Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/322e35362e3234382e302f32342d3234203d3e203438363738.roa
File: 322e35362e3234382e302f32342d3234203d3e203438363738.roa (raw, json)
Hash identifier: PJCFyM9+FgrWD4y4Q7Rcv86QrvZrx59plgovBZEoO2c=
Subject key identifier: 4B:39:97:CE:FD:36:60:9E:6E:31:51:E7:46:82:5A:C9:56:06:2C:E3
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 772AB046D830B87139FB8192D93E08EC5CC32538
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/322e35362e3234382e302f32342d3234203d3e203438363738.roa
Signing time: Sun 13 Aug 2023 18:45:19 +0000
ROA not before: Sun 13 Aug 2023 18:40:19 +0000
ROA not after: Sun 11 Aug 2024 18:45:19 +0000
asID: 48678
IP address blocks: 2.56.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Feb 2024 11:39:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:2a:b0:46:d8:30:b8:71:39:fb:81:92:d9:3e:08:ec:5c:c3:25:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Aug 13 18:40:19 2023 GMT
Not After : Aug 11 18:45:19 2024 GMT
Subject: CN=4B3997CEFD36609E6E3151E746825AC956062CE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:94:0f:91:37:5e:56:50:51:31:be:91:47:f8:
eb:49:b8:4f:ff:e6:58:3a:5b:89:2d:10:3a:41:4a:
4b:f4:31:48:2d:04:ca:9e:22:0a:b8:9f:ae:cf:5b:
e5:1b:16:6f:89:e1:4c:7b:bf:83:47:b5:a3:55:06:
ac:ab:26:95:e1:ab:b0:5c:a7:25:fb:d4:3c:1d:0c:
c9:cf:96:21:fa:8b:5a:85:84:0a:50:24:29:6e:cd:
3b:58:c6:1d:2c:c9:31:b2:0f:08:e7:57:1b:08:7e:
67:b8:2c:64:15:a0:15:5e:86:78:79:71:27:23:98:
65:98:ad:81:be:38:a5:2d:17:03:26:bd:e5:43:29:
23:09:98:bc:13:e3:bf:68:86:b3:ba:44:13:e9:15:
d0:bb:ba:1e:76:ea:95:20:1a:2d:55:16:ee:d0:31:
82:14:3e:56:d2:5a:6b:e2:6b:62:08:76:99:d8:bb:
44:1a:f8:7e:7b:9d:60:68:33:44:a6:41:1b:dd:e9:
5e:8f:a6:7e:c4:f0:35:f1:14:e2:a8:54:14:9c:2f:
66:44:77:f7:9a:2f:88:0b:0c:2c:20:0c:26:10:16:
ff:4f:0d:ee:b0:05:40:05:43:1b:60:95:b3:0e:40:
e5:90:9f:bf:91:e2:55:d0:22:06:e8:0a:72:1e:a7:
f2:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:39:97:CE:FD:36:60:9E:6E:31:51:E7:46:82:5A:C9:56:06:2C:E3
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/322e35362e3234382e302f32342d3234203d3e203438363738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.248.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:b0:d9:93:d2:e5:3f:64:21:e8:e5:90:47:dc:1e:58:36:95:
13:4d:8d:32:85:17:e5:04:57:80:f0:1f:4d:81:db:de:a5:09:
1b:de:1a:ba:1c:78:b7:b1:70:c7:d8:f5:44:71:17:ff:84:20:
4a:fb:68:bb:1c:7f:d2:21:34:6f:70:53:f8:03:63:11:c9:74:
4a:21:c2:70:bb:73:15:7a:fd:36:29:11:7a:7d:6a:81:4c:08:
27:cc:89:1e:85:86:d2:67:c1:8a:0a:cc:27:24:3d:0e:fc:bb:
f4:e3:38:6f:8d:b1:46:58:a6:39:01:67:58:e6:89:2e:87:58:
3d:ec:b6:2f:b6:9e:10:51:0a:79:12:39:de:d8:3d:9e:6f:74:
7b:84:22:32:0e:e6:7d:09:6d:ab:2e:2b:5a:62:a6:6b:cb:55:
35:e7:6c:6f:2c:8b:81:f6:23:80:dd:0c:c3:c0:18:4e:11:dc:
27:d6:a5:1f:77:be:42:7d:6b:4b:61:70:83:26:2a:e8:bc:6c:
d9:bf:92:5a:aa:aa:d2:a0:78:c1:30:cd:91:28:d6:50:0a:ef:
f9:cb:c3:31:15:e7:58:54:48:bd:db:b5:23:68:fa:12:3f:a3:
d4:78:33:af:bf:d6:f3:36:5f:79:3b:a7:42:52:94:4d:a1:cd:
d4:6d:06:75
-----BEGIN CERTIFICATE-----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Generated at Wed Feb 28 14:19:40 2024 by rpki-client on console-ams.rpki-client.org