Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3231362e302f32342d3234203d3e20383334.roa
File: 38352e3233372e3231362e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: KiPCLl8A+KmhkQLDDuq9z9ROqenqQylTimZCf4HLgfo=
Subject key identifier: A3:3C:DF:46:92:1A:C7:71:D8:FE:4B:C8:F8:8D:7F:FD:87:F0:FA:17
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 08BD19E3C4C25F71F6A05164735243E55835554A
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3231362e302f32342d3234203d3e20383334.roa
Signing time: Sat 04 May 2024 10:07:48 +0000
ROA not before: Sat 04 May 2024 10:02:48 +0000
ROA not after: Sat 03 May 2025 10:07:48 +0000
asID: 834
IP address blocks: 85.237.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 May 2024 16:32:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:bd:19:e3:c4:c2:5f:71:f6:a0:51:64:73:52:43:e5:58:35:55:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: May 4 10:02:48 2024 GMT
Not After : May 3 10:07:48 2025 GMT
Subject: CN=A33CDF46921AC771D8FE4BC8F88D7FFD87F0FA17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:00:75:26:d6:bf:5a:9b:0a:2a:2d:bb:06:b7:
2a:60:15:bc:68:c1:a3:61:54:fb:90:ba:6b:da:d3:
64:de:5a:d5:fe:f7:e9:aa:8d:6f:db:fe:b0:44:ce:
06:50:e6:60:5a:69:b6:55:b0:03:0f:94:92:6b:9b:
a5:bd:32:98:52:a2:9a:d0:92:7c:60:42:ff:9f:2a:
98:10:a2:85:2d:06:7b:80:a6:98:b6:2d:f1:67:74:
e5:f4:a8:be:f4:da:cc:a3:74:5f:4c:8a:32:a3:3e:
6e:4a:13:f9:f0:fb:16:46:6c:f9:51:6f:60:6f:cc:
93:9c:98:84:e6:6f:27:7f:b9:28:6c:5a:9e:43:64:
3c:18:42:00:bf:ad:f9:d8:7f:73:77:20:a3:28:20:
d4:2a:65:70:ff:cf:1d:44:a0:23:90:05:99:3e:5a:
91:a0:62:65:6f:65:63:71:61:07:ef:5a:89:74:7b:
3d:e4:81:2a:91:72:8a:b8:ea:d8:87:4d:51:88:5c:
a4:5e:fe:8d:e6:49:a0:74:70:16:02:a7:30:28:e0:
45:a3:2c:c4:c4:7e:e5:f2:3d:5a:22:c9:b4:93:62:
ec:ed:41:d1:e1:74:99:d3:89:ac:01:7f:5e:02:ad:
78:c6:e9:3e:97:69:0c:8e:e5:3b:c0:f0:9c:83:d3:
18:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:3C:DF:46:92:1A:C7:71:D8:FE:4B:C8:F8:8D:7F:FD:87:F0:FA:17
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3231362e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.216.0/24
Signature Algorithm: sha256WithRSAEncryption
23:84:f1:b4:e1:44:e4:01:2a:e4:86:07:68:3a:92:1d:8d:2e:
43:34:d5:d8:0a:fd:bd:72:01:b3:e7:b1:3f:0e:1c:11:75:18:
0f:43:9e:8f:e5:29:a5:e2:7b:fa:7f:43:3b:0b:4b:b3:1c:c4:
b8:9b:b5:3d:5c:5e:df:91:94:08:5c:a6:72:07:d7:47:0c:30:
b2:c1:9a:ff:1a:41:74:23:4d:51:ff:3e:20:37:9b:80:92:93:
10:e7:4c:b6:55:da:18:23:48:be:90:b0:da:b6:91:e2:98:4f:
f2:2d:a9:fa:37:19:2d:bb:35:4d:24:6f:16:d4:e4:10:f4:84:
1e:2b:bc:66:3d:98:22:2e:43:ef:ec:ba:3e:58:62:18:ad:2a:
91:80:1d:01:5f:a6:7e:2c:99:df:f7:1f:9f:fb:8b:59:09:b4:
fb:b4:67:6c:b1:35:61:e1:02:0c:05:d6:96:5c:60:f1:07:5a:
b2:44:b0:a8:f6:f9:0c:70:f2:aa:fc:af:f3:5c:52:5d:af:a3:
49:08:0d:c0:da:d8:fc:55:35:3e:ea:1b:97:d9:1d:38:91:ff:
73:7d:40:ae:5b:40:56:aa:7a:17:f7:32:12:6c:e6:e0:4a:95:
cb:51:f6:5c:7d:fd:e1:29:cd:02:b2:15:56:ef:9f:e9:44:66:
63:d3:f6:9d
-----BEGIN CERTIFICATE-----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Generated at Mon May 6 19:36:55 2024 by rpki-client on console-fra.rpki-client.org