Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/36322e37322e32302e302f32322d3232203d3e203437353833.roa
File: 36322e37322e32302e302f32322d3232203d3e203437353833.roa (raw, json)
Hash identifier: Q8QE/FGj8jCKvYaYrBgUcfyIvQ7IFZNazaavLA08Jwk=
Subject key identifier: F7:B1:90:86:C0:59:31:46:65:43:F1:5D:3B:67:FF:68:85:80:4D:DC
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 60350FE3539C29E274F01CA338E8DC260348C040
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/36322e37322e32302e302f32322d3232203d3e203437353833.roa
Signing time: Wed 12 Jun 2024 19:03:53 +0000
ROA not before: Wed 12 Jun 2024 18:58:53 +0000
ROA not after: Wed 11 Jun 2025 19:03:53 +0000
asID: 47583
IP address blocks: 62.72.20.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 13 Jun 2024 11:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:35:0f:e3:53:9c:29:e2:74:f0:1c:a3:38:e8:dc:26:03:48:c0:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 12 18:58:53 2024 GMT
Not After : Jun 11 19:03:53 2025 GMT
Subject: CN=F7B19086C05931466543F15D3B67FF6885804DDC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:5a:84:ff:9c:d3:d3:28:f6:5e:5f:f2:17:12:
14:aa:a1:4c:02:ac:e7:0f:3c:3e:cd:02:fd:98:c4:
29:aa:c3:42:f3:2a:25:32:21:e4:0e:83:66:65:f5:
ac:6e:3e:fb:f0:65:45:22:09:8a:fc:55:68:a0:13:
f2:b4:37:fe:ec:65:58:df:a8:1d:66:fb:a6:37:61:
df:e1:3c:9b:49:7a:d7:da:79:9a:e2:fe:77:9a:cd:
7f:b5:2b:dc:16:f0:7d:dd:46:41:bb:c1:ff:a1:10:
e0:d8:e3:73:da:64:a4:b9:38:36:b1:a6:18:44:83:
dd:c4:8a:47:9b:43:3b:ae:be:2d:ff:3e:11:57:68:
9f:f2:62:2d:d9:56:b4:df:16:e9:96:ac:c8:6c:d5:
e5:9c:7e:0c:f5:3e:e3:40:c1:7b:09:22:a3:44:32:
e9:81:36:51:9a:9e:dc:e7:52:78:be:20:39:55:b0:
84:98:2d:98:25:f9:50:3c:c7:ab:d8:fc:24:29:8f:
79:30:df:27:ae:c0:2b:b9:f4:75:bc:6b:20:df:a1:
72:26:65:e5:83:b2:39:64:da:f5:cb:d2:4c:3b:07:
09:ba:2f:f7:11:d9:65:7b:06:91:b1:67:6f:5b:c0:
df:6e:be:52:65:b3:e3:8e:84:07:cb:28:7e:11:f2:
3b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:B1:90:86:C0:59:31:46:65:43:F1:5D:3B:67:FF:68:85:80:4D:DC
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/36322e37322e32302e302f32322d3232203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.20.0/22
Signature Algorithm: sha256WithRSAEncryption
36:3a:ea:37:90:96:6f:fa:b9:c2:db:fe:5c:18:b9:8d:be:99:
25:32:ea:f7:63:89:e7:c1:86:f0:22:ea:fc:67:d3:e3:53:18:
64:65:5d:29:ac:ed:a1:f5:fa:ff:53:59:71:dc:cd:2e:b8:a2:
a9:76:cc:29:79:be:af:10:55:9d:1b:c9:47:83:e8:a7:15:9c:
52:14:a8:36:64:78:32:66:2d:d7:70:ef:13:6e:6a:48:3f:c6:
29:3e:08:cb:3b:5d:98:90:15:96:68:76:ce:fb:04:50:43:65:
dd:45:d0:29:7b:b7:e8:70:b4:1f:59:55:45:8d:d9:46:3b:ed:
ec:5a:1b:de:db:d9:23:f5:fc:89:aa:68:e6:10:bc:44:74:d1:
6b:f0:fc:d9:6c:f0:2f:f1:86:4e:32:f7:fc:f4:4b:63:99:ee:
64:bd:80:42:f0:2b:c9:8b:85:28:c5:cf:4f:04:5d:88:63:b8:
bb:5c:57:ea:89:ac:96:39:51:0b:b8:77:8a:da:5d:92:49:2a:
d5:ff:da:cc:c1:2b:16:90:5e:fd:68:ac:26:2a:10:3a:e8:c8:
c4:14:bb:ce:0f:5a:2d:e4:3c:43:b9:05:4a:6b:1d:61:ed:84:
37:e9:a3:f4:35:ab:5f:4e:d5:38:e2:c8:b4:f0:4f:40:37:7c:
89:65:ef:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 13 14:15:32 2024 by rpki-client on console-fra.rpki-client.org