Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3230392e302f32342d3234203d3e203231383539.roa
File: 38352e3233372e3230392e302f32342d3234203d3e203231383539.roa (raw, json)
Hash identifier: uEjSUiyVaHt4hqdtQUbBrq+mCAjslNPwaZrqUpYbvq4=
Subject key identifier: 0D:A1:37:C0:36:6B:94:3D:DE:35:57:11:39:B2:89:90:AE:DC:2C:B0
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 081B4B81CC69A6F89B992A1588A5EE4566145A93
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3230392e302f32342d3234203d3e203231383539.roa
Signing time: Wed 31 Jan 2024 10:49:24 +0000
ROA not before: Wed 31 Jan 2024 10:44:24 +0000
ROA not after: Wed 29 Jan 2025 10:49:24 +0000
asID: 21859
IP address blocks: 85.237.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 00:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:1b:4b:81:cc:69:a6:f8:9b:99:2a:15:88:a5:ee:45:66:14:5a:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Jan 31 10:44:24 2024 GMT
Not After : Jan 29 10:49:24 2025 GMT
Subject: CN=0DA137C0366B943DDE35571139B28990AEDC2CB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:49:c3:07:73:52:ce:3d:5e:37:a0:9c:a2:6b:
63:79:25:5f:4e:cd:3c:8b:c1:d5:99:c5:f3:32:47:
42:81:bf:c4:d2:db:f4:6b:7f:c8:57:cb:ff:c5:8a:
45:22:cc:54:6b:52:dd:cb:34:65:5a:da:40:8b:a2:
06:92:4a:19:32:77:45:07:d0:3c:5f:f4:af:a8:79:
1f:97:df:09:9a:fa:14:be:07:32:78:17:1f:39:43:
21:20:c4:4d:0d:6e:9d:a3:cb:51:67:1e:8e:6e:2e:
ed:10:1c:d1:a0:12:f7:b2:82:66:b0:04:48:0e:4b:
d0:87:13:79:d9:6f:6f:a4:5f:52:cc:d5:1f:7a:fd:
f4:93:66:1b:7a:b1:24:c9:fd:8a:b3:ea:54:56:da:
eb:9e:1c:a2:4b:8c:ad:58:40:33:19:6f:82:66:5e:
93:25:e6:7d:d7:ac:4a:d8:5f:27:4f:6d:e0:c6:ea:
36:3c:df:59:4a:42:9a:74:a8:ec:65:24:ee:2e:9f:
b5:1f:64:4b:ab:1d:78:02:d0:68:bb:c8:48:b4:37:
b0:6a:7b:3c:45:e6:b0:e9:7b:94:6f:7d:70:10:91:
f6:80:1e:53:d3:73:04:b3:3c:92:4c:17:01:df:14:
a3:2a:98:a3:16:f1:51:9e:f1:f5:df:91:18:cc:de:
a4:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:A1:37:C0:36:6B:94:3D:DE:35:57:11:39:B2:89:90:AE:DC:2C:B0
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3230392e302f32342d3234203d3e203231383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.209.0/24
Signature Algorithm: sha256WithRSAEncryption
51:1b:6d:a7:e4:43:b0:04:63:8e:56:70:46:bd:9e:e2:39:1d:
7f:ef:90:ec:87:dd:fc:e8:38:87:ed:ed:74:32:2a:a9:6b:b2:
1f:83:aa:82:f0:4a:9b:3b:d0:7e:19:9d:35:dd:7a:7b:ee:a2:
c4:d7:57:95:ca:3a:99:d0:3e:2e:e2:87:ae:33:a3:7a:d8:59:
49:d8:ae:f3:31:4d:02:92:56:09:0a:0b:92:7a:4b:b9:ff:09:
43:e4:41:f1:af:b4:65:66:8a:c3:05:19:a6:a9:a2:6e:6a:8d:
f4:96:c6:92:0c:a1:4f:52:aa:b8:23:dc:d2:fa:fa:81:f8:ce:
de:06:32:a3:eb:b3:0e:e1:3b:06:bc:14:4c:eb:94:1c:71:17:
95:87:07:d0:cd:77:29:03:d9:e0:3d:1c:88:09:2d:8e:be:76:
56:db:ad:2a:d6:a8:6f:7d:00:44:00:35:10:43:47:95:76:e3:
83:60:54:e3:ea:fa:a7:0b:29:c1:01:c5:93:9d:89:6b:7b:aa:
4e:31:e2:95:3d:bd:ab:84:3d:f9:3f:c1:de:4b:ff:d9:69:9c:
8b:60:5a:e7:17:ac:8e:7b:8e:bd:07:6f:19:17:ec:d8:52:42:
1b:b1:be:d1:71:e1:66:3e:7b:69:06:64:f5:40:57:31:3e:29:
e4:63:09:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:16 2024 by rpki-client on console-fra.rpki-client.org