Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137352e302f32342d3234203d3e203433323630.roa
File: 3138352e3137322e3137352e302f32342d3234203d3e203433323630.roa (raw, json)
Hash identifier: 4sFTSTu86rzByO5nsG+9TnUX9a7NuJzIKS7sC7Z3BE4=
Subject key identifier: D2:88:7E:A5:86:FC:43:2C:EA:D6:B7:11:49:99:5F:52:A9:8C:A7:35
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 45DE37603B9D5406FB14F3524538EE2B06C50C66
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137352e302f32342d3234203d3e203433323630.roa
Signing time: Wed 02 Aug 2023 12:37:37 +0000
ROA not before: Wed 02 Aug 2023 12:32:37 +0000
ROA not after: Wed 31 Jul 2024 12:37:37 +0000
asID: 43260
IP address blocks: 185.172.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Aug 2023 10:05:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:de:37:60:3b:9d:54:06:fb:14:f3:52:45:38:ee:2b:06:c5:0c:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Aug 2 12:32:37 2023 GMT
Not After : Jul 31 12:37:37 2024 GMT
Subject: CN=D2887EA586FC432CEAD6B71149995F52A98CA735
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:19:98:3c:0f:99:3b:78:15:53:e7:fc:cf:bb:
b5:4c:a5:cd:ec:16:4f:52:6b:4b:cc:f9:f2:17:26:
f6:7e:9a:31:56:e9:4c:2a:5f:5b:77:ef:c1:25:48:
74:55:bf:5a:73:4a:9a:82:72:75:59:11:d9:45:4b:
09:2d:0e:27:9a:c8:8e:a3:92:1c:b7:9b:1b:e8:dd:
b3:c8:9e:64:f3:e1:49:81:01:2a:69:ea:9c:52:4c:
39:4c:e5:e2:d6:be:2a:06:e2:31:b5:ef:48:0e:bc:
8b:be:77:bd:28:90:25:0f:34:93:62:b1:43:de:2b:
9a:fa:0d:67:32:e7:d8:ad:cf:ac:48:de:1d:f7:ff:
a0:54:31:ee:94:68:a5:8b:f0:c7:c4:cc:9e:e9:3b:
16:ba:4e:d1:42:e8:cf:d3:d1:7f:59:2d:4d:49:6e:
31:e8:f4:8a:6f:83:0c:ec:61:79:f0:30:99:8a:f7:
18:49:fe:28:a3:81:2a:b4:5a:84:1e:b5:ff:9d:c5:
14:b2:58:13:c5:fd:55:9d:41:53:a1:a1:17:61:bc:
31:a0:59:7c:ae:c7:40:0d:b7:ac:c9:52:c1:6c:eb:
74:14:1a:de:13:b7:5d:e5:02:c1:c9:a0:6f:28:d3:
39:18:e7:ab:d0:c5:39:d7:65:e3:6b:3a:d1:c2:6d:
70:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:88:7E:A5:86:FC:43:2C:EA:D6:B7:11:49:99:5F:52:A9:8C:A7:35
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137352e302f32342d3234203d3e203433323630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.175.0/24
Signature Algorithm: sha256WithRSAEncryption
65:13:4e:08:0e:8e:e9:78:d8:fa:a7:b0:ee:3c:50:e7:af:82:
18:6d:e9:aa:94:be:4d:0d:dc:4b:9a:d2:69:56:b7:f6:0d:fe:
fa:b4:87:aa:52:6e:4e:d0:8c:78:bd:57:d2:21:0b:e1:8d:c1:
60:31:3f:c0:c6:a5:ac:19:6c:b5:22:cd:0e:6e:80:26:8e:47:
fd:11:59:90:d4:ca:50:72:5b:0d:1c:af:b9:d6:51:17:59:5c:
24:d7:e9:8e:12:66:ab:6e:50:83:d0:7c:7f:b4:e4:8d:9c:3f:
7e:82:ff:d1:c1:51:89:2b:bd:53:76:60:04:75:fa:1c:9e:2c:
ea:1d:21:13:5e:3e:e3:4f:a0:d7:e4:b6:37:07:59:3c:9e:af:
c6:bc:3a:a0:dd:53:a1:67:04:1c:d8:05:58:1e:49:35:1c:98:
13:28:f0:22:91:8c:cc:62:02:43:55:dc:33:3a:c6:74:b5:23:
10:0d:99:25:4e:a7:cd:95:28:98:2b:92:ac:4a:9a:bb:de:fe:
5b:fd:d8:26:41:a3:be:09:36:a8:fd:97:3d:96:96:01:4a:c4:
00:32:f7:04:5c:27:72:44:12:67:44:d9:19:f8:99:3e:46:46:
9e:9c:e5:77:70:19:21:09:ef:fc:cb:ca:22:12:47:d3:20:bf:
9c:bc:b6:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:17 2024 by rpki-client on console-fra.rpki-client.org