Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e3134392e302f32342d3234203d3e2036383439.roa
File: 33372e35322e3134392e302f32342d3234203d3e2036383439.roa (raw, json)
Hash identifier: 85WXuWYQk3hgNG5Ig3F454ti9FCVYq2/UrBWyBJl+yI=
Subject key identifier: 16:14:86:1A:2E:5C:F1:D5:81:46:47:75:1A:1B:BB:B4:AA:37:DC:80
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 7A6A1E1EE552B0C40F742F301A15813B2D31F7AB
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e3134392e302f32342d3234203d3e2036383439.roa
Signing time: Tue 20 Feb 2024 14:39:28 +0000
ROA not before: Tue 20 Feb 2024 14:34:28 +0000
ROA not after: Tue 18 Feb 2025 14:39:28 +0000
asID: 6849
IP address blocks: 37.52.149.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Feb 2024 09:39:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:6a:1e:1e:e5:52:b0:c4:0f:74:2f:30:1a:15:81:3b:2d:31:f7:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 20 14:34:28 2024 GMT
Not After : Feb 18 14:39:28 2025 GMT
Subject: CN=1614861A2E5CF1D5814647751A1BBBB4AA37DC80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:06:64:2b:e2:af:e2:64:9f:cb:bb:85:6f:87:
22:f2:8b:a4:05:9b:57:7b:30:e3:68:df:0b:1b:8b:
5f:a7:a8:fc:be:35:94:55:3e:81:c3:11:1d:f3:31:
a7:2f:cc:47:a4:f6:7b:a7:a6:59:3d:c9:dd:55:fe:
92:8d:2b:b8:b6:3f:21:24:67:63:bf:06:04:56:77:
be:73:ac:bc:27:23:22:29:37:2f:72:70:3e:71:1c:
2a:ee:c6:21:45:09:17:a4:54:9b:29:03:0b:54:2a:
c5:64:2c:97:7c:39:89:fb:80:d9:6c:52:74:9d:04:
a2:db:96:38:cb:1a:5c:db:0b:48:63:02:f5:a4:f7:
f9:c1:d2:e5:b5:63:87:61:f0:ec:61:ce:8f:cd:cc:
ff:28:78:af:6c:11:61:96:6e:ae:b5:5f:04:4d:08:
4f:62:54:d7:80:9d:3c:6a:3c:e1:71:47:16:69:d0:
59:f0:79:cc:bb:55:53:f8:3b:d7:56:9b:22:0f:ee:
d8:6d:b1:f6:6e:e9:cf:18:aa:17:48:e2:54:2b:14:
1f:ea:8e:cf:db:84:92:92:62:05:7b:fe:e0:65:2b:
e3:c0:0f:ee:a6:64:40:08:f8:b2:2c:c9:49:da:60:
ff:d7:64:f2:2f:8e:a2:bc:05:0a:a9:ae:8f:e2:33:
86:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:14:86:1A:2E:5C:F1:D5:81:46:47:75:1A:1B:BB:B4:AA:37:DC:80
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e3134392e302f32342d3234203d3e2036383439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.52.149.0/24
Signature Algorithm: sha256WithRSAEncryption
27:4e:cf:7b:33:18:1c:e6:22:41:80:ab:ee:f8:69:87:0a:40:
e7:1f:d3:b2:03:99:34:7e:06:92:c7:81:a5:8c:d4:ff:1d:71:
67:99:b2:b1:f5:3c:a1:eb:04:b2:63:8c:42:66:6a:84:f5:37:
50:9f:ff:f7:fd:84:e9:c4:49:76:23:97:e6:09:5b:d1:3e:62:
54:a0:7d:30:56:00:a1:1f:1f:f5:a5:43:cd:de:03:ae:39:d1:
9c:4b:9a:4f:47:bb:3b:b5:64:38:a7:b6:36:33:94:65:d4:5a:
97:6e:c2:73:87:c7:bf:0e:e9:e4:6d:a0:1b:2d:df:6e:a5:e6:
35:43:2a:79:74:15:f2:3c:89:4c:0a:0b:17:f4:f8:9e:5c:7d:
d7:23:25:57:9e:f5:bd:66:e1:2d:33:0a:37:f4:52:2a:38:90:
51:79:93:bf:79:53:84:91:e7:41:7f:c0:43:4b:bb:7d:7b:83:
5a:6a:fd:2f:8e:d9:74:f2:b3:ef:7a:ca:4b:57:a2:20:3a:21:
40:ad:54:ce:3f:41:63:90:4c:03:08:a4:3d:1d:4c:55:bc:92:
93:6a:b3:c6:1a:f4:9a:9c:29:13:90:1f:62:27:52:b8:3a:1f:
9a:7a:0f:f4:0b:5b:06:ef:3a:c1:27:3b:73:55:28:c0:68:fe:
4f:60:31:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:18 2024 by rpki-client on console-fra.rpki-client.org