Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/37372e38312e3133382e302f32342d3234203d3e20313531343930.roa
File: 37372e38312e3133382e302f32342d3234203d3e20313531343930.roa (raw, json)
Hash identifier: Wcea8U/pq7WbsAMcR1eFgert3lIDDORBuRCWEsrS+XI=
Subject key identifier: 42:8B:1E:76:80:8D:66:D9:6D:C4:34:BC:AD:4E:5A:D2:53:CD:23:9F
Certificate issuer: /CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Certificate serial: 0CC447C752325E6CE8E71956F3DC817B99F8B3D1
Authority key identifier: ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/37372e38312e3133382e302f32342d3234203d3e20313531343930.roa
Signing time: Wed 14 Feb 2024 15:09:13 +0000
ROA not before: Wed 14 Feb 2024 15:04:13 +0000
ROA not after: Wed 12 Feb 2025 15:09:13 +0000
asID: 151490
IP address blocks: 77.81.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Feb 2024 16:11:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:c4:47:c7:52:32:5e:6c:e8:e7:19:56:f3:dc:81:7b:99:f8:b3:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Validity
Not Before: Feb 14 15:04:13 2024 GMT
Not After : Feb 12 15:09:13 2025 GMT
Subject: CN=428B1E76808D66D96DC434BCAD4E5AD253CD239F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:da:66:4e:b4:d9:eb:98:10:45:1c:6a:01:36:
b1:f0:68:64:a1:28:3f:f5:19:9a:2a:a0:2a:73:39:
0a:50:21:c1:3a:89:b9:6f:41:cd:74:20:3d:ab:ec:
bb:63:af:cd:a1:e6:f7:42:b9:9b:7b:79:bc:a1:fb:
13:06:ac:b9:a6:b1:c8:15:01:85:1b:07:87:45:c1:
60:f9:fd:8a:9e:f3:e9:2e:11:3d:53:eb:30:b1:c9:
dc:55:0a:0c:9d:c6:ea:47:94:68:a6:54:c2:ba:5c:
9a:94:7f:b5:05:73:49:bf:da:09:06:e4:0e:23:3c:
5a:41:8a:d6:23:1b:5d:23:44:14:b8:3c:82:aa:dd:
69:f6:62:8b:ae:77:f2:83:ac:c9:9f:ad:3b:77:74:
7e:0a:6d:0b:6d:81:02:67:2a:13:30:f6:a2:da:36:
59:f6:e5:ff:3f:24:bc:4f:ad:d4:84:46:55:55:ef:
d7:05:73:98:eb:da:41:6b:92:55:f5:ab:fe:3f:0f:
60:e5:d7:03:dd:f8:28:9b:8c:93:ea:f7:62:79:c8:
62:ad:4c:44:27:52:85:8f:d5:27:4c:5e:bd:01:fb:
0a:2a:62:8f:35:55:81:92:3d:6e:08:0c:d0:47:70:
0f:21:6a:4e:e6:42:de:66:b3:ea:fb:d2:99:aa:99:
92:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:8B:1E:76:80:8D:66:D9:6D:C4:34:BC:AD:4E:5A:D2:53:CD:23:9F
X509v3 Authority Key Identifier:
keyid:ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/37372e38312e3133382e302f32342d3234203d3e20313531343930.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.138.0/24
Signature Algorithm: sha256WithRSAEncryption
50:8e:2c:da:fa:bf:f0:e0:ec:ec:e0:cf:40:c2:6d:07:5b:c6:
97:d1:0d:14:c6:6f:38:c7:61:73:a1:a5:e3:f6:2c:68:23:e6:
bf:b8:08:c5:b5:d9:52:36:6f:b9:f7:ce:d7:85:84:80:1f:2a:
a9:cc:26:b3:71:5f:cc:a2:95:da:08:d1:60:6b:26:05:09:fb:
b4:c3:a9:1b:f5:31:49:84:b8:0f:91:22:3a:a1:d9:4e:8e:e0:
10:d1:20:c8:76:a4:77:0b:11:24:98:76:52:fe:df:3c:3a:1a:
aa:fc:a9:7b:ac:96:e8:20:2b:ff:e1:a5:b3:55:2d:f9:7d:16:
39:c5:bd:7f:d0:90:ac:52:18:3d:9a:43:0e:fe:17:b8:a9:50:
d4:8c:57:51:39:6b:48:96:9a:97:dd:2e:48:00:57:d2:76:d7:
48:50:3b:14:6c:05:aa:83:ae:ef:13:7b:34:f3:ed:e5:cf:f2:
0a:8e:d2:98:80:84:87:c2:33:00:8a:6b:c6:4d:60:ee:b8:e6:
92:e3:62:dd:97:46:4b:b1:e9:67:f5:29:78:05:8f:61:00:88:
46:24:77:07:dc:49:2b:3b:ef:07:d4:87:8c:77:06:16:36:9e:
40:8f:5f:b7:e5:13:f0:1c:54:8d:9e:55:fc:00:d3:74:9b:b6:
e7:ca:17:3a
-----BEGIN CERTIFICATE-----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Generated at Wed Feb 14 21:22:14 2024 by rpki-client on console-fra.rpki-client.org