Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137312e302f32342d3234203d3e20343030383636.roa
File: 3130392e3131302e3137312e302f32342d3234203d3e20343030383636.roa (raw, json)
Hash identifier: 5AQwazVj/+aZWLSAi8dvd/NWP8SlCzOpt6gySugGy78=
Subject key identifier: 8A:97:7F:96:CD:FF:43:42:BC:65:4B:A4:7B:E9:C9:49:B0:54:F3:59
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 45BCF6F153174A0675E0D99CD378094098B7E6E7
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137312e302f32342d3234203d3e20343030383636.roa
Signing time: Tue 21 May 2024 17:21:55 +0000
ROA not before: Tue 21 May 2024 17:16:55 +0000
ROA not after: Tue 20 May 2025 17:21:55 +0000
asID: 400866
IP address blocks: 109.110.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 21 Jul 2024 00:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:bc:f6:f1:53:17:4a:06:75:e0:d9:9c:d3:78:09:40:98:b7:e6:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: May 21 17:16:55 2024 GMT
Not After : May 20 17:21:55 2025 GMT
Subject: CN=8A977F96CDFF4342BC654BA47BE9C949B054F359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c9:fc:20:b7:9d:6b:b9:c1:b2:5d:c7:9e:0f:
19:11:70:89:e7:df:5b:e2:3e:fc:96:6b:e3:77:54:
e5:93:2c:ed:a5:4f:7b:73:c1:e9:67:ec:3c:11:8c:
d7:b5:9c:f1:91:a5:a4:a3:9a:f4:63:a6:a0:3c:dc:
49:c5:e3:7f:02:f9:01:ae:de:23:ba:a5:2b:55:1b:
3c:5d:b2:94:1a:45:f1:65:82:12:28:81:18:a9:39:
78:ce:06:64:eb:0c:94:45:1e:29:e0:1a:6e:97:25:
a0:e1:b5:7a:71:9f:fe:26:05:e1:a8:f6:4f:ae:a3:
94:a4:9d:bc:0d:0c:f0:f4:bd:a3:46:aa:5d:25:5b:
d8:8b:05:2e:a5:b8:23:d0:ad:e1:2c:44:40:30:99:
45:a4:80:01:69:44:54:d4:e2:51:ef:1c:24:c9:ea:
37:1b:e5:96:87:42:1b:f3:4d:15:62:b7:74:ed:42:
b1:71:15:17:c3:be:d1:d8:b7:7a:79:09:7b:a3:20:
38:3a:18:52:0f:1a:84:c0:73:1c:9a:8c:dc:aa:c1:
0a:c4:29:c5:62:e3:0e:a5:b3:a2:27:e1:ec:10:ad:
3e:7d:4b:10:11:ac:51:b0:8e:9f:dd:fd:4d:c4:4b:
76:e5:e0:c7:e6:b8:96:b2:aa:8d:72:69:2f:1c:8c:
ad:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:97:7F:96:CD:FF:43:42:BC:65:4B:A4:7B:E9:C9:49:B0:54:F3:59
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137312e302f32342d3234203d3e20343030383636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.171.0/24
Signature Algorithm: sha256WithRSAEncryption
64:b1:d1:ec:3b:22:45:0a:95:54:5c:56:cf:d8:f1:bf:53:4f:
63:97:f2:2b:70:f5:11:f2:14:9f:20:06:6e:e9:21:c4:26:1e:
5a:d8:21:37:90:88:c2:ff:76:05:f5:3d:93:f8:c7:56:6b:61:
45:14:d1:8a:d1:28:ea:e0:73:2f:0f:44:cc:89:06:de:f5:74:
d1:fa:12:b0:cc:94:34:fd:d6:8a:8c:1d:05:f1:f4:fd:95:bd:
d3:b4:a3:7c:20:4f:97:9c:72:bf:90:c5:b8:85:e2:7e:b3:f5:
a4:d8:29:f0:7f:db:c0:c8:0b:53:b5:40:5f:79:85:0c:75:1d:
54:43:17:d6:cf:d8:b6:18:fc:06:c9:ab:a1:ec:06:8d:f3:53:
db:94:b6:86:1e:dd:3a:2e:e5:ad:a5:f0:d7:ec:09:a9:e1:37:
bd:fe:0a:ce:4d:59:1b:f0:e9:89:15:f7:fa:d3:06:0e:a6:c4:
f9:b0:37:dd:33:05:e7:fe:a6:81:97:1c:dd:a0:5b:fa:1e:1b:
07:44:45:96:52:da:72:4a:c6:8a:f4:b6:10:f2:e4:aa:75:2b:
39:95:3b:ae:a9:ee:ac:21:6d:30:d1:c6:8b:e8:5a:69:c7:d0:
4c:f4:22:88:2f:99:06:ed:26:96:47:33:77:59:a3:e8:5b:db:
7a:ba:9c:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:10:18 2025 by rpki-client