Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/322e35362e3235302e302f32342d3234203d3e20383334.roa
File: 322e35362e3235302e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: bXAflE0QN/ltGonTbkR+xEs45TdZ2r4MPiAJzu3arhg=
Subject key identifier: 59:DD:27:FF:27:3F:7A:43:B3:27:4E:CD:53:65:89:A9:BF:22:EB:16
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 7FE5E8935DE66F2084579E1333CEF0C14A48E671
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/322e35362e3235302e302f32342d3234203d3e20383334.roa
Signing time: Mon 15 Jul 2024 00:02:33 +0000
ROA not before: Sun 14 Jul 2024 23:57:33 +0000
ROA not after: Mon 14 Jul 2025 00:02:33 +0000
asID: 834
IP address blocks: 2.56.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Jul 2024 19:56:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:e5:e8:93:5d:e6:6f:20:84:57:9e:13:33:ce:f0:c1:4a:48:e6:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Jul 14 23:57:33 2024 GMT
Not After : Jul 14 00:02:33 2025 GMT
Subject: CN=59DD27FF273F7A43B3274ECD536589A9BF22EB16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:44:bb:67:6a:e0:46:11:b5:11:91:f9:36:0b:
06:88:1f:fc:4c:2e:62:43:a0:7e:89:74:3e:4b:28:
a9:24:c8:6d:81:3b:96:89:17:e5:b2:6d:1e:ec:1d:
39:13:a1:60:08:b6:d0:1f:8f:21:10:10:87:ca:45:
22:1c:fd:13:29:aa:94:13:7d:c7:22:0a:50:84:42:
f3:86:4f:72:90:28:52:7d:a9:08:e3:56:bc:3e:1b:
34:2c:20:95:be:f3:16:25:41:4e:26:97:b7:44:62:
48:2c:7e:0f:85:3c:a7:87:be:29:a2:b3:28:b8:47:
99:1d:4c:51:d9:8e:0a:87:c9:49:b5:bb:82:8c:5f:
da:c2:e3:eb:3a:34:bc:59:24:60:7f:b8:69:aa:fa:
1c:35:b7:2e:bd:ca:6d:fd:25:40:26:1a:79:ad:74:
d1:16:b8:98:79:49:73:de:18:ea:cc:2d:81:88:82:
17:4d:da:48:b8:ae:ac:e8:0c:aa:8b:63:3c:9e:6a:
16:1c:22:e4:ec:60:9f:10:d9:31:b3:de:44:c9:da:
ff:60:1a:e2:81:46:52:31:da:b7:57:bd:28:bb:7a:
d1:8a:6e:eb:6f:b3:bc:2b:7f:a4:f8:d5:11:51:82:
d8:f0:3f:23:8f:e6:a8:fa:b9:a0:69:e0:1a:58:7f:
54:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:DD:27:FF:27:3F:7A:43:B3:27:4E:CD:53:65:89:A9:BF:22:EB:16
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/322e35362e3235302e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.250.0/24
Signature Algorithm: sha256WithRSAEncryption
02:f6:4d:a0:22:8b:45:3b:a5:d8:45:d4:c7:92:5d:43:18:9e:
3a:95:d0:5f:51:76:57:4a:6c:6f:61:d6:73:19:0e:f4:d9:bf:
bc:4d:1d:b4:f6:59:e9:c6:c8:6c:74:b6:aa:b9:14:c2:fd:ae:
aa:2b:e2:a4:c4:66:42:f7:77:0a:b3:7e:5b:ec:ee:e9:db:67:
5f:42:89:3b:f2:e0:b1:64:76:9a:b2:2d:a3:23:4a:32:79:b2:
1c:e3:24:04:2f:19:bc:4e:ed:91:df:08:4d:de:4f:68:d9:43:
ed:27:0a:37:da:b3:fb:f7:a2:19:f3:b6:27:cf:22:a7:53:80:
8a:12:d2:ba:38:8e:8f:c4:c2:36:f1:d5:da:68:18:ae:66:b6:
99:69:53:bf:36:37:37:66:16:9d:2e:9d:2b:83:06:8d:38:77:
cf:da:06:b6:63:74:8c:6e:b7:d8:51:9a:c6:b8:f4:ae:31:e8:
5f:a7:04:30:f7:49:e5:ac:09:fe:ce:03:23:f2:4d:d5:18:34:
10:15:54:f5:e5:58:ec:fe:69:28:87:8d:12:03:10:59:b3:62:
02:51:b6:5f:97:b6:a6:4e:e9:1e:bc:f8:d2:9d:c3:ef:d0:ff:
d6:fb:45:5a:aa:94:9b:08:97:ca:17:57:80:99:45:c5:a4:55:
a8:3e:92:20
-----BEGIN CERTIFICATE-----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Generated at Tue Jul 16 00:09:57 2024 by rpki-client on console-ams.rpki-client.org