Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138392e302f32342d3234203d3e2038313030.roa
File: 3130392e3131302e3138392e302f32342d3234203d3e2038313030.roa (raw, json)
Hash identifier: 9OnzQlZuQm/cvzGY1Gg5UweLews6uk7R7hOAXJ0csm4=
Subject key identifier: 53:20:37:CC:55:B7:A2:7C:83:75:D6:8B:84:DA:0E:F3:18:15:B5:E6
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 3A2F593C1B61E79F92783B2D93CA038AC1C58AEA
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138392e302f32342d3234203d3e2038313030.roa
Signing time: Fri 16 Feb 2024 14:59:40 +0000
ROA not before: Fri 16 Feb 2024 14:54:40 +0000
ROA not after: Fri 14 Feb 2025 14:59:40 +0000
asID: 8100
IP address blocks: 109.110.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 13:21:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:2f:59:3c:1b:61:e7:9f:92:78:3b:2d:93:ca:03:8a:c1:c5:8a:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Feb 16 14:54:40 2024 GMT
Not After : Feb 14 14:59:40 2025 GMT
Subject: CN=532037CC55B7A27C8375D68B84DA0EF31815B5E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b2:cc:32:14:47:f4:0a:94:1d:25:79:a8:17:
2a:84:75:81:f5:e8:62:5a:af:33:e6:26:3e:43:63:
c5:81:bc:ce:78:ff:8e:13:74:34:7a:c6:85:d6:2d:
71:22:83:86:ba:bb:4a:70:b2:e0:fa:10:22:f5:55:
ed:d6:6e:9d:85:0e:cc:51:d8:57:bc:ff:ee:46:9c:
cd:c6:bc:b5:7b:8d:47:8a:bb:55:0d:1c:1b:76:21:
12:67:ba:60:ae:83:7d:d1:5e:03:30:0d:93:52:aa:
d0:a4:35:c7:73:c2:2e:da:db:e2:62:7f:7a:7b:27:
ab:20:9e:53:ab:46:6d:b1:c3:22:08:b4:96:a5:4d:
ef:68:3b:60:e1:cc:f1:6f:d9:2f:3a:a8:e3:34:a8:
11:c7:0d:ea:21:5b:38:60:fb:7e:ba:c6:a5:82:67:
e8:5c:c4:6e:7f:ab:c7:c4:da:38:7c:3b:cf:76:f1:
26:9a:73:f3:d3:09:25:4f:cd:2c:56:bb:e6:89:3d:
e4:49:c9:3a:e0:e4:95:4d:a3:44:72:45:f2:04:9a:
1d:f1:b1:74:99:c0:38:d0:75:52:24:3c:af:fe:bb:
9f:dd:30:06:63:d9:11:38:45:12:f5:21:e4:0f:24:
37:7c:b9:f1:43:16:51:14:6d:49:4f:df:49:cf:4a:
d4:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:20:37:CC:55:B7:A2:7C:83:75:D6:8B:84:DA:0E:F3:18:15:B5:E6
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138392e302f32342d3234203d3e2038313030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.189.0/24
Signature Algorithm: sha256WithRSAEncryption
51:96:7b:76:92:09:98:f3:88:d6:58:e5:28:98:2e:fb:b5:27:
e0:22:5a:4c:80:45:b6:ad:47:c3:04:d2:5c:93:b8:3e:77:d6:
ed:12:f4:65:0a:a1:5c:cf:7c:44:45:ea:0c:60:20:0e:6f:a4:
c0:cc:63:36:40:d8:c6:d3:56:4a:c7:7e:b0:e2:96:4c:0c:b1:
5a:be:c1:e4:9b:22:19:ac:ca:d3:05:21:b7:1f:f6:0e:a8:3c:
9c:df:a3:02:b0:7e:2e:6a:a2:36:fb:f3:b2:f6:a2:8a:3e:8c:
1b:c7:0b:96:59:51:57:8f:f7:66:5b:a6:89:7f:c2:39:43:e0:
bf:ef:00:ee:ec:ee:29:8a:78:75:bf:11:e7:8c:cb:4d:18:ff:
b9:6a:68:17:89:83:60:53:94:e4:4d:7a:7d:af:d6:92:0e:37:
8d:5a:42:1f:30:12:03:f4:d2:ff:fe:46:5d:2f:c0:51:f0:9f:
0b:a8:40:ca:bc:59:5a:fa:71:a6:59:0a:37:68:05:fa:f9:7f:
ef:77:52:5c:9c:97:db:17:69:04:73:91:e5:3a:1d:f7:ce:0a:
fa:e5:21:31:26:6c:0f:88:48:6d:20:aa:8f:6d:78:65:eb:80:
dd:56:d2:1f:43:1e:82:fd:9e:80:71:f0:98:2a:d8:a4:c0:c0:
07:09:0a:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 11 18:17:04 2024 by rpki-client on console-ams.rpki-client.org