Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32372e302f32342d3234203d3e203239383032.roa
File: 38322e3131382e32372e302f32342d3234203d3e203239383032.roa (raw, json)
Hash identifier: WX8cVydViU+5zF8uf/089r8CllAc/aZTSQzhvu2NGWU=
Subject key identifier: 70:BD:0A:34:2D:DC:4E:C6:8C:39:28:43:97:41:A4:7A:E6:06:11:BB
Certificate issuer: /CN=0d059f10d18d00052c808eb8069f90d47e30564a
Certificate serial: 6C3FE4EFD852EB47180B9F09E49D118E51D3DCEB
Authority key identifier: 0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32372e302f32342d3234203d3e203239383032.roa
Signing time: Thu 04 May 2023 10:56:21 +0000
ROA not before: Thu 04 May 2023 10:51:21 +0000
ROA not after: Thu 02 May 2024 10:56:21 +0000
asID: 29802
IP address blocks: 82.118.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Feb 2024 00:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:3f:e4:ef:d8:52:eb:47:18:0b:9f:09:e4:9d:11:8e:51:d3:dc:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d059f10d18d00052c808eb8069f90d47e30564a
Validity
Not Before: May 4 10:51:21 2023 GMT
Not After : May 2 10:56:21 2024 GMT
Subject: CN=70BD0A342DDC4EC68C3928439741A47AE60611BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:19:c9:ae:0d:15:f0:5e:9c:70:70:ee:26:56:
23:eb:06:93:10:1f:98:80:06:70:c7:2e:71:f1:74:
2f:d1:84:a7:71:0c:3e:b4:a3:22:9d:26:e8:88:3a:
c1:23:01:02:ea:3a:a1:f9:83:bd:07:f5:37:e8:4e:
45:36:4e:6d:f4:a9:3d:93:c3:f8:25:18:b5:9f:87:
28:71:54:6b:86:a8:88:78:4d:0e:0c:d5:40:47:2c:
80:ea:7f:2c:5a:9a:e0:c7:ce:ee:d6:61:7a:90:b9:
6f:50:cc:c5:f3:27:ac:3e:23:c8:c2:3e:f1:bd:ee:
2f:4a:dc:bd:86:7a:e1:ef:b1:6f:8d:64:7e:6d:09:
18:d4:0a:cd:bb:72:6a:33:7d:5e:6c:0d:b1:e1:e8:
11:95:bd:f2:01:7d:5f:09:3d:b1:d7:e8:90:15:dc:
b2:08:4b:5d:9b:d0:39:bc:43:bb:e1:f1:54:77:d2:
ea:c7:9c:bc:d8:91:af:e1:3c:9e:2c:8f:ca:38:41:
5e:a0:39:c4:9a:78:d3:7a:60:77:a9:a6:a5:ba:86:
e6:9f:35:32:e3:bd:e0:26:2d:77:48:c4:82:e5:c9:
b6:ed:bc:44:72:a9:9a:24:c6:7b:a9:b8:9f:2f:05:
1c:66:65:a1:4e:81:ba:7e:61:42:18:78:66:92:56:
69:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:BD:0A:34:2D:DC:4E:C6:8C:39:28:43:97:41:A4:7A:E6:06:11:BB
X509v3 Authority Key Identifier:
keyid:0D:05:9F:10:D1:8D:00:05:2C:80:8E:B8:06:9F:90:D4:7E:30:56:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/0D059F10D18D00052C808EB8069F90D47E30564A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQWfENGNAAUsgI64Bp-Q1H4wVko.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/faf16704-2854-4080-9a09-7262326c9e22/1/38322e3131382e32372e302f32342d3234203d3e203239383032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.27.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:b9:01:09:e2:05:5a:ac:ea:ff:d5:4d:9f:e9:fe:c8:5c:f9:
9c:49:7c:c2:c1:4c:ba:0f:74:2b:38:cc:9e:d6:68:2a:e8:2d:
74:22:9a:07:9e:48:25:4a:ac:b7:3c:74:8d:29:bd:18:45:db:
3c:03:c1:33:ea:43:97:d9:ff:ed:9b:cd:d9:62:69:11:78:0c:
14:e6:dd:8e:c0:27:93:f9:cb:e6:bd:e4:ce:e6:7a:96:ed:2c:
c5:22:c0:13:db:c4:81:29:c8:df:37:f2:02:e1:80:90:01:35:
aa:74:51:73:80:ba:22:e1:71:11:a8:a0:49:d1:df:07:8b:b4:
09:f1:ad:9b:47:40:64:07:7a:df:f8:71:de:ed:cb:e7:ff:51:
63:6d:a5:fe:40:22:1a:24:30:97:cf:d1:7a:7d:0b:b5:5f:85:
f4:22:2f:13:b1:0f:47:d8:e0:d1:23:95:36:0b:63:b3:e0:46:
28:7b:01:5c:e4:b1:da:43:d1:f1:17:2c:d2:04:b1:25:d7:37:
83:52:c3:ec:50:16:69:85:53:3d:de:89:45:44:7f:16:70:e7:
51:fd:39:1e:95:f5:ac:80:af:5a:14:17:d3:8d:90:98:b5:09:
d5:be:f0:13:2e:1d:01:0b:eb:be:e6:95:03:ba:a5:d1:be:22:
26:61:bf:c4
-----BEGIN CERTIFICATE-----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Generated at Fri Feb 2 03:16:37 2024 by rpki-client on console-fra.rpki-client.org