Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e3130302e3231342e302f32342d3234203d3e20383334.roa
File: 3138352e3130302e3231342e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: I1NPSwPiZraZPCmug5nnIqbsIInlu+U6o1XDAxT54ig=
Subject key identifier: FC:C9:48:EC:E0:BF:7C:55:68:92:C0:55:33:B1:88:09:BB:57:09:36
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 08C3CAB9049F256BCCCF201609179A83ABA0A29B
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e3130302e3231342e302f32342d3234203d3e20383334.roa
Signing time: Thu 11 Apr 2024 16:23:25 +0000
ROA not before: Thu 11 Apr 2024 16:18:25 +0000
ROA not after: Thu 10 Apr 2025 16:23:25 +0000
asID: 834
IP address blocks: 185.100.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Apr 2024 07:44:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:c3:ca:b9:04:9f:25:6b:cc:cf:20:16:09:17:9a:83:ab:a0:a2:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Apr 11 16:18:25 2024 GMT
Not After : Apr 10 16:23:25 2025 GMT
Subject: CN=FCC948ECE0BF7C556892C05533B18809BB570936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:1f:a2:46:cd:c6:25:31:21:1a:ed:9f:24:69:
a3:57:50:93:93:a1:fc:1e:ad:58:7e:90:c8:14:e0:
aa:16:73:c3:74:c6:a9:94:fb:63:7c:8d:65:94:cc:
00:f9:3a:28:55:eb:8a:be:c4:fd:91:4d:1e:82:9f:
ba:06:ef:75:da:e1:b9:7e:ea:5b:b8:88:c4:a1:bf:
f5:38:23:d1:43:ec:a6:18:61:41:df:75:36:47:a9:
1c:25:aa:1d:35:f8:15:c3:a6:e6:06:34:f8:f2:f9:
1b:30:2a:52:40:c2:ef:65:43:1d:95:15:00:de:e2:
02:3f:d1:d7:6f:70:47:41:fc:ba:e7:10:4a:2d:59:
0c:39:62:e6:85:06:89:e5:90:7d:fd:1a:e7:52:8e:
92:e4:ac:e5:58:af:5b:8e:40:76:de:cd:8e:f4:8c:
ef:e2:12:39:a7:e7:95:8e:38:6d:b8:19:3d:23:4d:
ac:b1:35:aa:85:4a:70:40:42:ea:ce:e6:e3:dd:40:
4d:63:b9:ed:8c:7a:3f:91:f2:90:a6:b1:bf:c8:f2:
93:21:00:2e:df:c6:47:8c:82:e0:90:b3:26:8a:08:
64:88:45:e2:9b:1c:30:a2:45:83:9a:5a:5e:57:3e:
2d:5a:f7:44:94:52:5c:48:4b:cb:94:c5:de:a9:8d:
a9:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:C9:48:EC:E0:BF:7C:55:68:92:C0:55:33:B1:88:09:BB:57:09:36
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3138352e3130302e3231342e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.214.0/24
Signature Algorithm: sha256WithRSAEncryption
14:72:4e:b9:27:2c:c1:9f:a2:f1:d2:d5:8d:8a:be:a2:86:f5:
3b:0d:f3:df:63:a0:0f:be:8b:fc:e6:a4:ba:f4:a2:1a:21:e5:
fd:ca:78:ca:21:40:7a:a2:e7:ff:6e:60:10:47:14:e2:e9:37:
60:7a:fa:86:2d:bd:f9:55:7c:8f:57:95:e1:35:b1:86:95:78:
eb:08:32:6d:65:7e:f2:39:33:be:de:83:d6:13:52:94:9f:86:
52:7e:07:5b:db:f0:12:b4:38:c1:57:f5:0a:a1:12:0e:36:d5:
0d:82:90:da:a0:a7:98:c2:c1:70:57:8e:a7:84:46:1b:5a:c6:
03:b7:30:36:57:44:bf:e4:9c:e8:71:a9:30:e2:ad:a0:a3:b2:
65:c7:d7:f0:74:27:81:f4:4f:ef:00:e3:bc:96:42:80:5e:47:
3b:76:af:a7:f6:25:c0:c8:3c:ef:c3:05:41:42:24:f0:4f:c4:
be:6a:94:c3:51:14:dd:71:19:98:e3:ab:68:90:98:90:7d:95:
50:8b:e5:a9:14:0e:37:f1:cd:cf:d0:14:af:b9:b0:1d:fa:ed:
8b:e4:09:09:00:91:ec:ff:88:49:a8:04:f8:90:72:97:d1:4b:
1c:0e:99:a8:a2:d1:1a:ef:a5:a1:f0:43:2e:71:94:52:dd:9a:
9d:2f:fc:c0
-----BEGIN CERTIFICATE-----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Generated at Fri Apr 19 10:51:40 2024 by rpki-client on console-fra.rpki-client.org