Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38302e3139302e38302e302f32312d3332203d3e203531313637.roa
File: 38302e3139302e38302e302f32312d3332203d3e203531313637.roa (raw, json)
Hash identifier: fX9hNfqUtD6KjTXh6KwS0IpMYy497Uk1tw5U6TD8+mw=
Subject key identifier: 69:E5:77:DC:13:BD:4F:0C:27:4D:0B:BC:7E:8B:F6:64:33:A3:28:56
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 38EA12D200A31A80A3415865819E4A1844A11710
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38302e3139302e38302e302f32312d3332203d3e203531313637.roa
Signing time: Mon 27 Mar 2023 08:28:19 +0000
ROA not before: Mon 27 Mar 2023 08:23:19 +0000
ROA not after: Mon 25 Mar 2024 08:28:19 +0000
asID: 51167
IP address blocks: 80.190.80.0/21 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:ea:12:d2:00:a3:1a:80:a3:41:58:65:81:9e:4a:18:44:a1:17:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Mar 27 08:23:19 2023 GMT
Not After : Mar 25 08:28:19 2024 GMT
Subject: CN=69E577DC13BD4F0C274D0BBC7E8BF66433A32856
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:57:c1:db:1d:7e:d6:c6:cf:92:51:fd:77:26:
cb:3a:b1:5d:a3:cf:50:ac:0d:91:35:88:97:72:24:
8b:90:11:0b:62:a5:4a:67:c5:e7:2d:aa:67:4a:9c:
ba:39:3e:4a:5a:f3:3c:b7:b7:59:5b:6b:ed:f8:91:
25:df:00:d1:f0:5d:ea:dc:31:ec:f3:3f:d7:b5:0c:
7a:eb:0d:7d:68:46:26:96:49:d5:18:93:96:3b:1a:
77:74:ef:5d:a1:1b:15:4d:58:76:6d:da:fa:1f:96:
88:68:43:d3:08:d0:12:65:6d:66:32:92:9c:14:59:
c4:00:b7:b9:0f:12:bd:2b:34:fa:cf:93:9c:65:79:
d8:dc:a0:a7:3f:7d:fb:42:1e:ec:5f:7a:21:52:1b:
d4:28:bc:4c:15:20:cd:39:37:83:13:74:76:3c:4d:
e2:51:f4:90:d5:6a:e3:d1:d9:d4:d5:bb:f5:ea:18:
3d:cf:e7:87:e5:39:1a:fa:e7:80:e3:73:8f:2b:46:
72:ea:ba:4b:83:9c:29:cc:e2:b8:97:e4:2f:08:59:
61:f4:b9:45:96:dd:38:2e:96:82:f1:64:f7:7a:78:
aa:ff:26:0c:7b:fd:c4:f6:35:75:df:e5:90:eb:49:
92:82:cc:5d:3d:20:a4:d0:c4:ca:b9:db:d3:4f:e4:
05:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:E5:77:DC:13:BD:4F:0C:27:4D:0B:BC:7E:8B:F6:64:33:A3:28:56
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38302e3139302e38302e302f32312d3332203d3e203531313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.190.80.0/21
Signature Algorithm: sha256WithRSAEncryption
06:71:2e:0b:5d:af:24:b2:63:7a:23:6f:ab:96:2a:f5:06:a9:
97:98:62:7a:5e:35:6c:f8:c7:5e:df:7d:8d:3e:34:0e:df:d1:
29:a1:e9:9f:ec:ab:e0:76:2a:d4:b5:fd:10:30:2f:77:ce:e4:
5b:74:b6:5a:3c:42:66:3a:24:ba:95:ee:80:c0:87:de:7d:01:
2d:a9:42:ab:01:f0:68:3f:56:1b:fe:e3:1e:a2:bd:52:6a:ef:
11:9f:8c:d7:ba:8e:83:6c:f4:8f:0e:4b:ea:bf:6d:1c:48:2d:
db:e7:8d:56:7a:b2:5e:08:71:c1:e5:7c:f8:ef:d3:17:d1:aa:
4d:ac:6f:dc:a8:da:c7:22:4c:a1:c9:80:c3:e4:3a:d1:d9:b7:
a5:e7:84:cf:a6:ba:06:5b:c4:37:4c:9f:69:c7:4d:46:d9:ae:
ba:dc:b6:d6:83:06:8a:88:64:22:86:a1:b8:17:7b:97:c8:8d:
4c:7f:9e:4a:17:25:ae:06:65:04:4e:79:ed:ca:ca:01:97:53:
67:a4:45:77:02:f1:eb:96:3a:0b:eb:1f:55:4a:fd:6b:ab:31:
45:c9:cd:f7:69:e1:51:9d:40:18:4c:04:c5:e3:5a:ef:11:9e:
6f:d2:6b:4c:e7:b4:9d:b8:d5:ba:e9:50:a9:c3:63:d9:9f:9b:
a6:6e:42:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:52 2023 by rpki-client on console-ams.rpki-client.org