Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/352e3138322e33352e302f32342d3234203d3e20383334.roa
File: 352e3138322e33352e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: mTx1pgwTxR1VIUDw9s9WDfN3sBaBitKaOy5pXTqwfqA=
Subject key identifier: D7:BB:94:30:F3:3A:BF:29:E6:DB:99:1D:E6:3B:E3:44:BA:7C:4C:E7
Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Certificate serial: 0F80416AE2EC75FC4F02D2C9E82E7BA4A97739AB
Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/352e3138322e33352e302f32342d3234203d3e20383334.roa
Signing time: Wed 24 Jul 2024 16:04:24 +0000
ROA not before: Wed 24 Jul 2024 15:59:24 +0000
ROA not after: Wed 23 Jul 2025 16:04:24 +0000
asID: 834
IP address blocks: 5.182.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Jul 2024 17:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:80:41:6a:e2:ec:75:fc:4f:02:d2:c9:e8:2e:7b:a4:a9:77:39:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a
Validity
Not Before: Jul 24 15:59:24 2024 GMT
Not After : Jul 23 16:04:24 2025 GMT
Subject: CN=D7BB9430F33ABF29E6DB991DE63BE344BA7C4CE7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fd:d9:ae:71:da:0e:72:56:8c:29:ae:39:07:
31:39:a7:f9:04:bf:c5:e8:1f:e9:16:bb:c5:4f:d5:
fd:c8:5b:35:71:58:6c:3f:81:e0:78:7f:6d:ab:42:
c2:be:f8:8d:67:27:59:3a:1a:6a:d6:7e:07:ee:e2:
5f:cb:ee:93:08:ce:ee:2f:8f:f8:e3:55:27:e7:63:
e5:71:1a:dc:d0:20:a4:bf:40:0d:48:9b:ff:84:61:
8b:30:0b:5f:57:32:12:2d:f3:ea:b9:9b:ca:fd:c5:
47:e1:17:a0:2f:a9:46:43:61:6a:ef:f5:c1:bf:9a:
aa:9e:b0:7a:bd:ea:8c:c7:be:a8:97:55:48:e0:2d:
c3:c5:6b:0c:0d:0d:86:5f:58:ee:69:9f:b1:4d:7b:
88:8f:7d:da:5a:e0:34:6e:12:04:02:b2:0f:d8:03:
86:b9:c6:4f:20:5f:c1:95:f9:6b:16:3c:63:4a:1e:
3f:d8:9c:b7:f9:07:b0:ef:31:46:b4:ed:d2:66:11:
f5:3f:5e:20:a8:8f:77:09:f1:5c:72:a7:d2:6b:df:
dd:fc:63:4b:e7:49:c9:85:04:e9:47:fd:46:45:78:
0a:43:74:4f:7a:e4:4d:ca:e9:74:1b:5f:c4:94:62:
60:06:b7:47:b0:74:3f:66:56:f4:73:94:06:6d:e7:
54:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:BB:94:30:F3:3A:BF:29:E6:DB:99:1D:E6:3B:E3:44:BA:7C:4C:E7
X509v3 Authority Key Identifier:
keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/352e3138322e33352e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.35.0/24
Signature Algorithm: sha256WithRSAEncryption
65:98:16:24:84:f6:b8:74:98:8b:35:4e:c9:db:d4:8d:8e:82:
cb:17:8f:e5:13:f1:54:61:22:81:68:9f:ca:43:2f:d7:82:22:
87:a9:ea:e7:84:ad:ae:52:24:40:e4:a7:69:ea:36:09:da:13:
75:df:a2:ae:18:72:be:09:3d:ee:d2:a8:28:5f:ac:f6:2d:fd:
69:8c:ef:67:ab:e0:6f:97:21:cb:d2:e7:d5:0e:41:45:67:4b:
4a:a1:46:ba:af:d3:18:4a:7a:d8:03:7d:fa:d4:80:a4:08:c8:
6d:59:49:26:51:7d:f0:63:3c:55:1e:38:4f:31:23:ac:e4:2a:
28:2a:6d:2a:cf:86:93:13:f9:af:1f:cf:17:c5:19:50:e8:ef:
d9:56:33:17:3d:a4:5b:5b:c8:8a:3e:86:4e:71:19:b6:fb:95:
52:30:30:8f:2d:f5:ef:f8:50:11:fe:7a:1f:fa:d6:c1:80:ec:
b5:f8:b9:a7:1f:ca:d4:a8:22:f4:db:e5:26:83:b9:22:de:fe:
7c:b4:e7:75:4b:e8:79:d2:a3:d7:92:eb:48:59:ee:72:70:f3:
b6:9e:a7:ab:f6:37:35:6f:13:ed:9d:55:64:de:56:75:44:2a:
7f:d1:07:8c:6b:de:fd:0c:91:e1:0f:52:eb:c8:50:dd:99:4c:
59:fd:ee:fa
-----BEGIN CERTIFICATE-----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Generated at Mon Jul 29 19:29:06 2024 by rpki-client on console-ams.rpki-client.org