Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32352e302f32342d3234203d3e203136363238.roa
File: 38322e3131382e32352e302f32342d3234203d3e203136363238.roa (raw, json)
Hash identifier: kWijMlq1Rb3rlW1l2XMBkuFgLJY61ph44ySdJC1PKlE=
Subject key identifier: D5:08:4D:04:A8:B2:48:1E:DE:24:5E:DC:CE:2B:2D:8A:2B:13:85:89
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 609C25B3D89BB59B8A720D50CC9A13842FBA48E8
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32352e302f32342d3234203d3e203136363238.roa
Signing time: Wed 24 Jan 2024 17:09:58 +0000
ROA not before: Wed 24 Jan 2024 17:04:58 +0000
ROA not after: Wed 22 Jan 2025 17:09:58 +0000
asID: 16628
IP address blocks: 82.118.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 25 Feb 2024 10:04:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:9c:25:b3:d8:9b:b5:9b:8a:72:0d:50:cc:9a:13:84:2f:ba:48:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: Jan 24 17:04:58 2024 GMT
Not After : Jan 22 17:09:58 2025 GMT
Subject: CN=D5084D04A8B2481EDE245EDCCE2B2D8A2B138589
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e9:db:5e:c8:36:a5:8d:b5:c4:7f:63:4d:be:
0c:f6:15:90:57:12:43:80:cf:e1:69:2b:91:5f:de:
ee:f1:b3:da:a0:56:98:a9:ab:88:10:4b:7c:54:8e:
d3:88:52:03:d2:2d:cd:35:ea:cf:bf:83:1b:56:ae:
e8:08:60:1a:58:de:db:fc:e3:1d:f4:73:18:63:da:
23:a6:c4:ba:91:64:4b:2b:d9:53:66:cb:34:f8:c3:
1b:4e:78:07:67:eb:cb:09:c5:82:a2:69:57:f9:b4:
8a:5d:f2:31:59:fc:90:6a:f5:60:22:a3:71:ca:f6:
40:da:e9:a8:65:66:0b:b6:dd:d4:fe:5c:29:6b:69:
44:78:c5:df:69:4d:3d:f1:dc:56:7c:d7:8c:3c:29:
53:37:44:ef:2c:4f:33:1a:bc:cb:e6:fe:dc:a6:e5:
2e:a2:0e:d2:ed:4e:e8:29:68:38:45:df:0b:46:57:
da:b1:7c:8d:99:bc:b8:1b:b5:20:4d:86:3d:03:17:
e4:4f:aa:27:8f:0a:48:d4:63:c9:79:dc:81:53:5f:
43:58:f0:f6:ec:0b:66:db:80:89:43:d2:b3:70:91:
5e:76:ec:92:54:ee:51:02:90:55:67:46:8d:4a:e0:
f4:1b:86:5e:94:47:3a:e2:70:60:7c:28:85:18:15:
6a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:08:4D:04:A8:B2:48:1E:DE:24:5E:DC:CE:2B:2D:8A:2B:13:85:89
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32352e302f32342d3234203d3e203136363238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.25.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:ea:fe:1d:16:ec:92:73:18:33:bc:8d:bc:b4:1a:51:bd:d6:
85:80:d2:a1:aa:35:a0:8d:a4:5f:37:e2:ba:d4:9e:ca:a6:b9:
0c:b1:f7:36:fa:39:f7:59:5a:54:bc:2d:6e:37:f1:d6:32:75:
df:09:cb:7a:17:c7:31:e1:25:31:5c:ab:d8:01:95:09:25:6a:
5b:ab:cc:5a:7c:37:f2:16:ed:7c:9c:fa:f7:4f:a0:ef:b9:33:
79:12:77:4e:cc:9a:21:b8:36:dd:1d:93:d3:7d:f0:31:cf:bd:
7f:60:5d:6a:ee:61:c9:1d:4a:90:fd:e1:a4:e0:cc:b2:76:cb:
4e:1d:a8:3a:e3:7f:6a:62:7a:79:7a:8e:7e:e3:ee:1c:5d:6d:
2c:4b:0e:67:2e:29:6c:02:bb:e5:4e:fc:63:0d:7e:29:85:e4:
e1:58:4f:3f:03:97:66:09:05:98:26:0a:0b:e1:fe:b6:d0:f3:
3c:41:0e:ab:61:9c:cb:9c:88:a1:f6:6b:99:fe:de:f5:79:fc:
72:32:e4:c4:49:62:88:d3:3e:5d:15:bb:a1:30:c6:1d:92:ca:
52:94:1e:2a:e9:c8:85:81:5c:13:e4:b4:b3:fe:b1:f7:6c:14:
83:7e:88:ad:7d:6b:f4:7a:17:e4:f3:b7:f4:42:45:77:c3:3f:
dc:6b:dd:b6
-----BEGIN CERTIFICATE-----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Generated at Sun Feb 25 11:00:26 2024 by rpki-client on console-ams.rpki-client.org