Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3231312e302f32342d3234203d3e20383334.roa
File: 38352e3233372e3231312e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: MeGvq7uvkiCeBLvKEtHYFo6PePIH5FmAu8444iKGi9k=
Subject key identifier: 3F:C7:6B:B6:F0:5C:2F:4A:7C:6C:9C:AD:13:F8:37:73:70:AF:83:03
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 1639E16C4B28BC9B7808A386BBB15EBBBCAE360F
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3231312e302f32342d3234203d3e20383334.roa
Signing time: Mon 22 Apr 2024 00:00:24 +0000
ROA not before: Sun 21 Apr 2024 23:55:24 +0000
ROA not after: Mon 21 Apr 2025 00:00:24 +0000
asID: 834
IP address blocks: 85.237.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 May 2024 22:23:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:39:e1:6c:4b:28:bc:9b:78:08:a3:86:bb:b1:5e:bb:bc:ae:36:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Apr 21 23:55:24 2024 GMT
Not After : Apr 21 00:00:24 2025 GMT
Subject: CN=3FC76BB6F05C2F4A7C6C9CAD13F8377370AF8303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:5b:14:7f:38:e8:f8:a4:9a:ab:41:c1:3a:2e:
3a:e4:7a:6a:25:50:e1:15:72:52:a1:2d:64:29:7e:
8c:6b:67:30:b5:86:5b:92:0d:bb:a0:d6:d1:f2:02:
62:20:27:14:f2:83:9d:0f:18:74:f6:df:71:af:b6:
15:e9:e8:99:cf:19:ef:e2:eb:47:ba:b4:46:0e:3e:
ea:49:77:3f:69:56:5f:59:ea:53:91:fa:8a:31:83:
be:3b:f6:58:0e:be:36:58:8a:89:c7:ba:e0:80:9d:
4e:63:8d:b1:e2:b0:e3:dc:30:3d:bf:a6:f1:be:0f:
b1:98:bb:66:25:fe:4a:15:a5:a0:17:8b:ee:1e:14:
41:5e:90:f6:6e:ee:ae:67:ef:ac:01:08:73:ac:ee:
8e:82:e5:c3:6d:bb:91:d5:41:6b:06:11:a6:37:01:
a1:78:12:2b:b2:9a:40:72:cf:6e:b8:1b:5c:4c:8c:
12:5f:a0:61:11:9a:2d:ff:84:83:24:ae:59:b4:d0:
1b:93:fa:4e:9c:2f:7f:ca:77:c3:fd:48:fe:7d:8d:
d2:04:c8:cc:85:36:6b:e0:6c:6b:7c:ca:d6:b8:12:
cd:5b:71:18:71:f3:45:83:e6:ff:8a:9c:c9:18:1e:
8c:6b:26:5a:ed:0a:54:03:97:9e:fd:89:6f:62:5d:
a6:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:C7:6B:B6:F0:5C:2F:4A:7C:6C:9C:AD:13:F8:37:73:70:AF:83:03
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3231312e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.211.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:54:9e:a5:43:ee:fd:fb:51:83:e3:db:3b:dd:41:a5:f5:93:
ce:f9:b7:59:18:60:0a:e5:e1:2c:4d:4c:24:8d:2b:d1:86:21:
78:22:63:ce:28:75:94:ea:6e:ac:1f:6b:57:2a:0b:33:4a:6a:
94:ad:4d:e1:62:ef:a7:68:f8:7a:4c:ec:4d:eb:45:3f:a4:78:
9d:86:cb:97:1f:75:31:2c:c0:4c:d1:72:4f:78:a9:8a:95:e8:
65:8d:9d:3b:29:46:62:2e:8e:62:c4:be:2e:5c:81:11:0a:71:
5c:c6:1b:28:1c:f3:73:c0:12:19:d9:7c:44:5e:a4:01:60:c5:
44:93:6f:d8:1e:16:5a:bf:cf:77:ac:22:f8:6f:05:e9:88:be:
12:45:6b:c2:cb:eb:14:7c:c2:b4:d4:4b:c9:b6:9e:10:01:3c:
cc:7b:78:95:82:48:7c:90:e6:b9:b5:0d:0e:67:81:97:07:ef:
a8:b3:b4:66:dd:06:64:99:1b:c5:33:f4:9e:89:a1:ab:cb:c5:
6a:92:47:8d:c9:1b:00:40:4a:8a:ca:2e:f2:31:39:43:dd:fc:
66:86:37:c8:3c:f6:62:8b:60:de:a7:f5:d6:b3:96:8b:10:3e:
d3:0a:52:c9:b1:af:69:4a:d0:36:9c:bf:58:9e:4d:bf:17:27:
08:fe:9e:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 01:27:44 2024 by rpki-client on console-ams.rpki-client.org