Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3232322e302f32342d3234203d3e20383334.roa
File: 38352e3233372e3232322e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: cM5LubZxj8S4R8M00oJ9I3ZH7B3YyknHI6r+w+P4BDk=
Subject key identifier: 1C:74:94:7C:7D:F2:F5:5F:C9:29:B2:45:A6:6E:72:B5:6C:46:60:C9
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 03DF0C722ED2C7B1F97678537C7660EFB722691C
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3232322e302f32342d3234203d3e20383334.roa
Signing time: Thu 29 Feb 2024 00:00:38 +0000
ROA not before: Wed 28 Feb 2024 23:55:38 +0000
ROA not after: Thu 27 Feb 2025 00:00:38 +0000
asID: 834
IP address blocks: 85.237.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Mar 2024 05:59:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:df:0c:72:2e:d2:c7:b1:f9:76:78:53:7c:76:60:ef:b7:22:69:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Feb 28 23:55:38 2024 GMT
Not After : Feb 27 00:00:38 2025 GMT
Subject: CN=1C74947C7DF2F55FC929B245A66E72B56C4660C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b1:e5:a2:c4:71:4a:17:d1:cb:57:32:6c:de:
b6:5e:f3:14:65:02:3b:ca:9d:30:91:a5:c7:3b:ad:
07:67:88:a7:e6:41:87:24:7c:ef:dc:32:62:ef:bc:
76:40:ea:88:ce:eb:46:2d:bf:99:92:03:c0:6e:4a:
17:a9:2a:22:c7:b9:2a:5b:3e:01:c8:65:42:ec:35:
7a:e4:5a:7d:5d:1b:68:cb:92:59:72:ed:7d:10:bf:
2b:58:45:5e:d1:e2:f3:1b:09:06:e2:69:00:39:0d:
1b:7a:a1:aa:e1:dd:43:63:2a:e3:0e:99:71:18:14:
86:90:d0:e1:4b:cc:f1:be:e9:da:eb:86:0f:a8:77:
75:24:e0:e0:25:49:46:a3:40:78:7f:c0:46:70:6a:
f1:ea:69:d9:ac:ba:49:e3:b7:ba:c8:ad:62:1e:50:
db:e0:21:8e:22:d4:38:66:b0:ce:7f:02:f9:21:5b:
a5:bd:4a:cb:18:3d:34:8e:01:a2:f1:85:5d:14:b8:
44:1a:63:ac:6c:c1:3d:74:f2:66:03:b6:ff:ec:92:
77:7f:28:b1:11:95:b3:bd:8b:ca:2a:bb:24:10:10:
b5:cc:6d:d1:87:28:db:1e:e0:ab:c2:5f:20:f7:c8:
3a:c5:cb:ae:e8:a2:f5:1e:40:8f:66:1f:14:ed:cc:
d5:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:74:94:7C:7D:F2:F5:5F:C9:29:B2:45:A6:6E:72:B5:6C:46:60:C9
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/38352e3233372e3232322e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.222.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:5c:c9:e5:96:07:c6:a9:6c:f9:0b:e1:79:75:7d:81:9a:58:
db:55:d2:3d:3c:27:51:fc:0e:44:16:ba:a8:52:1f:e1:d6:9e:
61:f1:e5:36:f4:f2:02:07:d3:4a:0e:8a:24:c4:26:cc:8a:13:
a3:45:4c:23:46:a2:c4:49:46:7b:66:e4:8f:f3:a5:40:28:7b:
40:2a:ed:ca:f6:3f:c6:cf:76:8b:fc:db:f1:88:d7:d8:eb:aa:
38:62:b6:18:5f:f3:f1:18:89:78:f3:62:3e:93:4e:2a:de:f4:
7b:35:6e:f7:25:ba:1b:29:80:05:60:44:69:27:5a:c3:26:ef:
24:28:f3:e9:1e:e3:b8:3c:d0:32:d4:a9:5e:8d:4d:aa:55:3a:
ee:40:90:e9:3c:d2:0e:6d:a9:e9:79:aa:4c:df:24:e5:cb:bc:
65:45:97:31:82:15:12:04:6d:04:ff:0a:18:f4:2c:44:ab:9d:
43:b2:aa:e1:3b:c7:ef:2c:22:85:89:0c:24:57:4c:b9:a3:81:
53:05:6f:41:34:79:70:1d:02:66:36:b5:1b:a7:4a:27:b1:f6:
28:21:27:10:e7:5d:30:88:07:97:c7:6c:49:d0:f2:ff:1d:15:
4c:63:66:11:d5:1c:a5:96:59:60:e8:cb:01:30:68:a5:d1:3b:
71:97:73:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:16 2024 by rpki-client on console-fra.rpki-client.org