Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3137322e35322e302f32332d3234203d3e20313437303439.roa
File: 3138352e3137322e35322e302f32332d3234203d3e20313437303439.roa (raw, json)
Hash identifier: OMN3KSNdN0849iM3/G8saybwQwigN8Tpgd57/ZkVlRE=
Subject key identifier: D3:3B:CA:94:EB:23:BB:4A:9A:32:FB:5C:0D:0E:F3:81:41:C0:2B:80
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 2DB855CB3B0B73F7EF4C7BC3B8CA3F2182CFBB07
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3137322e35322e302f32332d3234203d3e20313437303439.roa
Signing time: Fri 16 Jun 2023 22:02:53 +0000
ROA not before: Fri 16 Jun 2023 21:57:53 +0000
ROA not after: Fri 14 Jun 2024 22:02:53 +0000
asID: 147049
IP address blocks: 185.172.52.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Jun 2023 10:12:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:b8:55:cb:3b:0b:73:f7:ef:4c:7b:c3:b8:ca:3f:21:82:cf:bb:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Jun 16 21:57:53 2023 GMT
Not After : Jun 14 22:02:53 2024 GMT
Subject: CN=D33BCA94EB23BB4A9A32FB5C0D0EF38141C02B80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:69:cb:e7:cb:1c:a3:33:38:28:6a:b6:c9:d2:
d6:57:ef:0a:51:c2:9a:6b:75:82:95:22:61:44:09:
a5:cb:7b:61:d8:de:a7:b3:01:4c:2a:d0:6e:00:30:
76:3c:39:ed:7a:bd:dd:40:5f:79:31:ac:de:91:17:
e4:3a:ad:f9:1a:e7:ba:2a:42:49:a7:f8:fd:4c:4b:
b0:a7:ec:93:dd:b1:ee:5b:f5:0a:8c:88:ec:2c:a9:
7f:25:02:d2:77:62:7c:cf:ec:80:53:d2:34:29:0f:
d9:0a:1e:6d:1f:25:43:13:4b:23:18:ab:22:3c:fd:
4f:c4:ea:05:d6:48:6a:ff:48:02:c4:e5:9a:41:80:
bc:14:08:25:69:c4:be:b3:65:ca:a1:0a:5f:9d:b8:
ad:7e:9d:35:28:b0:72:89:dd:36:61:ec:eb:b7:42:
3b:7d:49:20:72:d5:8e:9a:53:63:a0:7d:79:d3:04:
c9:7e:d5:11:e9:de:a3:e1:a4:0d:b0:06:2f:fb:15:
4a:10:dd:64:3b:ad:32:16:2c:bb:67:1b:69:83:5c:
38:9b:6d:9d:6f:73:1c:32:07:10:dd:4e:b5:61:63:
24:81:63:09:99:e5:1a:ae:25:80:c6:bc:bd:30:b1:
d5:5c:c2:69:3f:6e:d3:98:ba:fd:18:6d:e2:f6:16:
25:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:3B:CA:94:EB:23:BB:4A:9A:32:FB:5C:0D:0E:F3:81:41:C0:2B:80
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3138352e3137322e35322e302f32332d3234203d3e20313437303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.52.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:94:a9:b7:03:2a:f4:16:89:d7:0e:6f:1f:3e:ce:b9:a6:15:
21:1e:1f:82:af:9f:f7:a4:4f:45:fa:a4:89:e2:7f:b1:3d:c7:
55:9e:a3:15:0a:00:13:7f:e2:c4:85:2c:3d:b2:c7:2f:b5:82:
b2:92:db:dd:a0:d5:31:5d:b7:b5:c8:62:eb:99:6d:42:d6:53:
b4:fe:de:87:b3:62:c4:f0:26:92:46:33:cc:95:2d:aa:9c:91:
93:28:d9:6b:ea:12:f3:61:8c:ef:16:ed:80:f0:d4:cd:08:e6:
14:d9:33:90:ae:2f:eb:21:83:e6:bf:4e:e5:ed:16:a7:21:63:
02:16:25:fa:20:e3:e7:52:b0:48:07:f5:0d:c2:5f:d3:6b:e1:
35:45:6b:27:7d:bf:9e:1f:12:f8:7e:69:a0:43:b2:f1:37:33:
3f:1e:9b:71:9a:5d:e2:8a:2f:86:7a:8b:d8:1b:7d:9f:cf:93:
d2:3f:d8:0b:48:2b:71:8a:83:38:cf:94:f3:d8:32:db:f0:f4:
bb:5c:8a:4a:62:44:fe:c5:c0:83:8e:bd:03:0d:8e:e8:27:bf:
c7:01:26:4c:37:5f:82:16:21:da:d0:2e:da:73:c9:e5:81:ca:
dd:43:f4:cb:c0:a5:b3:b0:cc:a8:12:0c:ac:14:de:25:ee:09:
12:77:98:c4
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:22 2024 by rpki-client on console-fra.rpki-client.org