Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e3131302e302f32342d3234203d3e2036383439.roa
File: 33372e35322e3131302e302f32342d3234203d3e2036383439.roa (raw, json)
Hash identifier: D7vsMW5U/sQbix+NuCoZ4roXjRRNinQtfGKDGqlW4eA=
Subject key identifier: B1:42:B3:04:3C:ED:06:E3:51:49:B1:74:54:0B:9A:07:C0:27:39:60
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 670E2C40B2D700E0747559DF80598E816E9429D7
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e3131302e302f32342d3234203d3e2036383439.roa
Signing time: Tue 20 Feb 2024 14:38:43 +0000
ROA not before: Tue 20 Feb 2024 14:33:43 +0000
ROA not after: Tue 18 Feb 2025 14:38:43 +0000
asID: 6849
IP address blocks: 37.52.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Feb 2024 09:39:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:0e:2c:40:b2:d7:00:e0:74:75:59:df:80:59:8e:81:6e:94:29:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 20 14:33:43 2024 GMT
Not After : Feb 18 14:38:43 2025 GMT
Subject: CN=B142B3043CED06E35149B174540B9A07C0273960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ab:61:d8:cd:6c:37:55:b7:57:22:25:24:a5:
ab:a5:4b:cb:52:28:ec:be:0c:09:ce:86:b0:15:b5:
24:f2:5f:9f:9f:1f:72:e3:76:78:24:87:56:06:38:
30:48:d2:fb:2e:1f:68:09:e7:c3:d3:f5:e3:3c:9e:
77:5e:2b:01:02:d1:06:00:b6:ed:b9:6f:b3:ad:b5:
93:95:17:70:c1:ca:c5:6c:16:15:fb:af:b1:0f:32:
48:44:ca:e6:00:9b:fc:01:02:bc:77:64:0b:8a:9e:
84:45:3e:f0:e6:35:6b:7e:e7:d6:a9:7c:cf:e6:88:
67:96:ae:a7:c9:d4:88:90:2d:51:0a:1c:57:20:5b:
96:f7:6a:77:ee:9f:dc:bc:7c:4a:39:df:a2:a7:85:
99:fc:64:d4:26:0d:38:84:37:fc:1d:af:3c:c1:bc:
56:ef:b6:12:57:26:66:eb:e2:a7:49:81:19:d4:a3:
40:c0:68:e8:66:87:6f:35:81:46:3c:72:3b:72:7c:
4d:0a:47:34:8c:42:53:ed:ac:81:a8:05:30:6a:a4:
6c:c0:15:46:1a:a2:3d:d2:8c:1e:62:38:2d:8b:c1:
99:03:c5:22:7d:e7:ff:ae:e7:dc:76:c0:84:91:24:
6f:b4:56:f7:ca:1c:2f:54:a1:57:e7:fe:bb:70:99:
1c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:42:B3:04:3C:ED:06:E3:51:49:B1:74:54:0B:9A:07:C0:27:39:60
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e3131302e302f32342d3234203d3e2036383439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.52.110.0/24
Signature Algorithm: sha256WithRSAEncryption
11:bb:1a:68:65:e6:0b:76:f2:4a:ff:90:c7:60:41:4c:3f:0d:
a6:44:a5:39:20:13:d5:a5:91:ba:b0:2f:76:c3:c9:bd:96:28:
1f:4d:b8:8b:62:7f:63:a8:2a:7e:7f:78:41:1e:9f:42:c5:b5:
02:e8:31:27:e6:9d:f8:dd:ac:36:e2:e5:ce:1f:c3:f5:54:b5:
89:95:d7:3a:1b:98:27:5e:47:ab:97:18:ef:ba:5e:80:b5:df:
ae:54:13:91:13:79:ec:ef:b7:9b:7e:10:ad:82:83:9c:f8:a3:
8d:8e:ec:8a:eb:df:73:16:ce:5d:c1:86:a9:b3:82:d6:5d:3c:
0c:0e:af:bf:60:fc:f6:59:f4:b3:3c:0e:e3:00:69:ad:75:b8:
a5:3f:f4:04:f4:1b:b5:c8:0f:a6:86:bd:2e:3b:39:a0:d9:a2:
3a:23:48:a4:e9:23:12:77:0c:3c:a6:ab:4b:3a:e6:d6:e9:01:
ca:1b:9b:a6:cf:ec:9f:b5:ff:7c:7e:d1:6d:f4:97:d9:97:58:
09:3b:d8:4a:49:ce:25:4c:88:1b:dc:24:26:1c:56:97:f3:a7:
db:82:54:f7:8c:be:01:d8:5c:19:b7:6c:66:33:f8:a5:45:6f:
68:8d:d9:e5:91:17:d9:c2:9e:4f:ab:b2:11:c1:bd:9a:2f:c3:
16:d2:f5:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 23 13:38:38 2024 by rpki-client on console-ams.rpki-client.org