Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135372e3137332e3230382e302f32312d3231203d3e203437353833.roa
File: 3135372e3137332e3230382e302f32312d3231203d3e203437353833.roa (raw, json)
Hash identifier: +EiqW30jDm5MriS87VnH8KvKKTu8Bv2LE8JlxhZvbD4=
Subject key identifier: A3:7E:0F:AA:D7:B6:17:2E:46:BB:34:CF:4D:34:7A:34:12:76:8C:E3
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 141C04453B454B1331214675DA67A0A87540C772
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135372e3137332e3230382e302f32312d3231203d3e203437353833.roa
Signing time: Thu 23 May 2024 13:51:04 +0000
ROA not before: Thu 23 May 2024 13:46:04 +0000
ROA not after: Thu 22 May 2025 13:51:04 +0000
asID: 47583
IP address blocks: 157.173.208.0/21 maxlen: 21
Validation: Failed, certificate revoked on Thu 13 Jun 2024 10:59:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:1c:04:45:3b:45:4b:13:31:21:46:75:da:67:a0:a8:75:40:c7:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 23 13:46:04 2024 GMT
Not After : May 22 13:51:04 2025 GMT
Subject: CN=A37E0FAAD7B6172E46BB34CF4D347A3412768CE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4c:6c:82:8b:9e:b3:b5:dd:f1:9f:06:c9:55:
69:96:6e:65:f2:bd:c8:14:ec:fe:c0:73:c2:47:d8:
6a:8c:f4:21:12:07:3f:b7:6d:20:38:8d:4d:4f:0e:
f6:41:60:ef:90:97:ad:dd:c0:4d:b7:29:55:91:90:
ec:12:9d:6f:78:a4:ef:cc:93:14:3f:fd:d5:42:7e:
5a:bf:f2:59:86:36:6b:8d:ec:9a:4c:51:94:0f:d5:
1b:ad:28:53:4d:55:ad:c3:19:d1:9f:ac:24:e8:5d:
40:4b:69:06:18:81:21:eb:91:43:89:b5:d3:ae:99:
26:07:3f:00:d6:59:bf:a5:df:12:81:46:06:81:a9:
53:38:1e:d8:25:ff:27:03:55:52:51:c6:60:5c:14:
50:80:f7:c6:c9:19:43:df:c6:df:f4:59:93:35:57:
26:a2:f8:8d:a0:74:ad:4a:c3:d0:b5:61:19:ad:3b:
39:6d:bb:0a:b9:f7:29:da:ba:25:6e:11:9e:dd:4c:
08:69:1b:03:ad:6f:5c:70:fa:7a:d4:60:42:5f:8d:
3c:58:c3:16:32:a9:d3:8f:c0:1c:92:f1:d3:7e:f8:
55:35:ed:17:41:20:65:40:83:d6:95:17:22:0d:d0:
56:5c:09:df:b8:b1:02:17:1b:7c:81:c8:bf:88:78:
e0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:7E:0F:AA:D7:B6:17:2E:46:BB:34:CF:4D:34:7A:34:12:76:8C:E3
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135372e3137332e3230382e302f32312d3231203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.173.208.0/21
Signature Algorithm: sha256WithRSAEncryption
79:79:b7:ac:75:5a:b3:28:3b:a1:26:f0:5d:12:82:7a:66:68:
8c:51:ce:cb:c6:e5:5f:b2:2c:b7:18:d8:ef:42:44:b6:e9:a9:
e3:d5:93:f7:99:1b:cd:39:e1:4a:64:aa:5a:17:c6:95:a0:82:
bb:78:db:1a:a3:4f:2e:3f:40:fd:67:7d:f7:6d:04:18:2b:64:
eb:cd:ac:41:b8:24:e9:5c:5f:a6:63:74:e7:61:3a:45:88:f7:
98:c6:2d:b4:2b:90:c1:35:60:59:43:45:f8:8f:ae:08:29:e2:
49:86:93:7e:39:00:bd:09:58:67:b1:c2:ef:7d:a1:c7:eb:7e:
69:c3:1a:13:d4:ab:6d:ec:1b:4e:43:44:88:bc:22:3d:ed:bf:
69:5a:11:a6:b1:9f:a5:5e:c8:60:5f:c0:d4:8f:f9:02:da:4b:
26:ea:99:04:fd:18:2d:f2:10:e9:a4:26:92:2a:e8:0f:94:5d:
b9:ff:50:d0:62:e1:29:98:66:51:e4:90:ed:13:6c:7e:bb:0d:
7b:04:4c:fc:79:ae:88:e4:fa:b2:32:09:5c:d1:61:78:d9:1e:
c3:f0:30:21:83:52:5c:6a:46:be:1b:1a:79:60:5f:52:c4:78:
c9:c4:89:b7:c3:e4:78:22:0d:81:a1:0c:9a:b1:24:7e:39:f9:
0a:c6:df:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 13 14:15:32 2024 by rpki-client on console-fra.rpki-client.org