Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e3130302e3231342e302f32342d3234203d3e20383334.roa
File: 3138352e3130302e3231342e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: D1j27HFSxAbDb3FTerHYOzcg6IHVW89fN7NfEiLzZdI=
Subject key identifier: 31:50:7A:58:EC:B0:C4:CA:3F:F9:E6:52:94:41:82:E6:83:00:02:C1
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 30DE17A3E45C157A80EBC6009FC75427DF2F9338
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e3130302e3231342e302f32342d3234203d3e20383334.roa
Signing time: Wed 11 Sep 2024 10:42:07 +0000
ROA not before: Wed 11 Sep 2024 10:37:07 +0000
ROA not after: Wed 10 Sep 2025 10:42:07 +0000
asID: 834
IP address blocks: 185.100.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 09:22:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:de:17:a3:e4:5c:15:7a:80:eb:c6:00:9f:c7:54:27:df:2f:93:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Sep 11 10:37:07 2024 GMT
Not After : Sep 10 10:42:07 2025 GMT
Subject: CN=31507A58ECB0C4CA3FF9E652944182E6830002C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:1f:f3:b0:6f:ac:80:ac:fa:26:d4:12:64:84:
81:26:44:ee:58:4d:d5:40:95:8b:91:b3:ae:f7:2d:
8d:d4:02:69:38:c5:51:3c:2d:5d:e6:f5:48:09:00:
7f:20:8e:7c:75:43:25:02:a9:8c:1d:df:aa:1c:7e:
59:1f:14:6b:8f:c7:e4:ad:2c:32:91:59:1c:d7:67:
53:ea:c0:1d:93:f2:ea:18:21:f1:64:f6:44:d3:30:
cd:d0:e8:4e:cf:f8:ab:f6:07:cf:a7:fe:8b:a4:a8:
33:12:3f:2e:d9:12:20:f3:1c:9d:e1:e3:9e:42:9d:
f2:c8:81:f7:bd:4e:a9:83:43:d9:05:d7:fe:cd:dd:
bd:4c:82:70:9a:23:df:82:19:92:ca:06:ee:f0:f6:
2e:38:d8:c3:c9:b7:8e:fe:b4:e7:bb:41:d6:b5:49:
c5:f9:57:e1:6f:0c:68:f3:74:82:e2:96:a2:22:ab:
d4:05:a5:c2:2c:cc:a8:24:84:55:9f:4f:f7:e7:b0:
45:2a:80:fd:92:8b:db:fe:4f:0b:69:0c:60:9b:44:
56:37:cb:61:57:0d:d5:eb:be:48:81:b3:49:f1:4b:
9d:60:fa:bc:b1:49:56:21:fe:e4:01:52:8e:f3:ab:
9e:77:7a:57:e0:45:93:9c:6a:44:52:6b:1f:64:59:
a8:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:50:7A:58:EC:B0:C4:CA:3F:F9:E6:52:94:41:82:E6:83:00:02:C1
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e3130302e3231342e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.214.0/24
Signature Algorithm: sha256WithRSAEncryption
08:f8:31:52:f1:64:85:3f:88:d4:d3:24:ad:5d:f0:31:f5:63:
ad:9d:3f:cd:0a:7e:1e:57:df:94:8b:ca:f4:a0:b0:c4:05:cc:
b4:ae:0f:d2:e4:a0:a0:05:a4:11:fc:4f:35:e6:90:d6:59:4b:
20:9a:b7:db:04:aa:44:30:4c:7c:68:cf:d7:c5:fc:77:d5:1f:
