Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/37372e38312e3133382e302f32342d3234203d3e203231383539.roa
File: 37372e38312e3133382e302f32342d3234203d3e203231383539.roa (raw, json)
Hash identifier: UAjw+6pfrxQ9KeXIApByx3NudlPxIzocTZE/x1BUdwQ=
Subject key identifier: 8C:47:5E:86:38:AF:AA:29:A1:0A:09:5B:05:01:14:D5:CE:9B:E7:1D
Certificate issuer: /CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Certificate serial: 03974F5DFACE1C17858252B6A4CC959FAEA72753
Authority key identifier: ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/37372e38312e3133382e302f32342d3234203d3e203231383539.roa
Signing time: Tue 03 Sep 2024 16:11:37 +0000
ROA not before: Tue 03 Sep 2024 16:06:37 +0000
ROA not after: Tue 02 Sep 2025 16:11:37 +0000
asID: 21859
IP address blocks: 77.81.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 00:01:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:97:4f:5d:fa:ce:1c:17:85:82:52:b6:a4:cc:95:9f:ae:a7:27:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Validity
Not Before: Sep 3 16:06:37 2024 GMT
Not After : Sep 2 16:11:37 2025 GMT
Subject: CN=8C475E8638AFAA29A10A095B050114D5CE9BE71D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:b6:13:66:7f:92:38:83:d9:ed:6e:53:26:cb:
e9:39:8c:d1:ff:36:2f:0d:fc:25:d5:d4:1d:61:7f:
45:42:a6:f4:a2:b0:54:2e:83:e5:e2:a2:bf:3c:b8:
2c:16:29:42:99:e7:da:d0:03:21:b7:28:a0:e8:26:
d2:69:bb:c2:96:c1:74:1b:c9:26:33:fa:62:8e:68:
06:fd:bd:00:f8:6e:d6:de:77:e3:37:b8:22:c5:9d:
85:23:a5:00:2e:97:d5:be:05:0a:32:0e:33:20:78:
96:d4:42:f8:16:dc:be:a3:39:6f:02:2f:53:a5:1e:
94:cc:82:ca:3b:03:05:5c:19:68:8b:6b:6e:db:01:
ed:f8:c3:5f:06:1b:7c:ea:b4:b3:87:d1:2e:49:b1:
2d:eb:ce:45:2d:dd:16:6d:3e:33:1d:d2:3c:b9:e4:
13:73:d0:8e:85:f2:6f:3b:a7:76:65:4e:2d:c7:60:
5d:7d:9b:99:8c:b8:c7:48:61:33:29:fb:fe:4c:2a:
93:55:ff:b6:b8:e3:a8:99:35:35:5d:c7:96:c3:2b:
77:83:bf:fd:c2:fb:9b:23:e8:20:bf:bf:fa:96:ee:
55:33:53:26:f6:e0:c6:88:4e:c9:b3:2f:61:eb:7a:
ff:da:e9:be:98:ac:81:cf:9a:d8:e4:1b:6d:ca:f3:
3a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:47:5E:86:38:AF:AA:29:A1:0A:09:5B:05:01:14:D5:CE:9B:E7:1D
X509v3 Authority Key Identifier:
keyid:ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/37372e38312e3133382e302f32342d3234203d3e203231383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.138.0/24
Signature Algorithm: sha256WithRSAEncryption
30:2f:9f:b8:92:a5:5e:c4:4e:4b:7c:4f:18:97:ee:dc:c2:45:
cd:4e:46:5e:00:b3:7a:be:d1:71:56:ae:7a:77:bb:9a:70:2c:
65:8f:92:9a:97:fa:45:27:f8:03:10:9d:e2:18:50:c0:e4:64:
8c:64:2a:2f:76:95:89:55:f1:e3:e9:81:d0:55:2d:50:a5:09:
74:1f:80:c5:28:46:3e:af:d2:44:3e:12:b4:30:eb:91:20:aa:
90:83:4d:43:1c:bd:16:2e:2c:33:2e:17:86:d4:46:d5:56:e7:
c8:46:bc:af:38:ab:06:03:11:54:9d:6b:71:f4:f2:86:eb:c1:
a9:de:ed:6c:b6:2e:46:40:0b:b0:41:09:5a:30:fb:73:32:e3:
01:4b:47:ff:22:01:af:21:60:37:ba:b9:54:a4:64:57:24:93:
9b:68:8e:6b:2a:ea:d3:f9:6a:28:72:9e:c2:1f:7a:cf:9f:d7:
02:92:dc:32:45:c1:dd:29:2e:95:be:10:9a:2c:0c:dc:d5:d6:
79:e4:6a:70:af:72:9b:b8:5b:8c:76:ae:9e:c0:00:34:09:e4:
23:dd:01:b0:d1:44:fe:82:12:c7:36:a3:e9:be:ba:b8:76:5e:
b6:2b:cf:cb:4f:9f:65:40:07:41:3e:39:42:ae:35:0c:99:72:
e6:92:dd:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:34:50 2025 by rpki-client