Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3139342e3136392e3231372e302f32342d3234203d3e20383334.roa
File: 3139342e3136392e3231372e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: l9krWdbdG8bzgqRlOMEE/IK73iS88DtSOZ+aAokXz6E=
Subject key identifier: EE:D3:49:16:C1:7E:7A:17:9F:75:47:B7:E5:B2:85:28:89:2E:FF:81
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 0B87E18381AE4802E39A6DD4A33C752E1E659279
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3139342e3136392e3231372e302f32342d3234203d3e20383334.roa
Signing time: Tue 10 Sep 2024 10:41:38 +0000
ROA not before: Tue 10 Sep 2024 10:36:38 +0000
ROA not after: Tue 09 Sep 2025 10:41:38 +0000
asID: 834
IP address blocks: 194.169.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Oct 2024 07:46:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:87:e1:83:81:ae:48:02:e3:9a:6d:d4:a3:3c:75:2e:1e:65:92:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Sep 10 10:36:38 2024 GMT
Not After : Sep 9 10:41:38 2025 GMT
Subject: CN=EED34916C17E7A179F7547B7E5B28528892EFF81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:87:88:ee:4e:33:08:80:b0:e5:89:01:d1:46:
05:25:68:5b:eb:b2:72:94:a9:ad:fb:ff:a6:b1:e9:
ad:ad:a0:dc:e2:fe:44:18:de:75:ef:d8:b2:96:d8:
76:53:2b:b2:a6:57:6a:1b:cb:37:70:72:e4:33:26:
7a:3a:1d:fd:3c:da:81:89:7d:f1:88:a5:eb:18:f8:
1c:31:78:4b:fd:f4:cc:64:e1:4f:58:d2:b8:a4:04:
df:f3:c1:33:a3:b1:42:36:0d:b0:a4:57:fb:eb:b2:
72:e1:a9:fa:77:d5:9d:c8:cc:61:20:63:6d:e7:3c:
4f:bc:1a:dc:fc:32:fd:92:9b:c2:31:6c:e7:ae:25:
46:cb:cd:97:a3:7a:89:fa:db:f3:b4:b1:1a:ba:f0:
14:cb:eb:4f:17:42:97:9d:f1:55:d2:29:1e:e0:28:
c0:51:82:ed:44:4c:2d:77:95:a6:b9:a6:4f:23:d0:
94:ae:14:12:97:f4:c5:ce:1b:a7:94:ce:06:17:17:
1e:4e:1e:48:aa:c8:55:6f:2d:d7:cb:86:5c:4b:b7:
be:4d:75:35:bd:55:bb:05:2d:bc:31:f9:af:a7:18:
cf:6c:69:7b:88:0c:e2:2a:5c:0e:e5:4d:dc:32:76:
36:a9:35:64:95:16:29:10:b7:bc:04:59:2f:99:8a:
e7:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:D3:49:16:C1:7E:7A:17:9F:75:47:B7:E5:B2:85:28:89:2E:FF:81
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3139342e3136392e3231372e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.169.217.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:47:46:4e:8f:bb:91:e9:f8:1b:52:2d:35:4e:46:38:f2:6b:
13:af:ad:ee:0f:39:c8:4f:bb:95:97:57:0d:f1:d3:3b:21:a7:
9b:65:85:96:19:e5:27:93:25:f3:a1:5c:2b:62:f1:c5:af:33:
47:e0:5e:02:2d:e9:c4:7f:73:5a:d7:8f:fd:b1:5f:52:90:9a:
2a:b6:51:5e:0f:fc:95:61:17:f8:57:36:c2:32:57:7b:7e:7e:
8d:bf:18:31:3a:3a:b7:d4:01:b6:db:92:7c:b9:5c:71:ce:4e:
51:7e:81:c1:09:bc:4f:66:e1:70:60:f8:2b:0d:15:28:11:90:
cd:bd:10:13:63:d0:2f:15:c8:d9:f2:79:9a:ce:fd:c5:46:61:
b2:93:ad:94:06:1b:f3:69:3e:0e:7f:8d:12:95:33:de:71:0c:
9b:73:76:03:69:d0:72:9c:01:ba:92:97:d2:1e:b7:b7:d2:0c:
60:2b:60:9b:53:79:7a:43:d5:b9:8a:b7:aa:67:2c:82:08:1c:
84:e5:54:ca:e7:b5:37:e7:7a:4d:c9:1d:61:4d:f7:a1:78:4c:
03:6f:3b:02:5b:82:d3:11:16:d1:df:97:61:36:e2:e9:06:78:
af:75:7d:97:ac:7d:09:e7:cf:24:60:24:76:75:73:db:de:fa:
c2:c3:c1:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 2 10:53:39 2024 by rpki-client on console-ams.rpki-client.org