f9:ed:20:8d:00:bc:51:13:8b:d0:f8:07:51:19:19:63:14:b6:
e5:24:2c:55:1b:20:4b:f1:15:71:52:b3:6c:4c:c8:7b:ba:ad:
6d:bb:3c:5b:3c:f1:03:f6:99:c0:76:81:ad:ed:42:87:c5:3d:
45:72:01:b1:d7:a9:a1:8b:eb:2d:ed:83:23:14:f1:ae:71:a1:
59:48:e4:92:0d:e2:70:58:95:fb:3d:97:40:9d:ab:14:58:d2:
a6:4f:a2:92:f6:4f:ee:2c:a0:f7:c1:11:53:3c:7f:8c:a6:25:
8c:81:b7:eb:01:2d:11:c0:84:ea:13:b3:86:13:8e:29:a4:f1:
e2:68:b5:0f:35:67:8e:41:3e:bd:60:cb:e8:08:54:de:00:72:
bf:9e:57:89:bf:47:b0:4b:d4:6a:df:67:cd:74:f8:f4:e5:d8:
2f:b2:b4:e5:87:ee:8e:1e:bd:11:af:ff:c8:7a:c1:fa:29:ca:
cd:cc:26:6c
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUMN4Xo+RcFXqA68YAn8dUJ98vkzgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZGM5NDNjYzJhN2NkYzM3OGEzNzcwMjU3M2JiNGY4MjEx
NzBiNTMwZDAeFw0yNDA5MTExMDM3MDdaFw0yNTA5MTAxMDQyMDdaMDMxMTAvBgNV
BAMTKDMxNTA3QTU4RUNCMEM0Q0EzRkY5RTY1Mjk0NDE4MkU2ODMwMDAyQzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCFH/Owb6yArPom1BJkhIEmRO5Y
TdVAlYuRs673LY3UAmk4xVE8LV3m9UgJAH8gjnx1QyUCqYwd36ocflkfFGuPx+St
LDKRWRzXZ1PqwB2T8uoYIfFk9kTTMM3Q6E7P+Kv2B8+n/oukqDMSPy7ZEiDzHJ3h
455CnfLIgfe9TqmDQ9kF1/7N3b1MgnCaI9+CGZLKBu7w9i442MPJt47+tOe7Qda1
ScX5V+FvDGjzdILilqIiq9QFpcIszKgkhFWfT/fnsEUqgP2Si9v+TwtpDGCbRFY3
y2FXDdXrvkiBs0nxS51g+ryxSVYh/uQBUo7zq553elfgRZOcakRSax9kWai3AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUMVB6WOywxMo/+eZSlEGC5oMAAsEwHwYDVR0j
BBgwFoAU3JQ8wqfNw3ijdwJXO7T4IRcLUw0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNmFiMDcyMmYtNjRkOC00Y2E5LTkyNjctNGU1MTU0NDM0
MTAxLzAvREM5NDNDQzJBN0NEQzM3OEEzNzcwMjU3M0JCNEY4MjExNzBCNTMwRC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzNKUTh3cWZOdzNpamR3SlhPN1Q0SVJj
TFV3MC5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNmFiMDcyMmYt
NjRkOC00Y2E5LTkyNjctNGU1MTU0NDM0MTAxLzAvMzEzODM1MmUzMTMwMzAyZTMy
MzEzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlk
1jANBgkqhkiG9w0BAQsFAAOCAQEACPgxUvFkhT+I1NMkrV3wMfVjrZ0/zQp+Hlff
lIvK9KCwxAXMtK4P0uSgoAWkEfxPNeaQ1llLIJq32wSqRDBMfGjP18X8d9Uf+e0g
jQC8UROL0PgHURkZYxS25SQsVRsgS/EVcVKzbEzIe7qtbbs8WzzxA/aZwHaBre1C
h8U9RXIBsdepoYvrLe2DIxTxrnGhWUjkkg3icFiV+z2XQJ2rFFjSpk+ikvZP7iyg
98ERUzx/jKYljIG36wEtEcCE6hOzhhOOKaTx4mi1DzVnjkE+vWDL6AhU3gByv55X
ib9HsEvUat9nzXT49OXYL7K05Yfujh69Ea//yHrB+inKzcwmbA==
-----END CERTIFICATE-----
Generated at Thu Oct 3 12:20:06 2024 by rpki-client on console-ams.rpki-client.org