Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e322e302f32342d3234203d3e2036383439.roa
File: 33372e35322e322e302f32342d3234203d3e2036383439.roa (raw, json)
Hash identifier: ezS/V8dOOW5Sw5cet2Z7m1exT5O3siywtIskdB/86LA=
Subject key identifier: E5:C7:9C:2A:2C:3E:F1:E9:6E:27:A5:39:FE:DA:B6:C2:18:19:C7:D2
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 413B96458E0D7D09170C2FC9D8910C17A6904984
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e322e302f32342d3234203d3e2036383439.roa
Signing time: Tue 20 Feb 2024 14:36:16 +0000
ROA not before: Tue 20 Feb 2024 14:31:16 +0000
ROA not after: Tue 18 Feb 2025 14:36:16 +0000
asID: 6849
IP address blocks: 37.52.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Feb 2024 09:39:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:3b:96:45:8e:0d:7d:09:17:0c:2f:c9:d8:91:0c:17:a6:90:49:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 20 14:31:16 2024 GMT
Not After : Feb 18 14:36:16 2025 GMT
Subject: CN=E5C79C2A2C3EF1E96E27A539FEDAB6C21819C7D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ac:a2:26:41:a3:45:8c:36:4c:b4:78:80:64:
a5:e9:6a:66:88:27:95:b9:ec:a2:65:4f:3e:c9:4a:
71:43:e0:7f:d5:83:1b:83:d8:76:09:d1:18:52:de:
99:df:22:61:75:90:78:a3:62:a7:f5:0a:86:c6:80:
1a:b1:cf:36:9f:31:b7:67:b2:af:00:7d:82:aa:7f:
e5:2c:d5:2a:31:95:c9:78:b0:be:51:7f:68:bf:c0:
cc:58:5f:0b:24:db:09:d2:82:0b:20:8a:8e:6f:8e:
a0:d0:fa:70:46:9b:4f:d5:f7:b6:e2:de:00:05:ac:
f8:aa:c5:da:34:fc:f6:12:8c:4b:6c:0a:50:ba:d6:
b0:a9:fb:fb:b8:b2:65:63:4b:3c:37:29:8e:39:4f:
3c:96:50:78:6d:61:f7:99:64:45:50:7b:84:92:86:
9e:59:6e:58:84:cc:62:9b:39:e4:f5:e9:f7:86:02:
ad:90:76:97:56:6f:e8:8d:36:db:d9:8a:81:12:f9:
78:78:9f:2d:7b:d5:9e:1a:7a:2e:12:b3:96:07:6a:
8c:a8:d9:05:b5:9d:27:3e:26:3b:e5:f5:25:e8:38:
84:b6:5a:31:20:30:c3:be:10:2c:9c:36:5e:01:88:
af:52:99:46:a4:f0:d1:3a:65:42:cf:91:f1:a1:be:
cc:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:C7:9C:2A:2C:3E:F1:E9:6E:27:A5:39:FE:DA:B6:C2:18:19:C7:D2
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e322e302f32342d3234203d3e2036383439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.52.2.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:e1:3d:4f:8f:3e:57:77:a6:55:ab:e3:99:7f:34:03:65:4b:
b1:1c:d0:44:b0:76:85:57:7f:ef:85:76:f1:8f:ae:36:30:01:
c2:f1:65:7c:c1:31:58:ac:6f:d2:ba:16:1d:b2:e7:c3:8b:69:
a3:39:e9:ff:7e:1d:4a:77:b1:41:29:37:db:4b:77:0e:5a:ab:
2f:f3:83:8e:2d:3c:52:5d:36:15:77:a7:0d:e7:ea:4e:28:66:
71:70:1e:8b:25:8d:9d:ae:a1:7c:1e:35:87:9b:3d:d3:37:d6:
46:5c:6b:b1:44:16:c0:ce:9a:88:7a:78:f6:81:95:6b:cd:b8:
56:ea:2f:8d:fb:cc:a8:a6:0c:53:89:f8:5f:aa:e8:18:9c:34:
82:fc:44:af:51:b8:83:b7:90:2f:ba:6a:c7:70:4d:da:2e:a6:
71:0d:30:c3:69:d8:97:36:21:28:d7:bd:b4:4a:97:a8:d7:cf:
29:c3:fa:1c:02:91:b1:2e:9f:67:4c:c0:1c:46:93:1d:4e:49:
5b:06:a2:1b:00:11:94:86:60:19:77:9f:72:51:3c:4a:12:ee:
ef:10:29:9a:36:06:69:51:91:f3:f4:65:28:aa:89:f9:84:27:
30:e3:e0:3f:04:57:d1:eb:94:c7:ab:45:6d:5a:4d:26:b2:3f:
c4:0c:f5:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:18 2024 by rpki-client on console-fra.rpki-client.org