:1f:10:26:58:3b:d3:1b:49:d4:83:3c:3a:e0:01:f2:8b:
a7:01:70:85:7d:ed:36:07:4f:72:76:86:9c:0f:88:51:38:c3:
71:6d:68:de:ad:fb:3a:8d:ad:cb:3b:8c:09:c3:28:43:67:cd:
e3:fa:ae:0c:fc:23:ee:55:5c:87:70:5b:a8:5f:43:c5:32:e4:
c6:be:c1:b2:de:fa:df:4c:42:51:68:1f:9b:d4:81:8c:8e:5e:
19:ee:a4:fe:47:4d:3a:af:36:17:d7:39:f6:af:f1:00:0a:27:
6c:c2:50:5a:53:ad:36:4c:f2:e5:a5:4f:ac:f8:d5:11:7f:70:
d2:f9:52:63:ca:19:e8:32:06:34:05:5b:36:04:05:d0:3b:e8:
5e:79:bb:c8:d2:4b:d4:15:9b:33:1c:73:69:17:f7:70:2c:7a:
01:17:9e:f8:ec:e3:47:65:66:2f:f3:4d:fc:e5:00:b2:5a:a2:
18:e4:30:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:05:50 2025 by rpki-client