Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3232392e3230332e302f32342d3234203d3e20383334.roa
File: 3138352e3232392e3230332e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: hcYqom6Cu91fCh1VErtksLG5HfCpSK/acXTI10FOufw=
Subject key identifier: D3:82:4A:05:E9:28:C1:4F:7C:46:51:B8:BD:30:D2:61:AC:A2:D3:FA
Certificate issuer: /CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Certificate serial: 074C171C4F3343C4F3BFABC3168B9769AAC4611F
Authority key identifier: 3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3232392e3230332e302f32342d3234203d3e20383334.roa
Signing time: Mon 15 Jan 2024 17:45:04 +0000
ROA not before: Mon 15 Jan 2024 17:40:04 +0000
ROA not after: Mon 13 Jan 2025 17:45:04 +0000
asID: 834
IP address blocks: 185.229.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Jan 2024 22:15:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:4c:17:1c:4f:33:43:c4:f3:bf:ab:c3:16:8b:97:69:aa:c4:61:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Validity
Not Before: Jan 15 17:40:04 2024 GMT
Not After : Jan 13 17:45:04 2025 GMT
Subject: CN=D3824A05E928C14F7C4651B8BD30D261ACA2D3FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2b:94:05:8c:bb:8b:8f:0a:ad:74:17:6a:47:
b6:16:d0:d5:be:25:99:96:7d:06:54:5c:98:bc:71:
7a:61:17:e2:b4:a9:77:76:68:46:0b:d7:c6:d3:15:
4e:ee:4d:93:fb:39:ff:5a:76:43:d2:b3:08:17:fa:
11:1e:32:ad:12:64:f5:97:da:b4:ee:4b:2d:76:b4:
23:fa:d8:e8:0c:eb:0e:27:59:09:aa:0d:9e:92:af:
4a:74:4e:7e:da:36:c2:a9:b3:87:b5:36:47:cd:58:
0e:a9:f3:a6:94:c2:b1:fb:ea:3b:1f:34:b6:e0:fc:
0a:da:a5:63:ad:33:a7:bd:7c:36:96:10:a9:b4:72:
9b:76:33:de:21:8c:af:31:30:5f:b3:62:68:93:b0:
1f:1c:06:0a:bf:e4:12:fc:91:f5:8f:2a:26:6f:89:
64:14:b1:68:7b:3c:df:2c:5c:19:55:dd:f4:ad:2f:
2e:81:86:21:57:16:17:e9:c3:d7:ac:c4:3e:6f:fa:
50:91:35:e3:87:fc:d3:ab:bc:9d:5a:e0:cf:01:61:
d8:d7:e2:93:38:2f:2e:b7:e8:cc:79:e5:91:39:1c:
0b:91:d5:3c:13:02:59:c2:2c:0a:da:a9:dd:c9:66:
ab:a9:14:e4:92:22:a7:e4:f2:24:f4:a5:a5:66:5b:
c2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:82:4A:05:E9:28:C1:4F:7C:46:51:B8:BD:30:D2:61:AC:A2:D3:FA
X509v3 Authority Key Identifier:
keyid:3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3232392e3230332e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.203.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:45:6e:18:ab:55:68:82:9f:a8:55:30:6c:dd:72:06:f4:b4:
28:ad:fe:3d:1b:6d:bd:65:36:54:97:a3:05:79:79:9d:05:56:
