Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137362e302f32342d3234203d3e20383334.roa
File: 3130392e3131302e3137362e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: dMtsjSnkLS8gSgxv5kaaduVnpYo6+fDsMzZzw/vD0hc=
Subject key identifier: 32:02:5E:8E:8E:07:13:83:86:EA:61:93:EB:9E:66:C3:44:2A:6D:1D
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 61892E4CD729D3C32EA21B482D03314BFDCC3688
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137362e302f32342d3234203d3e20383334.roa
Signing time: Sat 17 Aug 2024 00:01:06 +0000
ROA not before: Fri 16 Aug 2024 23:56:06 +0000
ROA not after: Sat 16 Aug 2025 00:01:06 +0000
asID: 834
IP address blocks: 109.110.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Aug 2024 05:19:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:89:2e:4c:d7:29:d3:c3:2e:a2:1b:48:2d:03:31:4b:fd:cc:36:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Aug 16 23:56:06 2024 GMT
Not After : Aug 16 00:01:06 2025 GMT
Subject: CN=32025E8E8E07138386EA6193EB9E66C3442A6D1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:5c:c1:f6:8e:c8:62:41:92:ea:3b:9c:22:c3:
73:21:3f:13:cf:c6:b1:00:d7:68:e0:3b:bc:17:0e:
da:47:c5:8b:52:f9:ca:4b:d0:d0:fe:42:99:a0:79:
23:93:21:2b:bf:dc:a2:b8:be:0d:ee:b2:1b:b2:6e:
3a:d1:8a:3f:29:0e:e5:ea:99:ca:2e:a7:a7:ce:64:
c9:6f:16:50:45:85:a7:58:dc:77:a5:65:6f:f8:e8:
2c:5d:20:af:cc:47:45:f2:6a:d9:5d:03:c6:b3:62:
f3:9e:21:2e:04:8f:e0:4e:79:7d:a7:d0:7c:74:03:
70:ed:c9:7b:d9:5d:74:18:cc:3e:f6:49:98:8f:b7:
46:65:91:bb:c0:2b:2c:0d:8e:80:0c:ef:85:8a:69:
d0:51:07:ae:b2:9c:ad:77:00:ff:22:ff:68:36:66:
a1:c6:6a:10:aa:80:78:1e:40:02:ce:96:df:c0:01:
fa:65:4a:d9:b5:3e:ac:5a:41:54:19:81:0c:61:76:
c9:fe:a7:1e:17:ac:88:0d:5e:4d:21:b2:98:d0:db:
ea:c1:3b:8f:d3:af:15:fa:ee:fa:b3:68:b8:4f:98:
be:6c:e0:f4:01:7d:75:e6:12:30:eb:bd:86:b9:90:
08:51:62:b2:83:51:5f:ab:ed:bf:d1:9d:be:9a:f5:
47:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:02:5E:8E:8E:07:13:83:86:EA:61:93:EB:9E:66:C3:44:2A:6D:1D
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3137362e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.176.0/24
Signature Algorithm: sha256WithRSAEncryption
89:d7:01:97:de:ec:24:04:3d:0a:7f:03:e8:65:d4:a2:e1:d6:
59:b5:1e:a5:ca:ba:2c:8f:e4:8a:6f:df:0b:07:ab:fa:ad:5a:
0c:d4:be:4d:f5:17:c7:fc:a6:50:63:cf:1f:9d:a0:5f:9b:41:
68:2b:b3:41:e7:2a:a7:07:67:0b:12:59:58:e3:82:3d:f8:6e:
d5:60:d6:db:cf:ed:16:1e:15:e3:ec:2f:e0:82:6a:a9:0e:b1:
e2:93:0e:df:43:03:41:53:35:4a:04:4f:54:f9:4e:40:ed:f3:
c5:dd:cb:d3:0b:f3:fd:9b:5c:a4:ed:57:ec:ca:ae:f4:79:8a:
97:a7:f3:2b:af:7d:68:92:17:74:20:ce:c8:59:90:25:67:fa:
13:d4:50:dd:96:41:af:b8:ed:12:d0:77:c3:89:e3:02:be:db:
60:69:c2:23:a3:0c:31:14:ac:0f:84:10:26:0e:d3:f0:4d:0e:
fb:cf:0f:68:18:0b:19:2e:e8:09:f5:6a:61:23:fa:d3:95:19:
f5:a2:44:9a:91:0e:b0:bc:5c:7a:33:45:1e:a1:42:fc:a2:c0:
4e:81:58:58:91:4e:64:94:5a:c4:88:f5:b0:89:00:35:3c:69:
49:fa:45:00:3e:65:45:f8:18:31:b0:2f:f9:25:27:37:11:cd:
c9:a1:60:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 03:01:45 2025 by rpki-client