Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e38362e302f32342d3234203d3e2036383439.roa
File: 33372e35322e38362e302f32342d3234203d3e2036383439.roa (raw, json)
Hash identifier: 4d2MArYssl2SZ6a1BYkKjfS6LOlOhpZqk2QgWDFcNk4=
Subject key identifier: 33:4A:A8:2C:0B:2A:15:A2:7C:F3:C4:6B:5D:E0:7E:27:7F:47:C5:61
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 3BAF55CEC75AD1D7AF7F4491AAAA9F941A8E1F30
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e38362e302f32342d3234203d3e2036383439.roa
Signing time: Tue 20 Feb 2024 14:37:55 +0000
ROA not before: Tue 20 Feb 2024 14:32:55 +0000
ROA not after: Tue 18 Feb 2025 14:37:55 +0000
asID: 6849
IP address blocks: 37.52.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Feb 2024 09:39:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:af:55:ce:c7:5a:d1:d7:af:7f:44:91:aa:aa:9f:94:1a:8e:1f:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 20 14:32:55 2024 GMT
Not After : Feb 18 14:37:55 2025 GMT
Subject: CN=334AA82C0B2A15A27CF3C46B5DE07E277F47C561
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ad:78:5d:c9:c3:79:06:80:da:07:02:66:96:
a8:9b:2e:d1:04:eb:ec:71:a6:35:74:fb:9e:d9:8b:
de:19:61:9b:bc:83:72:ea:d5:84:fa:a8:07:6c:f8:
cc:ae:99:54:c6:c6:b8:cd:1f:76:b2:92:6b:70:a7:
60:8d:39:61:2c:54:e6:d0:69:51:00:e1:83:b9:73:
3e:ee:01:a2:7f:fe:ca:d5:02:3d:8e:d9:00:1f:47:
17:2e:a1:29:20:ae:fb:bd:c0:d5:8b:c4:8a:84:01:
b5:da:d6:26:82:c2:1a:3f:28:4a:ec:15:2e:df:38:
1a:35:aa:c1:61:1a:29:29:60:1e:db:71:4b:0c:cb:
09:71:2a:93:fe:a2:7f:30:91:55:d9:11:dc:b7:fa:
fe:07:5d:44:58:87:69:76:42:9f:14:61:4b:82:e9:
7f:80:f5:dd:58:0a:db:b5:c4:ae:b8:5d:68:83:5c:
7d:49:28:66:ec:df:bf:83:fe:01:ef:aa:a7:d7:a0:
5b:d9:71:5a:19:7d:cf:ef:bc:b2:b8:36:33:b8:d3:
f6:c3:32:59:37:e1:35:15:73:2e:5d:67:34:21:eb:
64:65:a2:74:da:f5:12:da:27:d7:b9:5e:fc:29:0a:
b5:78:a0:a2:10:d7:97:9f:34:0c:1c:bc:15:94:41:
62:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:4A:A8:2C:0B:2A:15:A2:7C:F3:C4:6B:5D:E0:7E:27:7F:47:C5:61
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e38362e302f32342d3234203d3e2036383439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.52.86.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:0f:6a:67:07:f0:70:37:15:c1:0c:c8:c7:33:60:bd:8c:12:
70:bb:f8:c5:9c:ad:c4:5a:a0:e0:66:e8:ed:0d:19:f0:ca:f2:
5b:4f:50:53:cb:0d:dc:0a:33:b8:6a:d3:bd:49:44:12:7c:0c:
2b:49:14:2a:68:3b:fc:df:44:c3:8e:95:26:bc:05:0b:85:46:
74:f5:a1:be:ec:5e:24:da:59:67:50:1f:83:93:c7:5f:73:5c:
69:ec:bc:e1:b8:ed:4c:27:3d:4d:e5:24:72:4e:bc:4b:e9:e2:
d9:ff:d3:5b:4e:58:5a:93:8f:2a:3e:9f:9a:c4:79:10:ab:28:
74:4f:88:16:9e:c9:91:b4:f8:51:f9:45:ae:3b:69:6c:ce:e4:
1f:ee:40:d7:63:bf:b4:82:74:47:1c:cd:fb:9a:cf:c7:28:16:
fc:aa:c3:c4:4d:51:11:ad:73:de:06:e7:4e:40:95:05:d8:71:
79:07:d3:69:fb:79:b8:66:91:ad:04:c0:62:74:a5:cd:0d:65:
b3:ef:4d:9d:c1:1f:c4:05:14:d0:69:1c:d1:c0:f3:54:b6:b2:
c6:fc:57:65:5d:8d:65:95:7c:c6:87:18:5e:f1:ca:96:ea:e1:
a8:42:15:fb:c4:43:b7:0e:2b:f6:69:3d:da:5f:45:4c:6d:01:
0d:80:0e:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:18 2024 by rpki-client on console-fra.rpki-client.org