Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e3131362e302f32332d3233203d3e2036383439.roa
File: 33372e35322e3131362e302f32332d3233203d3e2036383439.roa (raw, json)
Hash identifier: lO4ihPzr1y/izIK3hVGT5LRJ/Qt1rKW01LElIY++8pA=
Subject key identifier: F9:04:F5:76:0F:AE:44:14:4C:E0:C2:79:EC:07:9A:4A:E8:B9:63:02
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 024186471D7DE15E0076F5D080324325789DE685
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e3131362e302f32332d3233203d3e2036383439.roa
Signing time: Tue 20 Feb 2024 14:38:50 +0000
ROA not before: Tue 20 Feb 2024 14:33:50 +0000
ROA not after: Tue 18 Feb 2025 14:38:50 +0000
asID: 6849
IP address blocks: 37.52.116.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 23 Feb 2024 09:39:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:41:86:47:1d:7d:e1:5e:00:76:f5:d0:80:32:43:25:78:9d:e6:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 20 14:33:50 2024 GMT
Not After : Feb 18 14:38:50 2025 GMT
Subject: CN=F904F5760FAE44144CE0C279EC079A4AE8B96302
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:85:33:72:7a:de:49:b8:f5:78:1e:ce:24:27:
48:c5:5c:be:1d:78:0e:b8:a1:f0:e4:c1:de:09:91:
71:9d:60:73:82:55:33:72:e4:5e:e0:ac:5f:56:02:
e2:0b:9b:10:aa:3c:7a:0c:76:f9:ee:73:72:08:50:
9c:56:eb:f2:db:8e:aa:48:b0:05:a1:94:65:de:23:
7a:47:0f:ac:77:80:bb:2f:27:52:85:80:dc:9f:67:
3b:74:a5:73:aa:67:50:93:06:aa:d6:99:23:f6:7a:
e5:4f:dc:c9:ed:3d:13:80:74:13:2e:d5:f9:39:40:
1f:8e:d7:fe:d6:7d:ef:f4:ac:ab:9e:7e:51:2b:8b:
b8:d2:55:ad:35:d2:65:a0:ae:ad:4b:45:89:7e:5c:
0d:10:60:42:57:24:95:2d:2c:f9:c7:2f:e0:98:66:
90:6d:0e:ea:b3:b6:be:35:f5:c9:46:c8:ba:d9:71:
b7:c9:fb:a3:75:02:05:c2:a2:b8:67:3a:8f:bc:a4:
f6:75:da:e2:c4:e0:b6:dc:10:ef:bc:49:2d:d8:94:
61:99:82:6e:8f:5b:35:60:85:b8:14:12:fb:e7:d8:
1f:f0:4a:f7:ae:5b:6a:bb:fa:7b:bc:94:84:a8:e6:
ce:32:b7:52:a2:66:40:ca:bd:c5:df:6c:56:9e:46:
4f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:04:F5:76:0F:AE:44:14:4C:E0:C2:79:EC:07:9A:4A:E8:B9:63:02
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e3131362e302f32332d3233203d3e2036383439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.52.116.0/23
Signature Algorithm: sha256WithRSAEncryption
21:89:b0:80:a7:30:d7:90:e4:ec:9b:72:1c:b5:51:07:04:cb:
d0:e4:e8:b2:c5:55:ef:38:9a:f3:22:48:28:b8:30:17:82:77:
f2:55:3f:41:9e:18:21:54:6f:da:55:f4:2a:22:bc:87:1f:46:
c2:3b:31:b9:7a:1a:58:84:c8:56:86:e0:7e:5b:1e:7f:2e:2c:
62:a7:46:34:e1:e2:3f:cc:19:a8:71:60:89:d5:c2:5f:97:2b:
1f:54:7b:db:70:a1:e5:e8:bd:26:49:21:e8:76:7a:ef:3d:f1:
69:69:29:91:b3:a8:9b:63:1a:66:df:bb:6d:9b:6a:56:6b:3b:
06:f8:c2:25:d9:0a:6e:a8:36:1b:64:95:c3:da:5e:70:c7:4f:
c2:3d:7d:db:9a:44:7a:90:05:93:19:7b:f8:b2:a8:56:10:fd:
85:e0:55:41:f8:7c:d1:94:d5:26:e0:49:e6:f4:bf:32:5a:86:
bf:50:ab:69:88:d1:a4:aa:7f:5e:72:5e:51:ac:c4:6a:e8:c0:
0a:af:12:d8:19:5d:0c:de:17:7f:58:5f:5e:98:33:f6:19:aa:
22:26:b4:03:9c:a9:03:60:4d:2f:bc:83:16:33:26:79:dd:6c:
56:6f:81:c7:e5:b1:29:09:7c:57:1b:62:15:d2:e9:e5:b9:b7:
df:ac:01:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 23 13:38:38 2024 by rpki-client on console-ams.rpki-client.org