Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e38332e302f32342d3234203d3e2036383439.roa
File: 33372e35322e38332e302f32342d3234203d3e2036383439.roa (raw, json)
Hash identifier: B9tQ4Qpxk/JPEIF9KhXYN+YWuIb+GoReQZco9s7cf3E=
Subject key identifier: 8E:40:FA:6A:4A:40:71:17:27:94:9F:55:A8:03:58:26:39:AA:CC:7A
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 6E3A131D6B4CF2E0D07831328EB435187070AF84
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e38332e302f32342d3234203d3e2036383439.roa
Signing time: Tue 20 Feb 2024 14:37:43 +0000
ROA not before: Tue 20 Feb 2024 14:32:43 +0000
ROA not after: Tue 18 Feb 2025 14:37:43 +0000
asID: 6849
IP address blocks: 37.52.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Feb 2024 09:39:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:3a:13:1d:6b:4c:f2:e0:d0:78:31:32:8e:b4:35:18:70:70:af:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 20 14:32:43 2024 GMT
Not After : Feb 18 14:37:43 2025 GMT
Subject: CN=8E40FA6A4A40711727949F55A803582639AACC7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:cc:1b:e2:6c:fb:af:95:3b:ab:38:fa:36:c9:
81:ad:0d:15:0d:33:36:7e:5c:3a:09:96:98:d3:a0:
41:ae:df:fe:25:36:34:82:e4:cf:00:f9:3e:db:86:
6b:ed:7a:c5:b5:39:58:d2:19:4d:4a:b9:ea:41:e9:
b9:76:9a:4b:b7:67:f8:49:25:54:d5:81:7b:31:1d:
25:17:90:88:99:f1:46:b2:b4:97:f8:0d:ad:44:30:
20:b9:f8:f7:0b:58:43:ea:9b:ad:84:f7:22:8c:77:
23:6a:3c:4d:e7:35:47:a1:d9:4e:d1:35:bb:d0:d6:
17:52:b0:49:cd:28:1d:97:23:66:14:11:d0:a4:6d:
ad:a1:b3:7a:9f:96:9a:73:79:77:d4:78:b8:3e:a9:
38:b7:ce:eb:41:0d:25:39:4f:dd:fa:62:7c:c2:15:
56:2c:0a:b4:16:54:75:18:0e:43:a7:c9:a1:ec:43:
d0:47:24:de:22:76:b8:28:bf:a4:c6:c6:3e:84:f7:
4a:ae:43:7e:d2:93:f7:11:64:27:be:70:d3:3e:30:
91:a8:d8:5f:2d:71:9d:9d:9e:40:6d:07:95:6b:7c:
90:6f:52:76:38:91:f3:18:40:40:53:61:ad:f0:79:
ca:6d:eb:6a:4c:29:70:24:ea:23:de:c9:01:8e:b3:
67:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:40:FA:6A:4A:40:71:17:27:94:9F:55:A8:03:58:26:39:AA:CC:7A
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e38332e302f32342d3234203d3e2036383439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.52.83.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:5a:15:32:4b:31:5e:9a:cb:1d:19:7a:d2:ab:0a:de:4b:e3:
30:7b:26:67:c0:de:0e:31:87:f6:b6:05:71:52:b6:f8:c4:6d:
ca:dc:11:c8:fc:4a:0a:35:66:01:c7:b6:a7:db:d2:28:30:ee:
97:ed:79:1b:ab:70:18:3b:74:0e:40:3b:b6:f2:cf:d5:4b:64:
37:25:1d:73:37:f6:ce:10:84:fb:48:de:12:1e:87:c8:cf:64:
88:dd:90:f0:d8:49:00:3b:5e:cb:72:43:02:43:24:bd:0b:17:
f5:27:40:b8:84:30:f2:f4:c3:fd:fa:00:dc:78:0f:6f:79:4d:
9f:ed:0c:f3:2b:0f:5f:c5:82:20:b1:23:e0:6e:a6:60:41:6e:
3f:b5:dd:27:ee:b5:9d:30:03:5e:88:5f:21:e2:05:26:06:c6:
78:83:0f:78:fb:4b:3c:b1:42:93:1a:31:30:37:16:0e:de:65:
02:d5:9b:af:ff:11:0a:ca:82:b7:d4:8b:6a:09:e4:31:a0:25:
31:ea:02:b4:db:34:77:4e:f8:9a:b6:9f:6d:71:d3:15:d3:f3:
35:9c:07:98:55:c5:96:48:5e:98:49:5e:02:76:ff:56:d7:f6:
c4:60:7f:f9:6c:c1:65:e3:15:f4:c9:07:70:0b:70:18:ba:c6:
d0:33:3d:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:18 2024 by rpki-client on console-fra.rpki-client.org