Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137332e302f32342d3234203d3e20313530373532.roa
File: 3138352e3137322e3137332e302f32342d3234203d3e20313530373532.roa (raw, json)
Hash identifier: uKWz9sfvGqwMCaKzq3fwHOxQC4kSJgkeb0LpFhX9Df0=
Subject key identifier: E6:A4:20:7C:8B:0C:62:0F:EA:ED:DC:DC:68:A3:06:6E:50:1D:0A:29
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 255BF6D00C58BC2C0322EDA21DFB0719C51D376E
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137332e302f32342d3234203d3e20313530373532.roa
Signing time: Tue 11 Apr 2023 13:09:25 +0000
ROA not before: Tue 11 Apr 2023 13:04:25 +0000
ROA not after: Tue 09 Apr 2024 13:09:25 +0000
asID: 150752
IP address blocks: 185.172.173.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:5b:f6:d0:0c:58:bc:2c:03:22:ed:a2:1d:fb:07:19:c5:1d:37:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Apr 11 13:04:25 2023 GMT
Not After : Apr 9 13:09:25 2024 GMT
Subject: CN=E6A4207C8B0C620FEAEDDCDC68A3066E501D0A29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:96:f3:49:60:33:20:b2:1e:68:da:9c:20:c3:
74:0e:5b:6d:65:4a:52:d2:6f:97:5d:66:72:3c:4d:
2c:6d:b5:ef:e0:37:94:0b:b8:28:30:4b:6e:e1:20:
99:97:86:1a:9e:0e:cf:be:a9:c5:9f:42:a3:d2:8a:
11:76:48:a1:8f:70:32:81:76:4a:8b:3e:7f:37:1e:
00:f2:33:3c:c7:b6:cc:45:f4:3a:b3:80:32:43:7d:
fc:3c:0d:0f:f4:35:e9:fc:d3:0c:3e:2e:3a:3b:a8:
e8:33:6e:87:de:e6:a5:29:62:0f:92:82:36:47:e9:
31:2a:2c:22:8a:f7:36:bf:54:b1:a1:d3:59:fc:75:
e1:1f:74:b3:0e:1f:9e:d7:74:a3:1d:bf:86:b8:db:
fd:46:39:2d:25:97:14:6c:9e:dc:cf:34:6a:6e:fd:
1c:df:e0:5f:76:11:93:d1:04:98:88:90:f4:a2:c7:
d1:8a:be:d0:ac:ca:e1:78:9c:7c:df:a1:8b:77:fc:
a4:d0:c5:5f:99:ed:dc:68:02:11:b3:10:ca:3c:b1:
49:57:56:76:30:83:73:75:2b:97:82:ea:ff:2e:b8:
48:a9:a7:51:d6:2e:f9:8a:64:b3:04:e0:4e:be:91:
7b:4a:1d:4a:26:b2:20:1d:13:52:eb:96:ca:5b:cf:
39:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:A4:20:7C:8B:0C:62:0F:EA:ED:DC:DC:68:A3:06:6E:50:1D:0A:29
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137332e302f32342d3234203d3e20313530373532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.173.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:3c:21:fe:ae:a3:28:6f:cc:87:02:f8:f8:65:46:88:0f:63:
8a:65:c6:cc:cb:98:0d:35:5e:3d:d0:e9:a0:a3:00:28:3c:e4:
c9:1d:71:c9:2e:0e:de:45:03:3d:70:9d:90:96:1f:a7:15:e8:
62:6a:33:32:f7:1d:5b:c1:11:82:a1:2f:6d:3d:1e:86:1d:07:
dc:4e:39:16:fb:a1:7b:bb:cf:0c:5b:8a:ab:9c:ca:98:66:f2:
94:78:9f:f7:ef:1a:26:78:fa:43:a8:1f:ac:24:54:ba:2b:c7:
84:6a:1c:12:ea:15:4e:a5:87:f3:dc:d1:57:1f:e2:a9:51:47:
99:ab:97:fe:55:fe:6b:98:cc:b7:dc:29:6a:e3:7e:fc:d7:30:
4c:e7:50:67:0d:2d:fc:74:bd:52:37:e3:2d:ca:c9:ea:22:f8:
95:a8:3b:cd:2a:e4:98:b3:94:08:e8:85:0e:3a:57:52:f7:aa:
c0:cb:bb:cd:e9:a5:4f:9b:47:1c:09:35:bc:60:95:89:30:f2:
db:39:17:11:84:b2:7f:20:55:45:bc:f8:b8:07:bc:e7:5d:5d:
aa:dc:63:c0:c6:71:68:86:e6:a3:1c:40:40:fc:6f:55:bb:8b:
8e:57:65:02:4e:9a:2b:8e:39:01:b0:39:2f:82:a3:d4:cc:6c:
e0:8e:5b:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:49 2023 by rpki-client on console-ams.rpki-client.org