Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/38352e3230392e3233302e302f32342d3234203d3e203432303535.roa
File: 38352e3230392e3233302e302f32342d3234203d3e203432303535.roa (raw, json)
Hash identifier: uIIM1okVUf/ZhuS24jx26NbMLcrKD3Z8SG6SENPzzI0=
Subject key identifier: 5F:34:B5:E4:4D:9E:D9:7D:16:A1:C3:C6:4D:3D:85:23:6D:32:F5:25
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 2A72EF616280421B2E3420EEBE19E86B3D8A392F
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/38352e3230392e3233302e302f32342d3234203d3e203432303535.roa
Signing time: Wed 11 Oct 2023 17:29:52 +0000
ROA not before: Wed 11 Oct 2023 17:24:52 +0000
ROA not after: Wed 09 Oct 2024 17:29:52 +0000
asID: 42055
IP address blocks: 85.209.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Oct 2023 08:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:72:ef:61:62:80:42:1b:2e:34:20:ee:be:19:e8:6b:3d:8a:39:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Oct 11 17:24:52 2023 GMT
Not After : Oct 9 17:29:52 2024 GMT
Subject: CN=5F34B5E44D9ED97D16A1C3C64D3D85236D32F525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ba:91:d8:e1:75:6d:14:2a:12:5f:4d:31:0b:
31:65:ca:78:86:08:2e:f1:31:6c:b6:d6:9e:9b:d3:
4b:7b:bc:19:3a:25:8f:a5:78:12:83:2e:ff:60:62:
e6:ff:b2:5f:2c:c9:74:33:ed:eb:0d:c7:2f:8a:01:
c5:c2:42:6b:aa:15:32:d0:99:85:d8:f1:20:90:3b:
05:37:14:d0:6b:47:e2:02:0d:ab:c9:f5:ce:55:1e:
f5:03:69:04:d4:2f:59:7a:8a:9e:2d:17:66:2f:da:
45:81:d6:fa:41:ea:2a:11:f6:9b:e2:f5:be:0a:11:
eb:bc:b5:ae:fa:c0:e4:e7:bb:09:6f:f9:9a:ba:0e:
5d:a0:38:70:ed:df:04:ec:f0:52:f8:88:dd:30:6d:
e8:8d:f2:e4:6a:89:ad:46:4f:3d:16:a4:db:be:8f:
1c:d2:ba:18:6b:f3:9d:64:3d:d5:bb:ea:9c:b3:e4:
47:53:76:cc:01:20:fb:5c:4f:76:e4:a3:f5:f3:8c:
6f:25:3c:08:93:81:46:4a:27:cc:c4:c4:3e:3c:ca:
74:95:ee:52:2f:40:e3:74:90:85:b2:76:b6:9a:f9:
12:8d:ae:66:4a:fd:a7:7c:84:65:78:66:48:ea:40:
b9:d3:20:95:ad:74:60:9f:ac:46:88:ce:5a:17:5d:
13:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:34:B5:E4:4D:9E:D9:7D:16:A1:C3:C6:4D:3D:85:23:6D:32:F5:25
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/38352e3230392e3233302e302f32342d3234203d3e203432303535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.230.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:f8:d6:a0:42:b8:1e:be:85:03:81:4f:27:1d:14:71:88:e1:
08:d9:33:c1:df:5b:9f:8d:ff:79:fd:fc:6c:48:93:85:51:04:
88:7b:19:f3:bc:be:16:22:c6:a0:43:1f:4e:14:86:87:fb:3a:
