Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137352e302f32342d3234203d3e20383334.roa
File: 3138352e3137322e3137352e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: 6OcGeaCjAOutAtypCBo+7D59lnir0xrlhj/olqewdFQ=
Subject key identifier: EF:F9:C7:D3:FE:A9:33:76:E3:DB:89:D8:CC:69:CD:8D:83:58:06:41
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 5C06D49DD119F09B3C021CE3EC98197B9B98EBA2
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137352e302f32342d3234203d3e20383334.roa
Signing time: Tue 02 Jan 2024 00:01:44 +0000
ROA not before: Mon 01 Jan 2024 23:56:44 +0000
ROA not after: Tue 31 Dec 2024 00:01:44 +0000
asID: 834
IP address blocks: 185.172.175.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:06:d4:9d:d1:19:f0:9b:3c:02:1c:e3:ec:98:19:7b:9b:98:eb:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Jan 1 23:56:44 2024 GMT
Not After : Dec 31 00:01:44 2024 GMT
Subject: CN=EFF9C7D3FEA93376E3DB89D8CC69CD8D83580641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7f:62:ad:68:3b:d6:38:82:b1:ef:73:f3:bf:
9c:06:34:83:70:32:86:d6:a7:e1:10:91:a4:7c:19:
a5:e8:c8:e8:50:49:ad:5d:4f:c7:02:e1:2b:94:b5:
3a:67:e8:7c:e6:84:28:9e:ba:45:9b:fb:2f:8c:ef:
57:98:04:ee:4a:33:59:11:0d:3e:9c:69:cf:2e:a3:
b6:2c:9e:4e:7a:26:7c:be:24:41:19:e4:89:ab:82:
e2:39:a1:2b:86:4e:61:cb:6d:2b:92:86:79:81:de:
78:dc:34:ac:94:ca:1f:0f:4e:c3:a8:af:82:fa:39:
c1:8a:54:d9:39:0a:b2:e9:61:a1:20:b3:b4:54:4d:
40:df:b0:71:49:33:2b:2f:8a:6b:5f:76:7a:07:55:
26:ec:00:c9:5c:e0:51:d3:8d:4a:db:21:a1:d2:c5:
0c:29:4a:a3:f1:6c:c3:b2:8f:7e:7b:ad:85:64:31:
bc:93:21:dd:89:a9:a5:c7:58:05:b8:dc:a0:f3:dd:
9f:04:31:3c:d6:fa:ba:d2:bb:cd:56:0e:2a:61:d2:
e8:12:0f:0c:0b:6c:bd:42:56:00:52:4e:a4:44:61:
e7:66:47:f6:2a:b6:69:b0:30:f7:04:20:5e:b7:41:
bd:a1:9e:4f:76:30:83:fa:e5:59:4d:89:23:58:9d:
c8:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:F9:C7:D3:FE:A9:33:76:E3:DB:89:D8:CC:69:CD:8D:83:58:06:41
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137352e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.175.0/24
Signature Algorithm: sha256WithRSAEncryption
31:c5:56:6f:b5:00:0b:1c:03:a8:a2:af:d9:8c:36:3b:48:c2:
1d:cf:2c:87:c9:d5:53:03:52:06:07:cf:8e:0e:11:dc:da:f7:
8c:17:b7:c6:02:c1:83:03:7f:4a:1c:98:dc:64:9b:67:29:4c:
7a:fa:a6:af:0e:4a:55:38:46:89:e5:a1:d3:f0:dd:1f:60:b2:
cc:f8:ea:86:f5:0d:39:45:8e:e8:c3:42:64:7e:20:cf:15:24:
61:8b:bb:01:1f:f3:8e:b3:d6:45:cb:f9:c2:95:f5:61:e7:a1:
96:8c:3f:3e:bd:25:37:b3:28:11:25:36:5a:d4:d7:9c:3a:59:
af:1d:8d:20:85:85:d5:53:57:14:87:50:7a:af:5c:5e:d9:e5:
17:16:45:9a:02:5e:55:1f:64:95:f1:8b:12:7b:6f:2e:1f:da:
98:7c:fb:4a:a7:eb:9b:1d:8c:f1:05:66:0d:0f:5b:55:84:15:
d0:82:4e:88:ee:8a:1f:af:0f:f2:08:64:12:0c:05:2a:8a:8d:
9a:2e:e0:e9:9e:62:72:56:5e:3f:44:86:d0:2b:ef:bd:5a:9e:
c2:06:8e:53:68:08:48:94:71:3f:b3:2d:e1:f1:37:a3:b7:96:
3a:b2:2d:37:b2:70:07:b8:a7:fd:a7:21:6b:bb:22:7a:fd:c7:
07:2a:60:c7
-----BEGIN CERTIFICATE-----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Generated at Fri Jan 5 04:23:59 2024 by rpki-client on console.sobornost.net