Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/352e3138312e3137382e302f32342d3234203d3e20323135333034.roa
File: 352e3138312e3137382e302f32342d3234203d3e20323135333034.roa (raw, json)
Hash identifier: aHNrcr7EO0KVGGWlvU2rFhqy6AKl0m39zAH7vnKzZbM=
Subject key identifier: 07:E9:D8:6F:07:5B:07:A7:D6:23:AA:B9:A1:D5:82:03:55:09:48:E7
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 5918286B0C145017AD7BEABEE84B6A4FFAACBACA
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/352e3138312e3137382e302f32342d3234203d3e20323135333034.roa
Signing time: Wed 03 Jul 2024 06:59:16 +0000
ROA not before: Wed 03 Jul 2024 06:54:16 +0000
ROA not after: Wed 02 Jul 2025 06:59:16 +0000
asID: 215304
IP address blocks: 5.181.178.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 04 Aug 2024 10:05:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:18:28:6b:0c:14:50:17:ad:7b:ea:be:e8:4b:6a:4f:fa:ac:ba:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Jul 3 06:54:16 2024 GMT
Not After : Jul 2 06:59:16 2025 GMT
Subject: CN=07E9D86F075B07A7D623AAB9A1D58203550948E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:22:0b:f7:4b:40:73:4d:bb:2d:11:57:42:c1:
7d:33:47:76:7d:f9:b6:ed:d8:34:ee:6d:cc:50:c0:
00:c1:e3:40:8f:2f:de:bb:43:46:77:b6:c6:b0:73:
f4:87:11:ab:19:ca:fb:8b:a2:9d:33:d8:dc:79:c9:
c9:28:0c:6e:d5:dc:aa:c0:9d:4d:cb:aa:e3:c9:5e:
5c:2d:eb:cf:43:85:7c:d7:4d:3e:b6:d5:c2:8c:fc:
15:f5:5b:5d:7d:80:c5:49:99:94:39:b6:06:a5:70:
ef:c1:67:85:96:ed:cb:e0:52:ba:ee:7c:cc:9f:76:
0e:1d:b9:3e:ff:a8:16:7b:3a:55:19:01:0d:3b:2e:
71:3b:a9:ad:73:6d:93:e0:09:be:78:ca:83:28:4e:
e7:fd:f1:08:13:fa:d5:bd:3d:09:6a:b5:41:01:1f:
c1:f0:2f:20:ea:13:71:3e:aa:67:05:29:d6:12:8b:
32:cd:a9:b1:ee:cf:fd:cc:a5:1d:c8:d5:83:9e:71:
06:e0:7b:7a:04:2e:36:46:44:ca:18:55:61:f8:63:
11:08:81:0d:a4:0d:46:b8:1c:2c:c7:cf:f7:3a:56:
d2:d2:5e:14:84:41:74:d0:3c:55:e9:a9:c2:b6:ed:
06:7d:24:2d:a7:95:67:84:81:d5:64:eb:c0:b1:74:
9b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:E9:D8:6F:07:5B:07:A7:D6:23:AA:B9:A1:D5:82:03:55:09:48:E7
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/352e3138312e3137382e302f32342d3234203d3e20323135333034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.178.0/24
Signature Algorithm: sha256WithRSAEncryption
10:db:2b:ad:6c:27:4d:01:ee:f9:4b:3f:73:ca:51:c9:10:6e:
be:50:f3:cc:b7:ce:70:7c:f8:b9:13:38:c3:fd:cd:1d:41:cf:
69:8e:b1:b8:37:eb:17:a3:07:3c:5c:f6:a6:f9:74:ab:86:6c:
8d:4c:72:af:87:5a:ef:e9:c6:c4:10:18:09:09:cc:90:bd:31:
ce:71:82:ce:eb:3e:bc:3f:fd:27:82:8d:f8:7a:8b:de:00:f3:
9c:59:e4:f3:8a:ec:9b:d6:32:13:ea:b4:58:49:c2:8b:83:e9:
7a:8a:04:cf:a3:61:2e:16:62:f5:01:a7:11:11:b0:68:e5:46:
be:28:5b:e1:d3:62:16:69:24:ac:4c:90:35:f1:b2:6e:b3:85:
fe:34:9b:a1:9b:f5:ca:a0:c2:09:dd:c5:4d:38:bc:28:5e:93:
2b:2e:c0:4a:60:c7:1c:5b:1b:e5:6e:28:bf:46:76:f0:cc:c3:
24:ca:4c:09:72:9c:6b:2f:da:11:bb:7b:43:54:5f:a6:8b:4c:
ac:e3:b5:48:80:87:97:d7:22:e7:12:41:09:9f:42:d7:21:f7:
07:18:f4:cb:23:16:0c:82:47:4b:06:93:00:3e:e1:73:74:55:
21:b0:ee:5a:5b:bf:1c:7c:e1:e9:3e:70:90:52:12:23:bc:05:
73:cd:6c:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:43:27 2025 by rpki-client