25:8a:c4:f4:f9:47:6a:86:de:5b:c6:09:73:42:11:72:2d:0b:
5c:c3:a5:93:66:a6:6e:a8:51:c1:be:d0:5b:35:09:a9:d3:b0:
10:77:f2:e6:0c:70:89:71:de:0f:61:2c:9f:56:50:4f:c7:a9:
48:95:98:ce:ef:c8:ac:36:f3:38:a9:ea:87:37:37:83:06:0f:
83:9a:44:3c:64:6c:f4:80:5f:c2:7e:d4:27:13:0b:ad:65:ea:
fc:83:52:e0:13:c0:75:2f:5d:73:ea:7d:40:4d:04:22:b5:50:
4a:0d:4f:63:24:32:3e:72:4d:1d:a1:5d:07:03:f9:de:13:34:
c9:94:d4:f8:4d:7a:d1:4f:e2:1c:1f:17:39:21:70:7c:a0:15:
7e:6b:2f:8c:29:33:06:6d:8b:6e:30:7d:8c:28:4d:bc:5c:a1:
0b:2b:03:05:01:08:e3:e8:4e:28:df:90:e4:e4:c2:18:02:a7:
f0:c3:96:42:d5:c6:53:0b:4c:0f:17:54:aa:94:1c:25:10:d4:
88:70:fa:76:d9:1e:90:0a:d4:f9:21:e1:67:08:d5:0f:31:7b:
66:ad:2f:85
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUB0wXHE8zQ8Tzv6vDFouXaarEYR8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoM2U4NzBiOWE3MDAzYzRmZDljNTFiZDM1NGE5ZGVmYTNm
Yjc3YjRhOTAeFw0yNDAxMTUxNzQwMDRaFw0yNTAxMTMxNzQ1MDRaMDMxMTAvBgNV
BAMTKEQzODI0QTA1RTkyOEMxNEY3QzQ2NTFCOEJEMzBEMjYxQUNBMkQzRkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5K5QFjLuLjwqtdBdqR7YW0NW+
JZmWfQZUXJi8cXphF+K0qXd2aEYL18bTFU7uTZP7Of9adkPSswgX+hEeMq0SZPWX
2rTuSy12tCP62OgM6w4nWQmqDZ6Sr0p0Tn7aNsKps4e1NkfNWA6p86aUwrH76jsf
NLbg/ArapWOtM6e9fDaWEKm0cpt2M94hjK8xMF+zYmiTsB8cBgq/5BL8kfWPKiZv
iWQUsWh7PN8sXBlV3fStLy6BhiFXFhfpw9esxD5v+lCRNeOH/NOrvJ1a4M8BYdjX
4pM4Ly636Mx55ZE5HAuR1TwTAlnCLAraqd3JZqupFOSSIqfk8iT0paVmW8LVAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQU04JKBekowU98RlG4vTDSYayi0/owHwYDVR0j
BBgwFoAUPocLmnADxP2cUb01Sp3vo/t3tKkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzVkMThlODItNGQ2OC00NWE2LWE1ZGYtY2FjMTE1YWQy
Mjc5LzAvM0U4NzBCOUE3MDAzQzRGRDlDNTFCRDM1NEE5REVGQTNGQjc3QjRBOS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1BvY0xtbkFEeFAyY1ViMDFTcDN2b190
M3RLay5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYzVkMThlODIt
NGQ2OC00NWE2LWE1ZGYtY2FjMTE1YWQyMjc5LzAvMzEzODM1MmUzMjMyMzkyZTMy
MzAzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnl
yzANBgkqhkiG9w0BAQsFAAOCAQEA1kVuGKtVaIKfqFUwbN1yBvS0KK3+PRttvWU2
VJejBXl5nQVWJYrE9PlHaobeW8YJc0IRci0LXMOlk2ambqhRwb7QWzUJqdOwEHfy
5gxwiXHeD2Esn1ZQT8epSJWYzu/IrDbzOKnqhzc3gwYPg5pEPGRs9IBfwn7UJxML
rWXq/INS4BPAdS9dc+p9QE0EIrVQSg1PYyQyPnJNHaFdBwP53hM0yZTU+E160U/i
HB8XOSFwfKAVfmsvjCkzBm2LbjB9jChNvFyhCysDBQEI4+hOKN+Q5OTCGAKn8MOW
QtXGUwtMDxdUqpQcJRDUiHD6dtkekArU+SHhZwjVDzF7Zq0vhQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:19 2024 by rpki-client on console-fra.rpki-client.org