Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/352e3138312e3137372e302f32342d3234203d3e20383334.roa
File: 352e3138312e3137372e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: Z85zlYcOQha5AB+1Husnmytpgv6t5ymd2lZ0+7TdqQs=
Subject key identifier: E1:DD:1D:CC:43:74:5E:09:E7:96:60:02:47:44:31:B5:C1:BD:D3:8F
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 7137AB80C37D5C899031EB722E7533531EC242D7
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/352e3138312e3137372e302f32342d3234203d3e20383334.roa
Signing time: Thu 07 Sep 2023 00:00:14 +0000
ROA not before: Wed 06 Sep 2023 23:55:14 +0000
ROA not after: Thu 05 Sep 2024 00:00:14 +0000
asID: 834
IP address blocks: 5.181.177.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:37:ab:80:c3:7d:5c:89:90:31:eb:72:2e:75:33:53:1e:c2:42:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Sep 6 23:55:14 2023 GMT
Not After : Sep 5 00:00:14 2024 GMT
Subject: CN=E1DD1DCC43745E09E7966002474431B5C1BDD38F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b7:68:e0:dc:66:0d:14:b2:b4:77:55:25:c2:
ae:bf:8b:a5:4e:c5:89:e6:89:a3:1c:0a:0a:64:79:
a4:0d:8a:d5:3c:f9:a0:01:14:0b:32:08:57:ac:3c:
9b:e0:3f:64:2a:44:1a:5c:1b:4e:1b:b3:2f:18:d2:
f1:83:b1:f5:ba:b9:29:d3:0d:af:24:f8:3b:bb:ee:
f5:16:da:e3:02:87:ae:3e:d3:04:fd:6d:39:38:5b:
2e:aa:bc:29:e8:4b:ba:49:eb:d7:fd:6c:1a:a8:1a:
ad:4b:af:73:15:06:dc:79:bf:03:88:4a:14:a7:b2:
77:e3:0b:ff:8e:63:eb:08:ce:f9:fb:e4:1e:26:96:
d0:58:d4:59:bc:a4:9f:68:84:ad:23:5f:ac:b0:70:
f5:ed:39:7f:3c:2e:30:9f:e9:8b:14:86:66:22:4f:
3e:e8:3d:a7:38:98:43:51:51:4a:4b:f1:ee:6a:a9:
5f:51:8a:f6:69:0f:ec:1c:b3:9c:95:ba:9b:7d:4b:
48:8b:0b:06:0c:4b:fa:17:7d:b4:f1:8b:53:37:1a:
5b:1a:93:24:c9:20:73:69:47:f9:57:48:d0:f8:f1:
42:65:98:c0:ff:cc:ef:ec:01:04:5e:a3:c5:06:a4:
40:1e:b5:d4:66:7b:42:a3:6b:46:2a:16:b5:24:e0:
4d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:DD:1D:CC:43:74:5E:09:E7:96:60:02:47:44:31:B5:C1:BD:D3:8F
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/352e3138312e3137372e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.177.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:16:e9:83:44:05:fc:3d:a7:fd:e8:52:73:e9:9d:7d:02:53:
1c:1a:07:71:95:ce:4e:78:9b:45:3d:3b:4e:a1:1e:93:18:7e:
af:a2:f1:b7:5f:4a:ce:49:1d:ef:cc:30:ea:e7:43:13:b7:57:
f8:ac:2c:35:ba:e1:c1:96:69:34:99:c0:7d:30:13:77:f2:a0:
07:c7:c7:de:ec:f0:47:6b:1b:96:12:25:80:19:8c:9c:d4:a9:
74:de:83:ef:a5:97:83:e7:ee:10:f0:ee:e7:cf:ba:ac:1c:73:
0c:84:f4:ef:bf:9a:e1:99:d4:73:f8:24:d5:e5:22:f2:2a:2b:
24:cb:ae:43:8d:c5:c6:53:64:4e:36:3a:2c:f4:48:02:19:ec:
0a:51:8c:e4:3e:c6:88:22:82:8a:5d:12:2d:1a:cd:75:56:ff:
61:33:95:a5:0c:d4:81:61:33:64:1f:e6:3c:9c:51:d7:f6:7b:
07:40:f5:14:10:51:88:d3:ab:f1:7e:5c:f8:f1:9b:b4:62:6d:
ce:7c:cc:5f:83:77:88:6c:03:6a:6c:92:5e:61:ec:fb:9a:e6:
ed:0a:5f:bb:d2:10:de:ab:49:0b:4e:ec:7d:6a:f0:fc:cb:06:
07:a3:22:72:c9:a9:35:64:e6:01:38:bb:bf:f0:ea:62:93:20:
ef:b1:be:44
-----BEGIN CERTIFICATE-----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Generated at Wed Sep 13 10:50:12 2023 by rpki-client on console-fra.rpki-client.org