Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3231362e302f32342d3234203d3e20383334.roa
File: 38352e3233372e3231362e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: 3JaasOMq+mzb2XZNt2pOqu+deirbM0FqxYmJPyFyKtA=
Subject key identifier: ED:30:2B:B8:DE:70:9A:3B:39:17:F0:62:E2:DB:BB:46:80:3C:3B:82
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 1161A73AD6F112DF031704E835FE57565E66A8BA
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3231362e302f32342d3234203d3e20383334.roa
Signing time: Tue 06 Aug 2024 10:08:36 +0000
ROA not before: Tue 06 Aug 2024 10:03:36 +0000
ROA not after: Tue 05 Aug 2025 10:08:36 +0000
asID: 834
IP address blocks: 85.237.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Oct 2024 07:05:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:61:a7:3a:d6:f1:12:df:03:17:04:e8:35:fe:57:56:5e:66:a8:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Aug 6 10:03:36 2024 GMT
Not After : Aug 5 10:08:36 2025 GMT
Subject: CN=ED302BB8DE709A3B3917F062E2DBBB46803C3B82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c2:9b:ff:7e:3a:da:68:ac:1f:6c:e7:17:fa:
ef:fa:cb:31:39:3d:e1:de:31:6e:7a:04:54:c2:11:
55:2e:bb:67:e5:53:bb:1c:21:24:9b:08:90:4e:5f:
95:58:59:bd:31:38:1a:9e:4a:4f:19:e3:a5:49:c2:
01:e5:34:65:58:0b:25:18:1a:87:e3:73:c5:c4:73:
27:06:51:e3:47:57:7a:8b:ca:20:49:bf:e9:32:4c:
56:a3:35:02:6f:ea:73:a2:20:69:05:21:77:9e:d3:
69:fd:c3:4d:3d:68:78:67:fa:8a:9c:18:90:71:ed:
d0:b7:d3:73:64:de:18:0c:47:5a:29:b6:2a:9e:dc:
4b:d1:56:6c:f9:ff:3d:b0:ad:d5:73:22:40:a2:71:
a8:df:fd:f0:44:05:7a:68:0d:15:31:de:ca:66:db:
93:51:7e:80:60:c3:3f:d7:cb:66:a6:95:8a:71:50:
ca:56:8b:18:9b:85:17:78:ea:20:af:ad:6f:f5:8b:
8d:22:1d:56:0b:a7:15:5c:36:ef:d2:b4:a5:df:2e:
ff:ad:f9:e3:e4:f2:eb:24:85:46:f0:80:73:68:19:
17:98:19:bd:20:7b:a2:f6:ad:00:a4:3b:b9:98:3f:
e6:cf:d9:d7:a2:93:45:36:9f:45:7a:25:95:c9:67:
87:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:30:2B:B8:DE:70:9A:3B:39:17:F0:62:E2:DB:BB:46:80:3C:3B:82
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3231362e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.216.0/24
Signature Algorithm: sha256WithRSAEncryption
38:d8:c0:16:fa:e4:b6:00:a3:a2:63:eb:5e:71:e7:30:a0:9b:
a4:dc:76:ce:9c:12:99:73:ce:a2:49:0c:94:a2:cb:3b:28:9f:
28:54:3e:b5:2f:d0:63:e9:86:80:cc:e0:d1:2d:04:34:6c:7f:
76:6a:c5:1c:87:8a:b7:00:14:5d:9f:95:0d:e1:5e:98:44:88:
6b:25:62:bc:d1:1b:a2:3c:ff:c2:6a:89:99:87:2f:da:40:78:
fa:d9:40:28:b8:fe:41:87:8e:a8:f9:f3:3d:ec:cf:76:c0:04:
25:f6:35:af:98:9c:54:cc:96:62:44:0b:2f:0f:01:ef:68:6f:
ef:05:0c:5f:73:e9:be:88:05:4b:7d:73:92:9f:9b:57:6b:eb:
20:ca:2e:29:a4:31:43:e6:cb:95:ab:ab:da:80:1a:60:73:5d:
3d:17:a3:98:d1:13:44:c9:4c:27:09:5b:1e:4f:cc:21:19:69:
6c:0b:1f:b0:13:6a:d5:5e:22:11:7c:c2:28:01:3f:89:c5:39:
ca:09:28:68:7c:1b:1f:54:5d:0c:c6:ec:a6:02:9a:0f:f7:27:
68:90:41:39:9d:8d:ff:dc:62:13:cf:3b:1e:f3:11:69:3d:9f:
3b:76:cb:d3:23:85:46:5c:ab:fe:2c:00:b1:e0:1c:f8:39:72:
ed:05:16:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 2 10:53:39 2024 by rpki-client on console-ams.rpki-client.org