5a:ec:32:a3:df:f7:85:0d:ef:3a:6b:31:a8:ad:63:66:85:10:
9e:66:22:59:30:98:38:b3:7e:58:c4:c7:ef:40:bd:54:fc:7a:
22:89:21:49:f7:0f:2e:e9:f4:e5:06:95:c3:6e:78:d8:c8:c3:
64:87:23:76:73:40:03:ec:2c:c1:93:38:22:40:1f:b7:02:e0:
74:1d:01:31:c6:db:d5:99:1a:ed:0a:0c:69:9d:67:69:9a:1b:
3c:b9:81:88:76:6a:57:c0:88:c5:c5:a0:09:9f:6b:f3:46:57:
7a:83:c0:c4:53:a2:9b:8a:ad:51:d9:a3:7d:01:47:95:40:ac:
2b:93:0f:f4:e9:27:21:06:29:c8:9c:f2:78:53:88:57:60:dd:
66:44:77:7c:8a:16:53:e7:01:aa:e0:e9:8a:db:a8:dc:b8:98:
33:a0:68:30:e8:2d:4b:7c:66:a7:12:95:64:2f:a9:08:d4:3e:
c6:3e:1d:dd:bb:80:5a:a2:ed:07:1a:5f:9d:e4:a5:3d:04:0f:
f4:9c:ae:30
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUKnLvYWKAQhsuNCDuvhnoaz2KOS8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTk0MjBlNmM2ZjI0YjBlNDIyZGE3ZmU3ZTQyMGVmNTAz
NTRmNDVjNjAeFw0yMzEwMTExNzI0NTJaFw0yNDEwMDkxNzI5NTJaMDMxMTAvBgNV
BAMTKDVGMzRCNUU0NEQ5RUQ5N0QxNkExQzNDNjREM0Q4NTIzNkQzMkY1MjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4upHY4XVtFCoSX00xCzFlyniG
CC7xMWy21p6b00t7vBk6JY+leBKDLv9gYub/sl8syXQz7esNxy+KAcXCQmuqFTLQ
mYXY8SCQOwU3FNBrR+ICDavJ9c5VHvUDaQTUL1l6ip4tF2Yv2kWB1vpB6ioR9pvi
9b4KEeu8ta76wOTnuwlv+Zq6Dl2gOHDt3wTs8FL4iN0wbeiN8uRqia1GTz0WpNu+
jxzSuhhr851kPdW76pyz5EdTdswBIPtcT3bko/XzjG8lPAiTgUZKJ8zExD48ynSV
7lIvQON0kIWydraa+RKNrmZK/ad8hGV4ZkjqQLnTIJWtdGCfrEaIzloXXROJAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUXzS15E2e2X0WocPGTT2FI20y9SUwHwYDVR0j
BBgwFoAUqUIObG8ksOQi2n/n5CDvUDVPRcYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMWY5ODIzZDAtMDg1NS00MWYyLWFjNDYtNTlhMmU5OGRh
NzM2LzEvQTk0MjBFNkM2RjI0QjBFNDIyREE3RkU3RTQyMEVGNTAzNTRGNDVDNi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FVSU9iRzhrc09RaTJuX241Q0R2VURW
UFJjWS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMWY5ODIzZDAt
MDg1NS00MWYyLWFjNDYtNTlhMmU5OGRhNzM2LzEvMzgzNTJlMzIzMDM5MmUzMjMz
MzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDMyMzAzNTM1LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
VdHmMA0GCSqGSIb3DQEBCwUAA4IBAQC1+NagQrgevoUDgU8nHRRxiOEI2TPB31uf
jf95/fxsSJOFUQSIexnzvL4WIsagQx9OFIaH+zpa7DKj3/eFDe86azGorWNmhRCe
ZiJZMJg4s35YxMfvQL1U/HoiiSFJ9w8u6fTlBpXDbnjYyMNkhyN2c0AD7CzBkzgi
QB+3AuB0HQExxtvVmRrtCgxpnWdpmhs8uYGIdmpXwIjFxaAJn2vzRld6g8DEU6Kb
iq1R2aN9AUeVQKwrkw/06SchBinInPJ4U4hXYN1mRHd8ihZT5wGq4OmK26jcuJgz
oGgw6C1LfGanEpVkL6kI1D7GPh3du4Baou0HGl+d5KU9BA/0nK4w
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:10 2024 by rpki-client on console-fra.rpki-client.org