Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3231352e302f32342d3234203d3e20383334.roa
File: 38352e3233372e3231352e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: IVDh3BkR4cQPyLzV3pIt3Z8M8iPfWwRzyO7gRHbvEC4=
Subject key identifier: 2D:A7:4E:E8:F0:C8:06:AA:25:59:17:7B:A8:1A:30:DF:31:B4:11:9B
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 2307E42EC9B93BAC2D50674C87A066143D2C11BE
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3231352e302f32342d3234203d3e20383334.roa
Signing time: Mon 08 Apr 2024 00:01:20 +0000
ROA not before: Sun 07 Apr 2024 23:56:20 +0000
ROA not after: Mon 07 Apr 2025 00:01:20 +0000
asID: 834
IP address blocks: 85.237.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Apr 2024 13:05:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:07:e4:2e:c9:b9:3b:ac:2d:50:67:4c:87:a0:66:14:3d:2c:11:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Apr 7 23:56:20 2024 GMT
Not After : Apr 7 00:01:20 2025 GMT
Subject: CN=2DA74EE8F0C806AA2559177BA81A30DF31B4119B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d5:d9:68:ad:7a:80:4b:ff:b7:0b:b7:4b:fc:
44:12:51:97:62:be:4c:64:4b:1e:58:14:e5:aa:ed:
a4:c8:44:34:03:a7:b8:07:ea:b2:77:f4:ff:57:d7:
3b:9d:3e:c1:c5:02:04:28:df:80:22:38:4b:a3:7e:
59:a3:e6:79:6c:df:3d:b4:38:c4:1e:1b:e7:87:0d:
bf:d7:c5:4a:91:db:ec:17:b1:2f:86:4f:cc:6b:fb:
64:a4:26:b9:47:79:46:91:b9:4b:d3:74:9f:ef:d0:
06:26:a9:9c:d1:44:e5:ba:91:08:fa:94:e9:c6:8d:
ce:8f:59:52:f9:c1:c7:d9:32:ab:4b:ee:07:3c:49:
bc:1d:44:1d:41:4f:eb:6b:a3:4b:93:cb:4d:ea:1b:
87:43:ee:d1:fd:37:4c:d0:28:78:17:bd:79:2f:55:
5b:29:d4:93:74:87:af:0c:e4:0a:9e:de:ed:d9:ad:
a1:d8:5c:10:f9:17:73:56:5d:c2:b0:b8:5d:8b:a5:
4e:cc:84:05:b3:56:b5:24:d9:39:ad:48:b5:0f:1e:
94:91:46:2e:54:f2:08:d9:51:47:d2:a5:c0:d4:be:
40:f5:ef:a8:d7:ea:60:41:d1:5c:47:e9:b1:af:8a:
7f:0a:07:08:25:48:c9:ee:14:e9:5c:0c:3a:db:6a:
34:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:A7:4E:E8:F0:C8:06:AA:25:59:17:7B:A8:1A:30:DF:31:B4:11:9B
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3231352e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.215.0/24
Signature Algorithm: sha256WithRSAEncryption
03:04:02:61:b4:f2:6b:79:f9:f8:f4:16:1a:5f:9f:e0:ab:0b:
f4:86:55:7e:40:c1:3a:02:e2:30:5b:2d:8e:cf:55:8d:e2:bb:
1a:19:0b:4d:c2:f2:20:4e:9f:24:13:e3:5e:66:29:82:a4:43:
a4:fd:d9:4a:23:c7:79:51:f5:9b:9f:e6:ac:05:a7:45:4e:02:
d6:b8:ae:71:4a:19:80:c0:38:93:82:ef:00:d7:96:de:8c:e6:
d1:77:ee:89:49:b6:67:cb:40:d9:ac:0f:26:23:72:c7:9d:51:
f8:62:c3:a1:5d:00:f0:a3:86:d9:e0:03:67:14:c2:72:0f:7a:
6f:bc:bd:ad:32:c7:d8:97:5d:8f:59:25:b2:c1:63:d2:7e:41:
86:36:04:fb:cf:46:0c:c0:27:f2:22:73:3d:8f:24:d8:49:3c:
1a:ad:3a:47:dc:3b:a9:e0:71:97:26:1d:72:4e:8b:e3:39:cc:
3b:f6:03:d4:7d:a5:68:07:4e:0d:75:b5:be:4b:9f:6d:62:ce:
8b:47:33:36:8e:15:03:1d:52:07:f6:d0:f2:cb:99:c4:0b:b9:
86:4f:c5:92:5d:32:44:fc:91:b0:0b:32:0a:d4:8c:a7:2c:83:
be:d5:ba:c7:39:df:71:69:61:a0:94:8e:e2:7a:37:22:3a:87:
be:21:2f:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 15:54:44 2024 by rpki-client on console-fra.rpki-client.org