Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/352e3138312e3137372e302f32342d3234203d3e20383334.roa
File: 352e3138312e3137372e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: HCtlq2IG5NVDYTcRNu/YDls3MWjpqvkNRkJFTptUV9A=
Subject key identifier: 8E:0E:42:82:36:9F:AE:84:8F:D5:43:A4:31:5C:25:57:1F:14:12:F3
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 4949724289C690885D0139EFE586AF1AEC3FB4F6
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/352e3138312e3137372e302f32342d3234203d3e20383334.roa
Signing time: Sat 02 Nov 2024 06:43:03 +0000
ROA not before: Sat 02 Nov 2024 06:38:03 +0000
ROA not after: Sat 01 Nov 2025 06:43:03 +0000
asID: 834
IP address blocks: 5.181.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 02 Nov 2024 11:33:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:49:72:42:89:c6:90:88:5d:01:39:ef:e5:86:af:1a:ec:3f:b4:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Nov 2 06:38:03 2024 GMT
Not After : Nov 1 06:43:03 2025 GMT
Subject: CN=8E0E4282369FAE848FD543A4315C25571F1412F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:93:79:8a:da:f2:cc:78:b9:b2:7b:c5:a4:36:
72:6c:be:1d:4c:24:9b:03:83:a2:89:93:41:c0:91:
49:75:56:9b:f3:10:67:e5:b1:88:68:2d:8b:04:e0:
9b:1f:04:5f:cd:d3:e6:31:b3:4d:7d:00:a3:4f:64:
ae:68:d4:22:3f:c2:6a:0b:2c:85:5e:4b:5b:a2:d6:
9b:08:f0:9d:a0:72:dd:53:9a:c4:d9:08:1a:eb:93:
ab:46:cc:2b:a3:95:a8:63:ce:06:09:99:fc:cf:fb:
9d:ae:42:dd:38:3c:20:4d:da:f9:8d:e7:2f:a0:c2:
9c:70:c9:eb:64:8a:f5:17:18:bb:cd:19:2a:1d:f2:
7f:68:03:be:bf:ef:e6:08:13:ac:c1:9c:32:0b:3f:
a1:ed:8e:20:ce:b4:f2:e4:d6:75:71:c0:23:af:7d:
79:74:62:bd:89:b1:a2:7f:d0:da:b5:b0:ef:db:55:
18:d8:9c:2c:b2:73:18:3d:1e:56:62:df:78:45:44:
76:cb:19:b6:d9:8a:bc:6d:98:80:fb:81:2a:df:3c:
c8:84:33:8e:35:67:a9:69:f1:53:fa:81:b3:6f:63:
bc:dc:57:11:15:f4:51:13:78:fd:13:e8:c9:fb:6b:
a8:29:1b:40:e5:d8:c9:a2:67:ef:2f:67:a7:e0:e6:
4b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:0E:42:82:36:9F:AE:84:8F:D5:43:A4:31:5C:25:57:1F:14:12:F3
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/352e3138312e3137372e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.177.0/24
Signature Algorithm: sha256WithRSAEncryption
77:cb:aa:e6:46:98:54:25:ca:a3:6c:e2:ff:e8:18:cb:c3:0a:
88:d7:69:f3:76:5d:3a:f4:78:6a:34:09:b2:eb:3b:f6:32:54:
c4:9f:de:72:82:40:53:8b:a5:e5:35:78:8b:22:f9:11:a2:a0:
08:15:91:75:b6:b7:26:6b:0a:4a:37:10:c4:2a:42:42:ff:ea:
21:b3:8f:27:25:00:52:96:9b:8c:d1:3a:3e:92:de:72:b4:68:
64:68:af:89:cf:6d:18:f3:f1:f2:8d:83:0e:5f:a2:9b:be:9b:
39:d3:1b:fc:e7:f2:5e:54:d7:9a:c6:69:c4:35:5a:ab:66:11:
cf:85:25:a0:f2:93:5a:2b:fa:46:05:8f:ee:db:6b:9e:e1:ad:
52:62:4d:5f:fd:6e:81:0d:25:e0:a4:1a:be:13:c0:bd:fa:19:
ba:32:1d:0a:e7:c8:fa:93:68:cb:38:54:38:2e:39:f5:14:4e:
fa:30:99:bb:b3:44:94:7c:35:b5:7b:99:16:61:75:e1:e8:01:
e2:e8:30:e2:a6:f6:be:af:aa:10:67:d6:92:39:08:50:18:a3:
b5:a4:b8:d8:01:57:80:f3:59:e4:f4:0e:e9:9d:a0:75:6a:ce:
6c:fe:84:cd:d7:ec:ff:b3:a7:bb:ed:f9:d3:41:71:8e:17:d0:
3b:53:0f:79
-----BEGIN CERTIFICATE-----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Generated at Sat Nov 2 14:42:35 2024 by rpki-client on console-ams.rpki-client.org