Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e33312e3233322e302f32312d3231203d3e203437353833.roa
File: 38352e33312e3233322e302f32312d3231203d3e203437353833.roa (raw, json)
Hash identifier: iuasO3esYmmntN/bZQbMBAke6AyDfawUmVYsLlgWqu4=
Subject key identifier: E2:2F:57:A7:03:66:9E:EB:91:2B:BF:0C:95:61:77:CA:72:25:B4:1D
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 6B754320D95443EDF79F5D85EDE28258010C97E5
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e33312e3233322e302f32312d3231203d3e203437353833.roa
Signing time: Tue 09 Jul 2024 09:04:12 +0000
ROA not before: Tue 09 Jul 2024 08:59:12 +0000
ROA not after: Tue 08 Jul 2025 09:04:12 +0000
asID: 47583
IP address blocks: 85.31.232.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 09 Jul 2024 12:27:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:75:43:20:d9:54:43:ed:f7:9f:5d:85:ed:e2:82:58:01:0c:97:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Jul 9 08:59:12 2024 GMT
Not After : Jul 8 09:04:12 2025 GMT
Subject: CN=E22F57A703669EEB912BBF0C956177CA7225B41D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fb:51:5a:a8:89:31:3d:92:da:46:fa:e6:e5:
7b:a7:4a:17:5d:f9:93:b1:ec:e3:d2:67:64:9c:fd:
79:d6:b9:b9:92:a4:73:fb:6f:bb:dc:72:1d:d6:c3:
c1:e5:5f:02:40:c1:5d:d4:14:0c:63:de:b8:85:75:
64:7f:1a:8f:59:65:a8:35:d9:6e:7f:2a:a6:b3:1e:
8d:1e:d8:3d:35:44:4a:d9:2e:1f:8f:eb:97:6f:13:
aa:c3:ab:ba:83:fd:ae:9d:79:f3:fb:e1:6c:28:95:
0d:4b:51:0a:cd:71:f9:2e:da:9f:fc:05:46:b9:b5:
74:a0:31:33:59:db:b2:4b:c3:94:b2:59:5a:36:b9:
b6:9d:b0:78:64:b8:7a:47:91:07:ff:72:3c:36:52:
97:e5:32:f0:7f:0f:db:0e:17:1d:8f:49:c5:f8:af:
fc:75:dd:45:07:5c:3c:64:45:d3:01:e1:53:8a:cc:
a4:00:70:c4:67:c6:14:20:99:19:74:84:56:79:b9:
3a:ff:f1:8f:d1:d5:aa:7c:10:34:48:1d:c6:80:7a:
46:9c:33:32:7a:61:16:dc:a7:7d:3e:90:96:f6:af:
13:f9:7c:7f:21:96:cd:2c:82:53:32:e9:b0:59:5f:
37:29:d3:11:53:35:3e:00:fd:7f:64:93:fa:5f:9c:
58:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:2F:57:A7:03:66:9E:EB:91:2B:BF:0C:95:61:77:CA:72:25:B4:1D
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e33312e3233322e302f32312d3231203d3e203437353833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.31.232.0/21
Signature Algorithm: sha256WithRSAEncryption
23:02:ee:a4:48:75:03:de:a6:b5:5d:7f:cd:c2:53:16:1b:aa:
0f:94:43:9e:78:33:d1:04:f4:5d:0c:59:33:8f:bc:23:09:d9:
39:44:ca:a2:8d:86:43:2c:74:0d:b2:17:02:7a:e8:6d:5a:ce:
1c:10:7e:c1:ef:93:39:34:eb:28:44:e4:0b:fb:9c:5b:d9:ce:
c9:f1:a6:b3:89:32:0f:2b:34:b0:0f:35:3a:16:f3:dc:45:44:
74:bd:7a:fc:0c:c2:37:b7:51:02:98:d0:18:c6:10:8d:b0:7e:
02:d9:35:87:3e:2b:23:a3:d7:23:ef:4c:38:2e:cc:f7:1f:8e:
b9:a5:b2:36:fe:02:15:40:19:9f:dc:f3:bc:98:b7:90:c7:08:
77:4d:0c:dc:9c:92:b3:25:45:aa:3f:64:ce:f9:0f:77:30:42:
35:a9:49:77:07:31:28:ee:95:aa:b6:bf:95:2a:7d:d5:38:9e:
78:c2:99:68:97:fc:46:8d:2a:0e:05:e3:27:6d:c0:42:13:bb:
91:6b:b9:fa:df:f0:d5:d9:8b:51:df:f3:61:08:b9:ef:fb:d0:
9b:c4:a2:1f:6b:03:17:72:0c:bc:0a:29:64:39:db:cf:75:04:
44:ab:b2:0a:3c:53:f4:3b:a7:33:57:f5:f2:43:87:4b:87:0c:
92:1d:dc:4d
-----BEGIN CERTIFICATE-----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Generated at Tue Jul 9 15:52:58 2024 by rpki-client on console-ams.rpki-client.org