Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e20383334.roa
File: 3130392e3131302e3137352e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: 4P7r2howZnMHYbLgMeiVl+x9YncAeHibTUAR9tLKUXE=
Subject key identifier: DB:C7:8D:94:AF:8B:71:2C:64:61:96:6E:44:AA:81:42:1D:E0:70:81
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 14112700190E66A4612C4896BBDDDC16ACAB31B4
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e20383334.roa
Signing time: Fri 09 Feb 2024 14:54:58 +0000
ROA not before: Fri 09 Feb 2024 14:49:58 +0000
ROA not after: Fri 07 Feb 2025 14:54:58 +0000
asID: 834
IP address blocks: 109.110.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Feb 2024 05:24:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:11:27:00:19:0e:66:a4:61:2c:48:96:bb:dd:dc:16:ac:ab:31:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Feb 9 14:49:58 2024 GMT
Not After : Feb 7 14:54:58 2025 GMT
Subject: CN=DBC78D94AF8B712C6461966E44AA81421DE07081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:23:95:d4:c5:20:de:84:8d:58:47:b5:8d:36:
97:4c:61:8e:d6:40:bb:8d:ec:11:ed:28:f4:0b:90:
95:b3:83:d3:8c:8e:ee:87:e5:34:ee:ec:28:55:0f:
35:71:83:21:5f:a4:d3:bc:38:08:c1:3a:4f:86:6b:
c4:fa:fd:04:67:e8:85:02:15:5a:4c:cc:7d:f6:88:
f3:44:20:2c:3f:de:a6:a3:08:2e:bf:75:04:e0:fa:
a0:a3:2a:f7:34:33:77:eb:ed:50:4d:6d:ab:ee:3d:
c8:33:a3:d4:8e:8f:97:77:e6:ea:96:64:b3:10:13:
8f:c5:54:68:4f:6d:a1:1f:8f:e1:63:a3:54:ef:5d:
4f:35:52:12:20:d8:0e:49:aa:b5:91:df:74:78:41:
8b:52:e9:c8:13:40:76:a7:15:7a:7d:08:47:d4:44:
49:0b:c7:c6:60:bc:b4:d8:7a:8e:ef:d9:f7:56:45:
4b:8c:87:ef:61:b4:84:fb:c7:cb:33:47:45:35:b7:
77:23:61:60:f5:ce:38:49:bb:fb:ce:4f:b9:a3:c0:
73:b8:4a:13:f2:27:ac:8b:cc:0a:ce:12:03:b4:a2:
c3:c0:86:f8:72:87:82:f3:1e:6b:8b:74:f3:88:12:
b5:39:7c:2e:2b:64:8e:00:25:7c:4f:ae:c9:e1:46:
83:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:C7:8D:94:AF:8B:71:2C:64:61:96:6E:44:AA:81:42:1D:E0:70:81
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137352e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.175.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:7e:43:2f:99:1e:c4:5a:c0:8c:ef:b6:6e:3e:da:5d:4d:3e:
45:2b:c1:c9:f0:ab:2e:ed:de:36:ea:78:5d:4a:5a:67:ee:26:
a1:f8:b7:b6:08:8d:0f:c4:1a:36:ee:72:0c:05:82:c4:35:0f:
de:cc:5d:b3:7d:25:aa:84:95:a5:c5:eb:3c:40:ab:c4:f4:14:
94:e3:a6:7a:fc:4d:8b:20:dd:70:a8:ff:52:81:cc:c6:4f:06:
5e:31:d8:88:3a:23:4b:57:5f:f2:39:03:5d:f0:28:42:86:5a:
9c:57:52:75:9f:cc:27:60:a1:2c:03:ca:7a:0c:31:72:0e:b4:
ab:8e:7e:55:92:32:b2:2e:18:2b:3b:22:c4:8b:b7:76:cc:8a:
53:be:3e:ff:1d:38:aa:cf:50:a0:75:b8:6e:4e:93:69:e8:4e:
b6:c9:aa:7d:de:44:91:24:cf:24:86:89:b0:64:7d:d6:01:31:
9e:6f:44:2f:99:30:eb:ac:01:4b:31:d9:b0:73:6b:0e:10:7e:
65:3d:cf:de:bb:7d:a2:f0:6a:c9:d8:de:de:8c:12:0a:7c:50:
6d:e5:37:ec:3e:be:9f:cb:1f:aa:55:89:cb:d3:8a:a2:f6:46:
73:e6:5e:75:db:bf:b4:14:c8:3d:cc:72:43:0a:61:6c:43:a5:
ff:7d:df:6e
-----BEGIN CERTIFICATE-----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Generated at Mon Feb 12 06:14:59 2024 by rpki-client on console-fra.rpki-client.org