Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/38352e3230392e3233302e302f32342d3234203d3e20383334.roa
File: 38352e3230392e3233302e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: uaKL8xStqDyHqvXeXgSljvKiSuVt3xJsSybY84DwHGk=
Subject key identifier: CC:5E:50:5A:C6:51:12:F4:F1:25:83:28:A0:1D:68:8C:79:13:E2:A0
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 1B8689ECC0F7F9054D3E18B397CA37BF53170B66
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/38352e3230392e3233302e302f32342d3234203d3e20383334.roa
Signing time: Thu 08 Aug 2024 00:02:49 +0000
ROA not before: Wed 07 Aug 2024 23:57:49 +0000
ROA not after: Thu 07 Aug 2025 00:02:49 +0000
asID: 834
IP address blocks: 85.209.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Aug 2024 08:53:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:86:89:ec:c0:f7:f9:05:4d:3e:18:b3:97:ca:37:bf:53:17:0b:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Aug 7 23:57:49 2024 GMT
Not After : Aug 7 00:02:49 2025 GMT
Subject: CN=CC5E505AC65112F4F1258328A01D688C7913E2A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:35:78:35:21:f6:d9:24:59:3b:10:be:d0:20:
3e:52:3a:56:7a:a0:4f:8f:30:48:29:5f:91:9f:87:
1c:14:fb:a7:43:25:90:0e:05:59:09:5a:1a:77:2a:
a0:f2:d5:f2:9d:a7:08:0c:8c:3e:42:d4:9d:94:92:
39:9b:78:e7:d2:02:54:b2:10:d2:57:f0:68:5a:41:
53:c3:89:57:98:41:ea:e3:5a:5b:9e:25:ed:c6:b9:
70:97:be:11:77:a7:91:03:30:69:35:1f:f8:80:00:
1f:4f:44:0f:d1:a4:12:7b:e8:b6:21:d6:73:fe:54:
c5:e3:02:56:a0:f8:1e:99:63:46:53:df:02:f2:90:
8c:f0:35:81:ee:fb:8e:b6:a2:d8:cc:df:5c:c0:ce:
f6:d9:88:a9:43:9d:87:bc:d4:df:3c:54:a1:22:2b:
74:f9:63:9d:44:82:33:fe:c1:5a:63:32:e0:27:ea:
98:b0:36:c4:62:0b:83:c6:27:25:e9:8e:dd:ee:85:
7f:a9:f5:10:46:ae:47:e5:e5:c7:63:1d:3e:e8:89:
ca:f3:db:4f:64:fb:b4:79:cd:91:45:b8:77:be:c2:
ab:7d:65:a3:06:25:02:9c:c7:72:c6:5e:00:9e:dc:
23:be:9c:9f:1f:33:eb:3c:d0:48:81:2d:8a:d1:6b:
e3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:5E:50:5A:C6:51:12:F4:F1:25:83:28:A0:1D:68:8C:79:13:E2:A0
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/38352e3230392e3233302e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.230.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:5a:e3:33:25:22:9c:ce:5c:96:03:cf:9a:21:e9:3f:0c:55:
28:f1:d1:9c:a5:6c:38:6d:bc:fc:1b:8a:88:51:77:af:b1:57:
9b:c7:47:5d:41:2c:d8:b1:93:3e:62:c2:1a:c3:a8:4a:53:c2:
1b:f1:85:48:5b:55:37:26:af:c0:7e:ef:63:97:8d:a3:3a:ed:
ba:85:15:55:79:6e:3b:42:31:30:dc:1e:da:d4:d8:73:83:01:
dc:76:d1:a0:9a:ab:b7:32:1c:34:7e:d9:cd:da:07:a9:64:08:
41:67:13:43:b7:1f:f3:98:f9:d8:aa:bd:be:50:25:7f:7e:73:
90:e5:d0:ff:4c:c2:3a:bd:28:71:00:39:24:f7:c4:c6:25:dd:
2f:fd:73:d2:52:68:42:88:89:d5:5c:a6:69:24:9f:d7:71:17:
4b:29:3c:2a:aa:15:92:e1:05:22:5b:7a:66:dc:7e:fb:e3:55:
df:43:61:11:e6:3d:1d:75:1b:77:a9:ca:ea:df:e1:65:3e:cb:
a2:22:af:a1:54:33:b4:e4:44:68:b2:df:87:30:dc:af:e1:e1:
6a:e2:78:4f:f1:72:03:eb:56:fe:33:1c:83:82:08:b9:65:0e:
51:40:7f:2f:9e:66:ed:95:f0:cd:58:b3:23:3b:58:f1:a3:af:
9b:48:f7:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 8 12:52:51 2024 by rpki-client on console-ams.rpki-client.org