Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137342e302f32332d3234203d3e203335393133.roa
File: 3138352e3137322e3137342e302f32332d3234203d3e203335393133.roa (raw, json)
Hash identifier: OHIV3jKLFqBZIddEV32RXURsIiMJMOqpaPL4MYPZyqc=
Subject key identifier: 68:00:18:10:17:EB:7C:D5:73:5A:24:AC:DF:22:6D:22:82:AC:41:FC
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 50341D20DC18E98CB9C6D3DA79311ED94057D99E
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137342e302f32332d3234203d3e203335393133.roa
Signing time: Wed 22 Mar 2023 18:07:38 +0000
ROA not before: Wed 22 Mar 2023 18:02:38 +0000
ROA not after: Wed 20 Mar 2024 18:07:38 +0000
asID: 35913
IP address blocks: 185.172.174.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:34:1d:20:dc:18:e9:8c:b9:c6:d3:da:79:31:1e:d9:40:57:d9:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Mar 22 18:02:38 2023 GMT
Not After : Mar 20 18:07:38 2024 GMT
Subject: CN=6800181017EB7CD5735A24ACDF226D2282AC41FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:00:e9:06:44:e1:3d:fc:cb:3b:59:4f:ac:2e:
9b:df:51:00:60:75:38:48:62:bb:61:44:aa:6e:b7:
ac:5c:5d:64:60:db:62:75:f6:0d:20:da:cf:60:72:
62:4a:cb:ff:9e:54:5e:f1:66:c7:9d:dc:4a:92:8e:
23:06:9b:59:c8:09:76:c2:07:83:71:f5:45:2f:b0:
18:85:1f:21:32:de:d5:07:c3:65:ca:99:0a:b1:3e:
bc:a5:fc:6d:76:70:28:b3:7d:2c:25:c3:71:24:c7:
4b:c9:6e:79:4d:46:4b:4c:a7:00:90:ee:81:32:fc:
45:b2:36:0b:a2:32:25:ab:07:bc:1e:ac:05:e5:08:
5b:6c:ff:a0:a0:e9:8d:6a:a7:bc:0c:e0:73:75:86:
50:c9:20:89:4c:02:21:6d:aa:ba:fa:a9:b2:eb:d1:
22:18:d6:78:01:73:72:53:8c:1b:c7:56:c7:e7:56:
e6:39:d1:29:f4:a7:f9:b2:f5:ed:32:b9:fb:1c:46:
42:a9:d8:50:ad:82:67:f4:60:98:34:75:dc:0f:20:
fa:31:8a:f7:aa:be:51:da:74:8e:b9:71:f7:13:1e:
a2:ca:00:00:23:0d:ff:e6:a5:60:be:10:70:a9:24:
ec:d3:02:82:95:a8:b6:c1:ef:23:73:6c:0e:c6:6f:
6a:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:00:18:10:17:EB:7C:D5:73:5A:24:AC:DF:22:6D:22:82:AC:41:FC
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137342e302f32332d3234203d3e203335393133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.174.0/23
Signature Algorithm: sha256WithRSAEncryption
72:63:98:cb:be:03:62:e5:bb:4a:ee:d5:34:87:2c:dd:22:80:
94:b1:0d:5e:bb:b3:f9:97:e4:0f:48:ce:ba:cc:8e:89:79:ec:
8c:c7:c7:fa:0f:3f:3d:64:9c:7c:7c:9e:9d:c3:3b:cc:de:95:
08:a8:41:9c:9c:53:1d:56:66:6d:2f:67:ee:b3:03:f4:1e:cc:
ab:08:7c:69:9a:38:39:d1:9d:64:b3:30:db:ab:ae:8b:d9:4d:
d9:d5:4b:58:1a:75:2e:8d:98:6c:16:01:1e:cd:ce:1f:f4:7a:
2d:13:96:0e:70:3e:16:88:34:dd:98:c8:a0:63:44:06:ae:18:
98:5a:2e:81:e1:e7:27:68:c5:40:4f:73:84:79:a3:94:84:04:
a8:0d:12:60:4c:77:02:7e:8c:d2:4a:ac:83:60:9f:ad:2f:7e:
ba:3d:9a:8d:79:2b:a3:d1:48:b6:16:33:b1:e8:bf:ed:32:c7:
c7:2e:d3:6a:7f:42:f9:1a:16:94:81:e5:19:7d:4f:99:e4:93:
22:76:a6:9d:11:73:e1:31:da:0c:4e:3b:f6:90:4f:88:e3:5e:
08:ce:5a:31:13:8e:b4:d9:23:cb:b6:08:48:80:bd:b5:2e:dd:
fb:3f:18:a6:18:3a:20:3b:04:cb:5a:83:75:13:79:8d:92:40:
5d:cc:3b:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:49 2023 by rpki-client on console-ams.rpki-client.org