Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e3130342e302f32322d3232203d3e2036383439.roa
File: 33372e35322e3130342e302f32322d3232203d3e2036383439.roa (raw, json)
Hash identifier: 0s27VAewVCruBHxcOsmdAFRumTab5FKbOorjV4cNAW4=
Subject key identifier: D1:D2:C9:52:01:E2:84:D3:7B:CA:8E:0B:FD:45:8B:F3:E9:CB:1A:BE
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 482098F8C8C7026F792E79B1E30693DEA52F4D32
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e3130342e302f32322d3232203d3e2036383439.roa
Signing time: Tue 20 Feb 2024 14:38:30 +0000
ROA not before: Tue 20 Feb 2024 14:33:30 +0000
ROA not after: Tue 18 Feb 2025 14:38:30 +0000
asID: 6849
IP address blocks: 37.52.104.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 23 Feb 2024 09:39:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:20:98:f8:c8:c7:02:6f:79:2e:79:b1:e3:06:93:de:a5:2f:4d:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 20 14:33:30 2024 GMT
Not After : Feb 18 14:38:30 2025 GMT
Subject: CN=D1D2C95201E284D37BCA8E0BFD458BF3E9CB1ABE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:40:4b:fa:67:ae:30:9d:e5:86:3b:3e:a6:4f:
df:90:38:15:da:28:47:53:a9:26:37:ad:7f:a2:ee:
4f:25:c9:25:7f:9c:86:29:29:7a:53:91:74:7d:4d:
f5:fe:d1:ba:8b:ca:80:9d:0f:77:6e:7b:95:3e:13:
4b:30:08:09:9d:4d:9f:c9:56:70:d9:dd:18:75:58:
d2:b6:39:c1:94:39:93:5d:0d:a6:72:f5:eb:f4:fd:
12:31:ea:da:49:d6:e3:38:a4:c6:aa:97:3a:5c:62:
ba:f7:c2:2f:48:48:e4:77:66:e1:91:50:9f:ed:e8:
48:b4:ba:f2:1c:69:21:58:98:b1:e3:e6:97:79:b3:
16:71:9e:92:77:65:1f:2c:d9:db:e5:fb:25:06:96:
af:06:56:6b:9b:e4:b8:b2:c2:b2:e2:1a:96:1e:80:
51:e3:eb:02:a1:5c:0d:ed:45:1f:61:ff:c4:38:58:
78:a7:e4:75:c0:1e:18:7f:03:34:6c:a3:21:18:69:
fe:37:b5:f4:d5:f7:a0:4b:1b:06:60:4f:4b:13:ca:
98:b9:de:33:37:5d:83:bc:c6:35:0c:b4:12:dd:54:
e1:7a:a9:f0:73:7f:50:5c:a7:ad:b7:3e:c5:50:30:
6d:45:89:61:d4:6c:56:f2:0c:3b:e0:f1:0e:e6:cb:
ac:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:D2:C9:52:01:E2:84:D3:7B:CA:8E:0B:FD:45:8B:F3:E9:CB:1A:BE
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e3130342e302f32322d3232203d3e2036383439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.52.104.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:45:69:68:0d:6c:af:25:c6:c2:d4:8f:ed:50:83:84:d1:38:
ff:75:2f:1a:76:8f:6a:b7:bd:d1:9e:87:b7:58:42:7c:aa:1b:
13:1c:69:f6:93:f7:c0:84:55:74:e2:1f:60:62:d1:17:35:48:
7c:bd:ee:0a:c2:85:7a:94:33:6e:bc:4d:69:8b:66:b1:88:0d:
0c:be:cc:15:fa:39:a6:7a:5c:05:ab:82:e0:9c:b5:35:59:51:
92:44:d2:45:e7:55:5b:7d:dc:cb:b1:98:71:e0:ba:25:75:35:
93:0a:25:5d:be:52:8b:d3:d4:87:d5:a1:09:b7:48:f3:af:94:
7b:f3:65:d4:9e:c4:11:f8:69:00:38:57:d9:d6:be:33:a5:f3:
42:0c:0a:2d:80:f7:36:c9:85:5f:27:a1:3b:b8:e9:bb:00:e3:
77:e0:b3:51:76:bd:2e:a5:bc:41:88:5c:76:b8:1a:dd:8b:c1:
48:c3:44:c6:16:9d:b5:53:9b:d4:52:27:ac:8e:e7:22:dc:bd:
6f:da:e7:99:15:0c:42:eb:9c:62:75:6f:35:91:f4:bc:ba:cc:
df:9a:f7:91:a7:94:aa:79:d7:95:2e:6c:17:ce:1b:f7:1e:04:
c2:c5:d9:a7:e3:9c:e9:84:8b:78:7a:f4:26:3f:a2:f8:7a:ee:
eb:47:10:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:18 2024 by rpki-client on console-fra.rpki-client.org