Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/322e35362e3235302e302f32342d3234203d3e203631333137.roa
File: 322e35362e3235302e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: rhxWkx3XdKo4x7UwVJLeXNoqMSax1fkIKgB0fgLmXBw=
Subject key identifier: AF:AC:2D:9C:D0:A4:56:EB:E0:1F:97:C2:1C:AA:14:AB:CF:E5:3F:CC
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 1876E40C54C8FE485B164A5F7E5CFE17F71B7771
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/322e35362e3235302e302f32342d3234203d3e203631333137.roa
Signing time: Mon 15 Jul 2024 19:56:53 +0000
ROA not before: Mon 15 Jul 2024 19:51:53 +0000
ROA not after: Mon 14 Jul 2025 19:56:53 +0000
asID: 61317
IP address blocks: 2.56.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jul 2024 12:51:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:76:e4:0c:54:c8:fe:48:5b:16:4a:5f:7e:5c:fe:17:f7:1b:77:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Jul 15 19:51:53 2024 GMT
Not After : Jul 14 19:56:53 2025 GMT
Subject: CN=AFAC2D9CD0A456EBE01F97C21CAA14ABCFE53FCC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:81:09:a4:9b:e1:83:70:1c:d0:84:79:f3:54:
e7:aa:b4:16:ca:0a:a4:cf:98:c9:7f:3c:1f:cd:a4:
9e:c6:6a:d0:98:6f:59:dd:23:73:1b:af:8c:d1:6a:
e7:f5:81:d4:a8:be:07:28:0a:2b:34:b1:70:31:71:
10:95:8c:46:7b:88:e1:50:b8:42:69:c7:a7:e9:db:
49:b4:d3:c2:14:05:d1:40:c7:65:d6:35:2c:cc:6e:
57:fe:1e:e2:52:98:6e:87:e7:f6:4f:cd:a0:34:a4:
fd:a2:07:5e:2e:2a:be:de:04:c8:95:8f:75:f6:c3:
c5:51:c6:42:f1:00:2b:7a:2b:36:14:87:cd:44:52:
62:db:87:5f:a1:c4:97:7f:55:c6:6d:4a:23:ec:1f:
5b:c0:fa:25:2f:24:16:50:dd:fa:de:bd:b1:ae:07:
3b:73:3a:7b:41:fe:04:3e:2a:88:d6:48:df:ed:00:
2e:27:fb:7c:cc:6a:c4:53:05:6d:a7:96:c4:86:87:
c7:ea:4c:56:f4:07:1b:9d:42:d6:3f:33:e5:d5:2a:
49:5f:8f:d1:14:ef:c8:dc:54:ec:a3:ee:2d:06:78:
d8:fa:d1:9f:8a:e2:98:c2:38:63:bf:72:9d:d1:be:
d5:76:ef:26:d5:64:ab:b9:ef:f2:c6:45:cb:a9:c5:
54:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:AC:2D:9C:D0:A4:56:EB:E0:1F:97:C2:1C:AA:14:AB:CF:E5:3F:CC
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/322e35362e3235302e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.250.0/24
Signature Algorithm: sha256WithRSAEncryption
93:c5:91:fe:d5:0d:55:24:6d:e8:89:18:fb:8a:36:c0:85:03:
6f:88:7f:76:88:e0:05:e5:e2:7b:8b:1f:22:5c:15:80:8e:ec:
7d:0e:4a:c6:06:46:e0:2d:7b:33:b7:1c:48:d1:75:8b:4f:1c:
bd:7a:ef:5e:a7:e4:de:56:65:03:83:30:4c:30:05:75:6b:7b:
f2:81:87:fb:80:ae:b8:6e:82:7f:ff:44:99:49:aa:13:77:93:
96:3d:98:d1:19:c8:e8:54:cf:fc:ec:f6:3d:99:38:23:3a:53:
9a:92:9e:5d:95:24:a1:d7:c8:c8:76:29:a5:29:c4:f7:4d:1e:
03:0c:fd:51:33:c5:60:9f:28:2f:4b:ad:f7:3d:ff:6d:97:ae:
3c:35:b8:b6:96:59:47:dc:c1:4a:f1:c1:94:1f:25:68:3a:8d:
7f:e6:1b:79:c5:a1:cf:d7:6a:6e:b9:63:f3:b7:45:31:77:19:
04:db:c8:68:b5:eb:6a:1a:24:ff:49:9f:4c:b6:73:28:3d:80:
ce:0c:67:1e:a1:ef:c0:79:de:84:69:05:a6:1a:87:22:e3:35:
e0:8e:31:e2:db:f9:d8:6a:7f:56:4c:ea:5d:15:eb:61:f3:09:
19:f6:13:d0:21:4b:1e:5c:84:0a:6b:77:a4:87:b8:42:45:b5:
75:14:12:38
-----BEGIN CERTIFICATE-----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Generated at Thu Jul 18 16:12:24 2024 by rpki-client on console-ams.rpki-client.org