Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/38352e3230392e3232382e302f32342d3234203d3e203134363138.roa
File: 38352e3230392e3232382e302f32342d3234203d3e203134363138.roa (raw, json)
Hash identifier: Ujn0cPRAlxLM2MVAZOZRelKh6mDLqo5nCY3xOq6r4cQ=
Subject key identifier: B2:1B:6E:4E:70:20:20:BC:8A:6E:FD:8D:BF:03:A3:6C:75:A1:17:85
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 64F6F0685CAA1E4F07889BDE0AA6AFD7E22A1F8E
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/38352e3230392e3232382e302f32342d3234203d3e203134363138.roa
Signing time: Thu 09 Nov 2023 13:55:52 +0000
ROA not before: Thu 09 Nov 2023 13:50:52 +0000
ROA not after: Thu 07 Nov 2024 13:55:52 +0000
asID: 14618
IP address blocks: 85.209.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Feb 2024 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:f6:f0:68:5c:aa:1e:4f:07:88:9b:de:0a:a6:af:d7:e2:2a:1f:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Nov 9 13:50:52 2023 GMT
Not After : Nov 7 13:55:52 2024 GMT
Subject: CN=B21B6E4E702020BC8A6EFD8DBF03A36C75A11785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c8:ea:04:9c:58:77:2e:e3:84:f1:4a:87:81:
63:c1:a0:9b:ca:e0:31:96:a3:7e:87:7e:32:d8:16:
4c:72:4f:03:8e:5f:7f:92:cc:b6:fd:3d:a7:b8:d9:
a1:75:4f:d1:9d:46:de:e8:30:d2:64:ff:02:bf:12:
69:7b:01:ea:b7:33:d6:5c:49:17:b0:21:d7:7e:39:
3b:91:a9:e8:e9:93:ad:c2:69:51:a1:49:5e:07:55:
a8:82:ce:b6:24:b9:2b:e5:7e:d8:71:9b:18:72:60:
66:be:04:a3:d4:57:12:91:23:c2:c9:10:5e:9a:25:
00:2f:75:68:e4:88:e2:8e:ff:56:74:54:5f:c0:ee:
47:e6:80:03:9a:3c:63:92:a7:b4:00:d5:6f:41:be:
08:f4:75:e4:2f:8f:ca:a5:e6:ee:76:0a:5a:4d:88:
61:7f:ca:ef:03:ef:8c:06:2e:eb:87:09:66:ea:bb:
32:11:6e:0b:cd:a7:07:f3:b4:6d:46:a1:e9:38:cc:
ce:eb:61:ca:38:f5:19:7a:22:9d:91:a5:d8:0f:6f:
c6:b3:c1:09:58:eb:9e:d6:a2:d4:d1:e5:c9:0e:f0:
d1:5f:d8:97:c6:a6:3a:81:20:4f:c4:6b:e3:e6:ce:
89:b8:9a:1b:69:da:85:5a:79:da:ee:20:50:28:0e:
ec:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:1B:6E:4E:70:20:20:BC:8A:6E:FD:8D:BF:03:A3:6C:75:A1:17:85
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/38352e3230392e3232382e302f32342d3234203d3e203134363138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.228.0/24
Signature Algorithm: sha256WithRSAEncryption
55:47:9a:c7:db:b9:58:de:8d:29:3d:2e:8d:9f:79:63:6c:fb:
bb:d0:8c:34:a8:0e:55:01:bc:2e:b3:e3:88:bf:54:d3:eb:e0:
76:6b:9a:6c:75:a4:78:06:9d:44:2c:c5:bc:a5:85:8e:19:bc:
a6:c7:63:34:f7:c1:d5:0a:3d:92:37:67:f5:ee:d5:1e:70:54:
18:fe:29:6a:57:c6:cd:a3:34:cb:b7:f6:dd:b5:0e:c7:4d:de:
a5:34:96:30:32:63:c0:66:c3:b0:4e:d8:5d:63:14:db:bf:04:
27:73:5d:09:67:75:55:1e:d8:53:95:25:06:c7:6a:d4:fc:e4:
b4:85:e7:0e:0e:5c:6d:15:3c:16:89:81:9d:a7:3b:9a:b4:64:
21:e1:60:54:c9:22:db:ad:b2:4c:0e:a3:22:59:50:76:76:1a:
50:f1:a6:c8:1f:ae:a6:34:da:45:b9:0a:bb:83:fe:a9:68:12:
96:81:63:97:b9:0c:3b:4a:b5:d8:ec:31:b8:d5:0b:06:88:75:
0e:d6:29:f3:1f:e3:11:f1:59:08:c4:4f:fc:bc:1d:e4:5c:34:
38:9d:e5:34:fe:21:56:bb:39:7c:2e:a0:e1:ed:0b:2e:4e:47:
82:2f:1d:6a:8c:7a:a5:76:4d:92:40:06:ab:79:a1:5d:a7:d6:
d5:58:3c:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:56 2024 by rpki-client on console-ams.rpki-client.org