Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e203633393032.roa
File: 3130392e3131302e3137352e302f32342d3234203d3e203633393032.roa (raw, json)
Hash identifier: 9dN1KAjnybwMBl5iAQLX2vhVcrJa9AmRRplg3ceXWYY=
Subject key identifier: 1A:73:EF:FA:86:F1:77:10:CA:10:39:8A:60:BF:04:C0:2C:5D:4F:87
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 082318A7FB45174448B4903826C9B2E4DC6BC0CF
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e203633393032.roa
Signing time: Sat 15 Jun 2024 10:39:23 +0000
ROA not before: Sat 15 Jun 2024 10:34:23 +0000
ROA not after: Sat 14 Jun 2025 10:39:23 +0000
asID: 63902
IP address blocks: 109.110.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 14 Sep 2024 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:23:18:a7:fb:45:17:44:48:b4:90:38:26:c9:b2:e4:dc:6b:c0:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Jun 15 10:34:23 2024 GMT
Not After : Jun 14 10:39:23 2025 GMT
Subject: CN=1A73EFFA86F17710CA10398A60BF04C02C5D4F87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:6e:a2:17:ed:81:f3:81:c1:d6:0f:b6:69:99:
cb:42:2e:04:8c:a0:f0:a7:35:95:74:91:1a:70:01:
b2:8f:45:7b:ac:31:cd:e7:b3:88:0d:aa:b3:63:40:
48:a4:d5:00:37:2d:5f:65:1d:88:4a:f2:cc:48:18:
f9:bd:60:fb:56:15:a0:52:c1:81:5f:52:d7:a2:d2:
67:df:9b:8a:6d:6f:33:66:99:bb:ff:ca:73:21:99:
22:bf:b9:b5:6d:d8:3a:e2:04:9c:a7:34:9a:00:dc:
d3:f1:3b:7e:dd:09:14:07:a4:ae:69:91:8f:cb:eb:
4e:26:ea:aa:7d:3b:45:54:f9:8d:b1:8d:6b:a0:cf:
d4:76:73:43:5c:c7:82:df:49:61:e6:34:de:5c:65:
59:59:de:c0:49:2e:53:d0:36:19:68:c0:96:7f:aa:
e1:18:cb:80:e8:38:04:3f:76:a9:2d:61:e7:7c:de:
96:e4:43:e0:15:23:92:8f:25:38:93:29:21:d2:b9:
e4:ae:93:58:d5:fc:c9:fb:4d:cf:bc:eb:12:50:c2:
94:72:4f:da:b8:ab:0d:c5:3a:72:ad:25:c6:86:a1:
ea:0e:cb:b3:47:45:56:5e:e6:09:e8:ea:c1:c4:77:
77:f0:a2:85:47:ec:6f:67:3c:a8:ed:36:85:8d:99:
53:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:73:EF:FA:86:F1:77:10:CA:10:39:8A:60:BF:04:C0:2C:5D:4F:87
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e203633393032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.175.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:2e:ea:6a:91:fa:5a:1e:be:55:1d:9a:6f:5a:ec:bb:1a:a8:
d4:7e:e9:0d:82:42:1e:9c:71:75:fd:7d:1d:bb:e4:e1:63:e3:
1d:89:03:e5:aa:b7:72:77:ff:3c:f0:82:84:03:16:88:b6:34:
e8:99:57:b7:8c:f7:70:f8:9a:48:04:bd:0a:af:ca:1c:6c:5d:
3c:ad:10:0b:61:de:fd:e2:a3:36:db:10:63:8d:40:35:7d:41:
8c:1a:94:70:ef:c3:f7:f3:a1:72:a3:19:5c:67:f8:d1:f7:fa:
a2:a3:89:e6:0a:2b:48:37:b5:e5:44:1b:7d:1a:39:9c:69:7a:
fa:b1:b8:4e:be:c0:67:3e:ac:18:75:dd:98:30:81:e1:80:3c:
49:87:96:fe:b9:29:8d:14:ec:ae:2e:fb:9d:24:db:c3:80:4a:
ea:72:d7:cf:5b:39:0a:bc:3b:f2:d5:15:00:77:3e:a7:a9:f4:
61:0c:34:16:96:c8:7d:6b:15:3f:e7:fc:de:f0:d3:6f:87:6f:
09:8e:ac:0b:bf:3d:05:da:d9:e4:e3:8d:82:51:c3:48:8a:d5:
13:17:38:53:95:b1:e6:84:37:8d:47:dd:0f:c3:2d:bb:0f:12:
ed:cd:88:83:9e:da:74:b7:27:43:c4:0c:6f:83:34:b5:47:39:
68:c1:7c:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:08:32 2025 by rpki-client