Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/322e35362e3235342e302f32342d3234203d3e20323134383238.roa
File: 322e35362e3235342e302f32342d3234203d3e20323134383238.roa (raw, json)
Hash identifier: 9JVSdKbX8FLtXzpw4+O/B0d88ayWmb6U2v1u/yhcMCQ=
Subject key identifier: D4:35:45:31:53:2D:98:F9:03:D4:E0:44:61:3B:5F:ED:7D:FA:23:11
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 710E08E2C0289CEB7F0B5ACDDAACB377EE792053
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/322e35362e3235342e302f32342d3234203d3e20323134383238.roa
Signing time: Tue 28 May 2024 16:01:19 +0000
ROA not before: Tue 28 May 2024 15:56:19 +0000
ROA not after: Tue 27 May 2025 16:01:19 +0000
asID: 214828
IP address blocks: 2.56.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 26 Oct 2024 21:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:0e:08:e2:c0:28:9c:eb:7f:0b:5a:cd:da:ac:b3:77:ee:79:20:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 28 15:56:19 2024 GMT
Not After : May 27 16:01:19 2025 GMT
Subject: CN=D4354531532D98F903D4E044613B5FED7DFA2311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:15:83:f9:ac:5c:44:b1:e6:2b:aa:bb:fd:0d:
c4:44:bb:52:bf:0f:8c:12:5c:1b:09:59:4b:74:d6:
fe:fa:b3:95:2e:68:5d:ac:20:62:a9:09:57:9e:d5:
78:34:36:d6:6b:87:0b:7c:4a:78:fb:8c:f3:0f:3c:
39:a4:ed:ab:30:3e:3c:f5:c4:56:dd:4c:7a:0b:25:
5e:c0:49:f5:06:ab:b9:fc:a0:e4:3e:58:83:7d:53:
92:fe:39:af:28:58:ef:ac:5e:2e:15:49:8d:e5:de:
61:a3:b4:88:cc:cb:5e:ff:66:a9:43:ff:4e:ea:e1:
71:69:d4:2b:77:12:b5:04:06:a6:01:91:68:86:92:
68:62:57:ab:3d:2e:9d:d9:0f:53:3d:c8:e5:10:e4:
ff:ec:a7:49:32:6a:6f:36:34:67:aa:49:ef:ba:cb:
78:a1:32:46:b9:cd:43:89:8c:28:44:d6:d3:81:43:
b9:8f:09:a0:c1:86:a2:6e:ff:da:16:f8:ea:9f:06:
ca:0b:41:43:49:19:da:39:1b:ea:b0:cc:c7:78:cb:
18:d3:3a:0b:22:9e:f8:ce:fd:42:cb:64:e0:a7:ef:
03:2d:ca:12:41:a4:a4:4e:d2:32:f1:f1:74:a2:ce:
18:45:11:c5:72:8f:0d:18:8f:a4:4d:f5:31:42:45:
a1:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:35:45:31:53:2D:98:F9:03:D4:E0:44:61:3B:5F:ED:7D:FA:23:11
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/322e35362e3235342e302f32342d3234203d3e20323134383238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.254.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:5d:b0:13:12:36:3d:ce:18:85:a9:bb:f2:a0:ed:e4:59:e4:
f7:65:6f:3a:ff:19:0c:96:19:71:d4:3b:bd:95:00:ec:50:46:
b6:cf:46:97:52:d5:22:fb:53:13:a4:1c:b5:ea:a6:7a:51:54:
25:32:ee:2b:ab:d8:fc:f6:78:e9:82:bc:79:4d:e3:c1:21:fc:
d7:3b:27:97:15:c4:86:46:79:aa:38:8a:0b:9a:ee:9d:44:d9:
9b:0b:45:4e:8e:2d:bd:9f:08:4a:fd:af:06:67:c8:b9:10:49:
fa:7d:c9:4a:de:57:9b:56:6b:71:25:b2:67:b5:61:70:54:bd:
00:d4:b7:9f:2d:a8:c9:c7:a7:14:c0:b4:1e:b1:5b:d5:71:fe:
80:29:82:36:7c:ab:d5:4b:88:1c:6d:e1:73:d5:38:06:3d:45:
50:18:d7:c8:31:bb:a5:8d:d9:eb:8b:2c:85:80:df:aa:a8:b3:
2f:55:f7:55:d7:77:2f:5d:71:c1:c8:1c:a1:08:85:a9:02:bb:
9f:58:38:d5:e1:bb:58:7b:06:4f:75:9b:7e:db:43:e2:36:74:
b6:c3:68:b0:ba:9d:93:ac:ae:aa:df:2d:00:c9:d6:91:e3:0a:
a0:d0:3b:fe:77:4a:b4:1d:26:c4:0c:6c:66:d6:76:29:e3:85:
1b:50:db:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:59:54 2025 by rpki-client