Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3231312e302f32342d3234203d3e203231383539.roa
File: 38352e3233372e3231312e302f32342d3234203d3e203231383539.roa (raw, json)
Hash identifier: cq5lJ9dcIXzcDT2W3QY4JLXPvuDsuJeH0c5BCOMNaqY=
Subject key identifier: 95:33:5F:68:54:7E:02:74:1A:3C:EE:91:6A:3E:26:E2:FC:2C:98:4B
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 6D7A030FDC2DCEACBA35BA5475FB2E257BE618CF
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3231312e302f32342d3234203d3e203231383539.roa
Signing time: Wed 31 Jan 2024 10:49:57 +0000
ROA not before: Wed 31 Jan 2024 10:44:57 +0000
ROA not after: Wed 29 Jan 2025 10:49:57 +0000
asID: 21859
IP address blocks: 85.237.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 00:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:7a:03:0f:dc:2d:ce:ac:ba:35:ba:54:75:fb:2e:25:7b:e6:18:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Jan 31 10:44:57 2024 GMT
Not After : Jan 29 10:49:57 2025 GMT
Subject: CN=95335F68547E02741A3CEE916A3E26E2FC2C984B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:75:d7:68:ae:40:05:4f:db:6d:5b:64:d2:b7:
c4:40:c1:44:1a:b2:e1:2e:ac:34:be:24:2f:e3:c3:
97:73:f8:0f:cc:2b:6e:b8:1f:84:67:39:6a:cc:83:
6b:4c:4c:97:96:98:e4:af:46:09:40:03:d4:8b:ae:
84:fa:47:51:bb:94:f9:c1:ef:02:a9:e2:f7:13:47:
e4:9a:c3:66:b3:9d:7b:78:07:a7:d7:b7:17:41:9d:
e8:62:5c:f0:d8:25:3b:9a:f9:78:4a:eb:4d:01:df:
b1:c7:40:a9:03:aa:08:6d:ca:c3:b1:a1:88:a8:f0:
37:c8:3c:b0:65:f7:a1:72:20:e6:dc:c7:a3:c7:c5:
37:bb:50:95:77:fb:7e:5b:2a:17:ff:a1:ad:f7:bb:
e9:d8:74:7a:d7:fb:86:49:dd:8a:7c:7a:9b:d9:ec:
43:2a:19:a8:de:16:78:a9:3d:94:e9:60:19:88:18:
8b:55:e7:42:6e:59:1b:c7:ba:c3:e9:36:4f:c5:6f:
de:e6:68:ed:c4:cb:ae:5d:0c:cf:7e:53:f4:df:4c:
fd:8a:87:ac:a6:c1:1a:2c:34:f5:2b:e5:2d:ee:08:
92:45:14:f9:84:b3:33:06:c8:d2:ef:e4:31:b3:a3:
67:07:81:38:f5:84:33:22:c1:7c:02:28:3e:23:b4:
76:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:33:5F:68:54:7E:02:74:1A:3C:EE:91:6A:3E:26:E2:FC:2C:98:4B
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3231312e302f32342d3234203d3e203231383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.211.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:91:e0:40:06:41:28:ea:1d:1d:7b:61:c9:fc:18:2a:d6:75:
db:9d:e1:57:e6:4f:ce:b4:fe:cc:6a:50:75:f2:88:93:75:d8:
7d:00:4c:24:d2:14:b2:15:61:89:0f:f5:5c:0f:fa:91:8c:bb:
fa:88:74:6e:dd:f5:b0:5f:4b:9f:03:65:a9:70:32:77:0a:7c:
a9:dd:54:9c:7d:a5:d1:78:aa:c4:ba:41:e2:e1:91:94:cc:9f:
46:9e:e1:bb:2b:6b:cd:4b:4f:fd:5f:06:32:8e:71:03:68:54:
dd:6e:b2:d0:b2:3d:3e:59:50:b9:31:a1:2f:fd:e1:18:40:83:
72:a6:be:36:40:3a:61:18:d3:b9:03:c0:e1:f2:40:df:d5:3e:
0c:b3:b1:3f:cc:03:5d:a6:10:05:dc:f9:98:c1:b3:d0:ea:d6:
03:1a:76:38:8a:29:f3:6e:1c:9f:a5:32:75:e3:c6:90:91:24:
53:02:eb:98:5d:2f:0b:ea:18:4b:8b:b3:76:fb:f6:e6:5c:19:
db:6c:0b:64:ac:b7:56:63:0c:22:2f:e7:7c:f9:eb:35:75:7b:
eb:02:a1:4f:9e:b2:08:7a:70:0f:6a:51:21:86:f3:24:99:40:
73:00:f7:62:00:73:9e:2f:84:0e:9f:dc:be:53:ef:f8:28:db:
8a:92:a1:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:16 2024 by rpki-client on console-fra.rpki-client.org