Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/352e3138312e3137362e302f32342d3234203d3e20313336353537.roa
File: 352e3138312e3137362e302f32342d3234203d3e20313336353537.roa (raw, json)
Hash identifier: edJNU9RmS+zTH4wVcrGcFyPwmYp3ee58t+GIFCIdrfY=
Subject key identifier: 5D:2C:37:0F:D8:88:7F:DA:E8:59:CD:2C:D1:FE:0A:AA:AC:79:A0:0B
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 1F0675F9438999810F16447B691D0BF5A0F50ACC
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/352e3138312e3137362e302f32342d3234203d3e20313336353537.roa
Signing time: Wed 13 Sep 2023 08:46:47 +0000
ROA not before: Wed 13 Sep 2023 08:41:47 +0000
ROA not after: Wed 11 Sep 2024 08:46:47 +0000
asID: 136557
IP address blocks: 5.181.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Sep 2023 02:24:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:06:75:f9:43:89:99:81:0f:16:44:7b:69:1d:0b:f5:a0:f5:0a:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Sep 13 08:41:47 2023 GMT
Not After : Sep 11 08:46:47 2024 GMT
Subject: CN=5D2C370FD8887FDAE859CD2CD1FE0AAAAC79A00B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:35:40:9f:26:ba:53:a7:7d:d7:22:91:ed:c8:
60:cc:f2:56:14:0c:81:b0:ae:c5:2c:0d:ae:7e:9c:
12:64:ef:e3:3e:31:c7:15:05:a5:de:ab:80:e6:90:
65:d8:2b:2a:bc:cf:1e:19:3b:78:e9:5d:13:0d:88:
8b:3e:33:df:42:00:5d:31:9c:96:b8:d5:fd:0a:31:
e0:79:62:8c:97:c7:8d:74:a7:dd:b7:4d:32:96:ab:
3f:b7:a6:61:94:0b:81:13:89:5d:b7:de:bb:7b:9b:
dd:9e:4b:3d:f9:1e:ec:b1:5c:65:3d:37:16:a0:fc:
87:bf:9e:29:cd:97:ea:73:bc:f9:4d:28:90:66:34:
49:9a:c1:6a:ed:3b:58:9d:54:b9:77:20:2d:8e:e6:
1a:68:96:c5:70:bf:6e:a7:90:8b:95:3e:e2:ce:88:
7d:ec:1c:de:4c:15:ff:eb:c1:a7:8c:2f:0f:87:13:
38:e7:8a:40:6f:01:73:9e:a5:f3:63:fb:88:a1:50:
0c:49:6e:a8:31:2f:d0:21:67:9c:ff:da:5b:e2:e5:
64:83:28:9b:52:28:58:65:82:27:80:98:fd:61:06:
c5:de:c2:3f:aa:73:3e:05:4f:0d:de:ef:22:02:b7:
66:e6:79:28:27:68:50:b4:bf:60:59:23:2b:d9:1b:
02:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:2C:37:0F:D8:88:7F:DA:E8:59:CD:2C:D1:FE:0A:AA:AC:79:A0:0B
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/352e3138312e3137362e302f32342d3234203d3e20313336353537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.176.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:fc:e0:3b:3d:ec:c3:a7:9f:3e:93:5d:90:dc:c9:1b:3d:85:
80:1d:73:d6:82:6b:72:3d:42:fe:4b:84:87:28:27:eb:db:8e:
e1:04:e6:4f:ad:08:ad:17:38:35:27:12:06:7f:68:2b:28:41:
3a:51:f8:1e:9c:f4:bf:00:ea:5e:fe:39:34:ee:b0:c1:af:b0:
dd:30:a1:5d:84:7d:6c:7f:27:e5:41:a9:d2:b8:da:87:9b:e8:
42:2f:23:14:0d:ac:bb:9e:f8:a5:d9:29:b2:6a:35:36:9b:c9:
39:83:22:10:60:99:21:53:29:77:a1:ac:7e:07:93:05:92:9b:
37:21:65:ce:7f:7a:36:75:08:ab:d3:ed:4d:55:7c:1d:fa:df:
5c:af:c0:ad:84:04:13:a6:91:47:b2:5b:88:ee:97:dd:c1:93:
5f:53:03:7e:ab:e6:7c:8a:e8:80:d0:4c:8f:f7:77:0f:a2:94:
00:2e:7e:51:83:9c:ba:b5:65:1a:58:d1:11:b2:b8:ba:7a:be:
22:2d:b2:2c:7b:3b:f0:30:4f:84:0f:da:33:be:88:eb:dc:f7:
94:6d:b8:8b:79:b0:93:fc:7b:e9:9d:d7:a7:b3:e1:10:f8:65:
38:a7:7d:21:90:0f:42:ed:1e:52:a6:05:f5:e2:e8:13:b5:e4:
5d:c1:f7:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:17 2024 by rpki-client on console-fra.rpki-client.org