Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/322e35392e35382e302f32342d3234203d3e20323136303834.roa
File: 322e35392e35382e302f32342d3234203d3e20323136303834.roa (raw, json)
Hash identifier: LjP91211OUODwleZZZQl404QYQeI+1iAJLkmjKWeJTI=
Subject key identifier: 14:7E:0E:D3:93:83:D0:C8:08:65:77:B8:F2:74:87:56:D0:CA:AC:78
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 19E170DDCA81920CC677ED5D1E8ED937D56D00CB
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/322e35392e35382e302f32342d3234203d3e20323136303834.roa
Signing time: Tue 09 Jan 2024 18:30:27 +0000
ROA not before: Tue 09 Jan 2024 18:25:27 +0000
ROA not after: Tue 07 Jan 2025 18:30:27 +0000
asID: 216084
IP address blocks: 2.59.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 10 Feb 2024 10:03:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:e1:70:dd:ca:81:92:0c:c6:77:ed:5d:1e:8e:d9:37:d5:6d:00:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Jan 9 18:25:27 2024 GMT
Not After : Jan 7 18:30:27 2025 GMT
Subject: CN=147E0ED39383D0C8086577B8F2748756D0CAAC78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:67:15:af:d1:06:f2:f5:56:46:91:32:c7:93:
b9:97:e2:af:cf:b6:01:55:5a:49:05:ff:77:27:5b:
f8:30:2e:c3:b6:f9:9e:bb:90:1f:4b:e9:37:02:04:
cb:11:b7:e5:9c:99:9a:6c:6a:30:a8:91:36:0c:e1:
08:e6:80:a3:68:03:13:14:11:a0:26:fa:af:51:3d:
46:e7:6f:22:78:5b:6f:97:97:bc:99:71:50:bf:c6:
01:02:06:7d:62:5f:78:9b:0f:2a:fb:29:e2:d7:01:
87:b4:b6:5b:92:21:8b:ee:87:4f:22:2f:c4:83:c4:
92:52:87:f8:53:3d:88:17:3f:51:32:9c:f7:a4:e8:
6d:7a:b0:d7:1e:c7:ab:42:7c:7f:fa:ad:2d:b8:0f:
56:6a:79:36:f1:4f:c3:86:fe:93:c6:ba:f6:91:bb:
1b:4b:71:60:89:66:fb:0d:40:ab:c0:bb:5a:89:6a:
c0:c1:08:d7:4a:1e:b6:bc:1a:2b:18:6e:ed:a1:c8:
ff:b1:1b:7a:23:8a:ed:f8:f9:34:d6:ce:70:9e:d4:
c4:d0:56:62:c6:11:86:1f:78:ee:65:62:6a:a9:b8:
d1:36:83:9c:f1:1b:77:c3:d2:08:8f:a0:27:34:ec:
9c:78:b3:b8:9e:d1:93:47:56:c4:6a:4f:2e:bf:d3:
fe:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:7E:0E:D3:93:83:D0:C8:08:65:77:B8:F2:74:87:56:D0:CA:AC:78
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/322e35392e35382e302f32342d3234203d3e20323136303834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.58.0/24
Signature Algorithm: sha256WithRSAEncryption
17:69:f0:b6:90:36:9e:1d:30:d2:05:82:ea:16:8d:df:01:5a:
fb:47:aa:c0:10:1f:55:3e:06:ca:c5:a1:ff:f0:9c:a9:ba:99:
df:8a:06:6a:bc:71:af:20:27:e3:9f:85:3c:4d:be:50:84:fb:
1b:ab:e6:7f:2f:39:b6:36:f2:9a:59:58:18:aa:2d:bc:a3:7c:
08:66:83:c5:d8:48:4c:45:16:1d:8c:47:30:66:5e:39:94:96:
50:a8:b6:05:d0:ba:fa:78:48:4c:31:40:3f:b5:e6:da:b8:a3:
37:34:07:b3:ab:10:eb:22:73:62:65:89:f3:83:51:03:3b:c8:
d6:26:89:17:02:42:08:3c:91:8e:e2:b9:04:2e:2c:18:52:c3:
47:58:1f:e5:c1:f9:d5:a8:70:4a:bb:ca:5f:42:89:62:60:55:
96:bd:e4:48:30:5f:8a:cc:a6:ef:3a:9a:2c:d5:26:37:16:3c:
8f:b3:88:fe:b3:ef:a3:6f:b1:d9:5b:59:a6:30:49:b3:da:57:
5f:40:0a:95:f4:d7:01:fb:9c:5b:8e:c8:df:d7:9d:52:20:35:
7f:47:96:28:51:f9:37:5c:1d:be:2d:0f:65:0d:87:01:20:14:
d8:7c:71:64:6a:8c:1f:d9:cf:f8:a9:e5:d4:4c:77:e4:59:7d:
cd:4e:ae:2e
-----BEGIN CERTIFICATE-----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Generated at Sat Feb 10 11:09:00 2024 by rpki-client on console-fra.rpki-client.org