Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/36322e37322e382e302f32322d3232203d3e203437353833.roa
File: 36322e37322e382e302f32322d3232203d3e203437353833.roa (raw, json)
Hash identifier: yvl0fps6z6hRvR3lBUZ7OtpH6D81XJhRh8MYZdA5KYc=
Subject key identifier: 8F:B4:69:CF:1C:49:33:0D:8C:95:EF:EA:00:E6:89:9C:66:A5:56:F0
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 0FA24A998C555EDCA8771EC51052688BF9A01FD7
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/36322e37322e382e302f32322d3232203d3e203437353833.roa
Signing time: Wed 12 Jun 2024 19:03:53 +0000
ROA not before: Wed 12 Jun 2024 18:58:53 +0000
ROA not after: Wed 11 Jun 2025 19:03:53 +0000
asID: 47583
IP address blocks: 62.72.8.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 13 Jun 2024 11:04:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:a2:4a:99:8c:55:5e:dc:a8:77:1e:c5:10:52:68:8b:f9:a0:1f:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jun 12 18:58:53 2024 GMT
Not After : Jun 11 19:03:53 2025 GMT
Subject: CN=8FB469CF1C49330D8C95EFEA00E6899C66A556F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:25:f6:44:d2:be:9a:e2:22:d8:17:7c:bb:c2:
1e:03:c5:b0:25:f7:fa:c7:d9:80:23:ce:47:43:40:
90:fe:d3:68:a2:e2:8d:f8:d3:91:95:55:42:94:6e:
44:1b:1c:e9:ca:70:dd:58:f0:af:45:a8:61:02:68:
95:72:cd:34:af:a2:7a:a3:09:01:54:03:0b:ed:7c:
d6:98:86:9a:97:40:17:86:5e:b3:b8:15:12:eb:92:
74:c6:c9:b4:9f:f4:95:ff:c0:77:6c:e2:0b:11:d6:
ae:1d:c1:7a:75:cd:ba:19:fd:b0:a4:31:61:05:eb:
f4:bf:eb:35:95:1c:86:d9:ba:7a:d9:1e:ca:a2:77:
75:98:0a:c7:06:f0:ce:3f:93:26:66:38:5c:05:7b:
89:27:3f:e3:98:9c:30:ed:35:c0:19:c8:ce:9b:f7:
90:0e:63:13:a6:18:80:20:c0:f5:4a:01:5a:22:3b:
87:09:c6:94:a3:b6:74:48:5c:68:09:34:3c:43:7a:
79:21:1a:1f:5f:c9:85:1f:02:c6:8b:24:59:94:03:
9a:42:dc:c6:8c:d3:f7:5b:2f:0e:68:d1:f7:20:9c:
29:c1:f2:16:ba:16:32:ce:ce:b3:0e:6c:88:e2:25:
4f:78:76:7f:a7:48:ec:8b:43:89:17:82:05:38:6f:
9c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:B4:69:CF:1C:49:33:0D:8C:95:EF:EA:00:E6:89:9C:66:A5:56:F0
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/36322e37322e382e302f32322d3232203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.8.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:fb:78:da:a1:b6:f7:17:0a:8c:f8:aa:11:02:c1:04:56:f3:
fd:c6:0a:59:11:80:ae:61:92:a9:12:a4:b1:77:f7:59:26:c7:
71:90:0f:e1:96:59:90:c0:d4:1d:a7:b1:09:c7:5d:64:ca:dc:
2a:f8:25:ad:30:f1:69:cf:10:66:44:4b:1c:6a:0b:ee:c7:eb:
14:ff:72:2c:36:c6:33:67:42:ee:59:cc:66:53:a4:25:4e:b1:
56:f4:1e:84:9c:7d:1e:50:d2:6e:71:33:3c:eb:1f:a6:7f:ed:
04:5d:a3:8d:e4:d9:41:b6:27:be:f8:a3:1d:b2:c6:b6:8b:69:
b3:e2:08:bc:2d:28:8d:60:77:c7:fc:e8:90:29:49:dd:dc:fc:
17:b3:cb:c4:99:2c:57:71:b1:31:a5:ed:48:e7:77:02:35:e9:
3b:90:e8:e9:08:34:7e:3a:d9:29:61:a3:12:f1:44:b6:53:0e:
fd:09:ec:5a:3f:04:be:ac:66:54:50:4c:39:cf:2d:32:bf:fd:
cb:60:f1:f0:9b:7e:12:63:ed:d7:4e:c3:f7:b4:c4:4d:7b:77:
8d:29:bb:b0:c5:9d:64:3f:4d:66:94:05:43:8f:58:20:4e:5f:
e3:14:19:c7:2d:30:a3:0d:fb:b2:15:cf:b8:d1:fb:b3:bb:83:
98:3a:7e:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 13 14:15:32 2024 by rpki-client on console-fra.rpki-client.org