Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/36322e37322e35362e302f32312d3231203d3e203437353833.roa
File: 36322e37322e35362e302f32312d3231203d3e203437353833.roa (raw, json)
Hash identifier: 8izl6vOOapunwFg6iVE6sfE38IDca6VMsmdL3AzMsCs=
Subject key identifier: 64:BB:57:C9:92:A6:14:02:09:CE:17:9A:13:82:D5:75:64:7A:F7:AF
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 412552C161C5B749873BDFCC9860A99333023770
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/36322e37322e35362e302f32312d3231203d3e203437353833.roa
Signing time: Tue 09 Jul 2024 08:04:11 +0000
ROA not before: Tue 09 Jul 2024 07:59:11 +0000
ROA not after: Tue 08 Jul 2025 08:04:11 +0000
asID: 47583
IP address blocks: 62.72.56.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 09 Jul 2024 12:26:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:25:52:c1:61:c5:b7:49:87:3b:df:cc:98:60:a9:93:33:02:37:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jul 9 07:59:11 2024 GMT
Not After : Jul 8 08:04:11 2025 GMT
Subject: CN=64BB57C992A6140209CE179A1382D575647AF7AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ec:31:19:43:d8:dc:f7:76:c4:9d:bd:9f:a5:
26:0a:13:1f:9c:8a:6a:83:ba:2e:bf:2e:72:cb:37:
8e:33:8a:59:bb:69:02:d6:4b:14:aa:71:1b:65:4e:
8a:0f:13:d3:7b:0d:b6:48:3e:93:46:fb:0d:c3:9b:
67:39:69:21:cb:dc:ce:57:2d:ec:9f:4a:16:2c:8c:
24:05:8e:43:2b:8b:24:a5:dd:e6:d4:df:1c:2a:b3:
26:cb:77:b6:85:c4:35:11:f6:33:b5:58:6a:90:90:
18:27:ea:c9:2f:1a:f1:a2:53:7b:e2:ce:9e:06:ba:
ea:b0:17:3f:8e:6d:08:fa:cd:db:c7:b8:c5:a9:39:
39:7d:c4:43:fd:57:af:1d:06:f3:a4:ac:32:84:a4:
e4:6c:c0:cb:82:f4:ff:25:f1:26:fa:0e:46:5a:4a:
53:f1:54:57:a7:29:7d:15:02:e3:9f:6f:a9:43:4e:
62:b6:85:19:81:96:9e:8c:32:5d:a4:2e:b5:37:5a:
77:36:7d:15:c4:6c:d1:60:6d:1c:ab:fe:a0:86:13:
f8:32:de:69:6e:4f:06:8b:ea:89:5d:6b:8b:f7:24:
8c:fc:a8:97:08:23:05:d8:17:1c:53:72:a6:d7:9d:
36:54:d6:12:5e:6e:9c:97:4f:64:e3:75:3b:b1:60:
f3:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:BB:57:C9:92:A6:14:02:09:CE:17:9A:13:82:D5:75:64:7A:F7:AF
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/36322e37322e35362e302f32312d3231203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.56.0/21
Signature Algorithm: sha256WithRSAEncryption
71:82:ff:58:af:ba:11:d9:04:2a:85:6e:af:ec:5d:f9:96:f8:
9f:bb:ec:f3:ca:9d:f8:b2:c2:4c:7f:e9:a8:a3:3e:22:9b:25:
82:a2:39:77:8f:13:6b:82:6f:de:ce:e9:ed:c9:57:9c:76:ce:
ea:20:14:15:2b:3e:be:8c:ec:fe:aa:a9:e5:69:e0:30:75:97:
36:8f:07:e8:63:0c:e5:f9:c8:4d:ea:e1:91:08:d2:50:52:d6:
b1:04:4f:aa:39:6f:60:d1:02:96:31:3e:f7:23:31:e7:bd:04:
52:ee:2b:8a:d1:ff:7b:07:41:a0:4e:70:c4:46:17:a3:ba:ad:
74:d4:4f:a7:f3:f5:c2:4d:c9:59:81:f6:27:ee:e7:fb:e2:37:
f8:c3:1c:0a:2f:b9:3e:43:95:e3:e5:bd:fe:2e:07:de:9c:b1:
64:8d:58:27:a8:f5:a9:11:d5:3e:2f:95:f1:d3:19:f0:1c:ac:
76:8e:26:81:dc:cc:74:d4:c0:af:b7:42:27:f6:df:8d:55:39:
75:b3:01:77:18:6d:5a:ce:79:bc:aa:f9:01:7d:3e:51:d7:95:
2a:0d:d1:1b:14:35:32:c6:29:16:48:16:fe:17:7b:7b:f5:59:
15:5f:7f:72:e1:45:95:7b:f1:2e:2b:af:79:0f:b9:e5:84:71:
06:67:f0:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 9 15:52:58 2024 by rpki-client on console-ams.rpki-client.org