Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/322e35392e35382e302f32342d3234203d3e20323036323136.roa
File: 322e35392e35382e302f32342d3234203d3e20323036323136.roa (raw, json)
Hash identifier: Vn1HMomUKSdmwF3o0sa1i1qwsernZTG3mX6Iw5NcF/g=
Subject key identifier: AF:3B:3B:98:D6:5B:71:CF:6D:F1:9B:C1:B7:58:83:C1:31:55:F2:CC
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 6F40391D3B4B9C61F75A4A9D730CDC64F34B0253
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/322e35392e35382e302f32342d3234203d3e20323036323136.roa
Signing time: Wed 22 Mar 2023 18:10:27 +0000
ROA not before: Wed 22 Mar 2023 18:05:27 +0000
ROA not after: Wed 20 Mar 2024 18:10:27 +0000
asID: 206216
IP address blocks: 2.59.58.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:40:39:1d:3b:4b:9c:61:f7:5a:4a:9d:73:0c:dc:64:f3:4b:02:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Mar 22 18:05:27 2023 GMT
Not After : Mar 20 18:10:27 2024 GMT
Subject: CN=AF3B3B98D65B71CF6DF19BC1B75883C13155F2CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:25:02:36:c7:24:07:2c:7a:c5:ff:c9:42:84:
77:97:c9:3e:8a:ae:fe:e3:13:0f:0f:cf:65:ab:95:
2d:73:68:82:08:97:9f:6a:7c:be:b6:6e:bc:46:80:
66:3f:38:11:f7:93:bf:da:41:cd:b8:39:da:fc:20:
c7:23:c9:2a:45:55:5b:0d:b8:fe:1c:05:80:59:68:
2d:4b:b3:94:08:82:95:82:01:eb:b0:7d:1d:bc:8d:
4f:63:a3:20:a4:66:ef:67:2b:1b:20:78:83:0a:1a:
00:13:33:94:9a:43:ae:f5:98:0c:62:49:90:8b:9d:
53:98:d5:c5:eb:67:2b:10:10:06:da:42:b7:8e:ae:
69:3b:2d:9c:9c:3d:f0:2a:e8:7d:11:fa:85:98:a3:
8a:a9:79:bf:d1:59:16:1a:85:c8:ae:8c:1f:97:8f:
1d:4e:43:dd:36:27:a8:43:e7:5d:0c:16:eb:a7:e2:
15:47:d5:cd:1e:3f:51:aa:32:9b:52:b7:c0:04:f2:
16:5f:58:44:3e:ab:12:0f:b2:24:25:59:83:ef:48:
9e:25:7c:0f:e4:66:56:73:b4:a7:d5:9b:38:72:ed:
4f:de:b7:ef:b9:8d:63:16:d4:d3:05:4f:51:1b:5c:
37:cd:39:e7:11:45:22:f2:53:98:37:c7:5d:67:8c:
fa:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:3B:3B:98:D6:5B:71:CF:6D:F1:9B:C1:B7:58:83:C1:31:55:F2:CC
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/322e35392e35382e302f32342d3234203d3e20323036323136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.58.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:1f:55:37:ab:03:af:35:78:10:39:4d:fd:35:c1:22:89:60:
df:4e:df:77:86:2a:50:a3:13:6b:d6:b4:97:d4:7d:2d:60:e6:
54:9f:b0:19:d5:87:9a:8a:b8:7b:82:f8:06:50:a2:00:40:44:
c6:38:3c:88:e9:7e:39:4c:59:e9:ac:6f:ad:45:e2:bb:81:ba:
3f:3e:27:81:5c:cb:6c:1e:7c:0b:8f:19:1f:d8:09:33:ce:4f:
8c:29:0f:11:48:1e:71:e6:63:b3:18:36:96:56:3b:41:4a:de:
bf:ae:a0:70:c5:24:22:1f:54:15:01:a4:7d:60:d4:e1:08:2c:
60:58:fd:de:67:31:39:73:94:37:eb:61:75:48:b7:06:cd:48:
8f:c9:3f:0e:eb:5a:42:bc:24:6e:3a:b2:08:0d:f3:27:9c:e7:
e4:d1:a4:a7:c4:1e:c3:c5:46:bf:da:87:42:96:70:3e:d3:83:
76:fe:fc:1f:17:db:34:0c:a6:35:f4:f1:6f:2f:be:27:c8:18:
95:26:f0:1e:df:18:42:a9:6e:90:7e:f2:90:c0:7b:7e:43:63:
a3:a8:f5:6a:99:8b:37:64:b7:9d:7d:a0:5f:d2:0b:80:2f:1b:
53:71:18:5e:c9:cd:10:07:d8:82:75:3d:c5:7f:76:b6:11:54:
15:7d:ca:54
-----BEGIN CERTIFICATE-----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Generated at Fri Jan 5 03:10:52 2024 by rpki-client on console-ams.rpki-client.org