Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135322e302f32342d3234203d3e20323031333634.roa
File: 3138352e3232362e3135322e302f32342d3234203d3e20323031333634.roa (raw, json)
Hash identifier: ydvQH3NI16dyHpr2JTSaSo1r6rMGBEo6tGieYzTujO4=
Subject key identifier: F4:5B:A9:AE:E8:87:DA:16:1A:38:91:D9:EB:1B:77:00:77:2C:ED:2D
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 016E481C44B6E0DA90DAFD141702520B8D1F64B4
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135322e302f32342d3234203d3e20323031333634.roa
Signing time: Fri 06 Oct 2023 13:54:24 +0000
ROA not before: Fri 06 Oct 2023 13:49:24 +0000
ROA not after: Fri 04 Oct 2024 13:54:24 +0000
asID: 201364
IP address blocks: 185.226.152.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:6e:48:1c:44:b6:e0:da:90:da:fd:14:17:02:52:0b:8d:1f:64:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Oct 6 13:49:24 2023 GMT
Not After : Oct 4 13:54:24 2024 GMT
Subject: CN=F45BA9AEE887DA161A3891D9EB1B7700772CED2D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:70:8e:9a:af:d1:b8:ae:a7:03:ce:0d:fa:a1:
36:01:99:18:bc:88:5a:b3:cc:fe:dd:01:e4:e9:35:
17:01:b1:94:8e:1c:d0:41:f7:43:23:ba:04:be:08:
68:06:8e:1c:e2:f9:ea:d4:59:08:36:4d:cd:7d:93:
85:b8:ea:1d:79:83:7e:d4:d1:a1:09:9a:84:d8:3a:
4c:2e:b6:73:ce:44:32:3f:a1:00:42:62:45:e9:6b:
f8:81:36:5f:79:6b:30:05:f9:1b:80:71:31:4c:46:
b0:88:67:7f:63:fc:10:23:9f:06:97:bf:88:81:0b:
4a:26:ea:7f:1d:a4:cb:9c:1d:da:40:60:95:d6:41:
69:1b:d7:c4:bf:ec:72:0e:c3:5b:49:f2:00:82:1d:
0b:87:f7:b4:53:f0:dd:eb:57:35:38:a6:ad:a1:69:
d2:95:b8:9a:f7:5d:50:dd:26:c2:3e:80:9c:7d:97:
d2:93:6b:86:bb:b8:ac:d6:f8:1a:b8:bc:e8:ee:53:
2e:cb:43:7b:c2:3c:05:db:00:bc:0e:24:dc:cc:c8:
79:17:48:20:cb:8b:ee:cb:c6:12:fd:4d:30:25:c4:
ee:f7:d7:a2:a5:b7:2a:f1:a0:64:89:10:0b:7f:d8:
80:33:25:2e:08:83:d9:36:9d:c5:7f:b6:83:84:c4:
5a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:5B:A9:AE:E8:87:DA:16:1A:38:91:D9:EB:1B:77:00:77:2C:ED:2D
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135322e302f32342d3234203d3e20323031333634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.152.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:70:bc:5d:93:a7:ba:4e:cf:c6:53:d0:33:48:5c:8d:31:0c:
25:d3:67:0b:df:3b:28:b3:99:ad:7c:fc:18:8b:52:a5:07:f3:
d7:12:ee:74:0e:fb:65:fe:42:b3:3a:eb:ff:ec:c9:42:96:a2:
c5:18:8b:8e:83:cd:b5:63:a4:7b:07:a8:a0:2a:87:69:87:cc:
c5:8d:2c:33:42:b2:e7:c1:36:2a:13:5d:47:70:d0:03:90:e4:
98:00:32:b6:a5:6a:35:dc:7f:e9:29:73:ef:ee:6d:0e:be:56:
17:cd:26:9b:ec:7f:c7:c0:c6:67:c2:cf:a5:1f:a0:9d:bf:b8:
88:a8:93:e3:a3:cd:2c:36:0d:41:72:2d:09:54:5f:87:36:70:
50:ba:fe:50:a5:e5:1d:a8:d3:a3:41:d1:89:da:19:f1:42:fc:
7f:2a:d9:b6:75:b5:99:88:19:5d:f9:19:df:2b:d0:ba:9d:09:
df:00:6b:7a:00:a4:6d:c9:46:da:c5:90:a7:88:c3:44:7c:2a:
ea:7c:fd:18:5e:18:c4:b1:46:ff:2f:b5:a4:be:fd:c8:12:09:
23:fa:8a:49:03:09:91:b7:80:a9:cd:aa:56:49:1d:b8:73:0a:
64:26:fe:1d:9d:12:cc:cd:88:76:8a:5b:34:1f:7e:d2:c5:b4:
a6:6e:1c:68
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIUAW5IHES24NqQ2v0UFwJSC40fZLQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjAxNzBhYmRjOTU1YWExNzZiZTJhZjI2Mjk5Njc4ZjJm
N2M5YWNhMDAeFw0yMzEwMDYxMzQ5MjRaFw0yNDEwMDQxMzU0MjRaMDMxMTAvBgNV
BAMTKEY0NUJBOUFFRTg4N0RBMTYxQTM4OTFEOUVCMUI3NzAwNzcyQ0VEMkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCScI6ar9G4rqcDzg36oTYBmRi8
iFqzzP7dAeTpNRcBsZSOHNBB90MjugS+CGgGjhzi+erUWQg2Tc19k4W46h15g37U
0aEJmoTYOkwutnPORDI/oQBCYkXpa/iBNl95azAF+RuAcTFMRrCIZ39j/BAjnwaX
v4iBC0om6n8dpMucHdpAYJXWQWkb18S/7HIOw1tJ8gCCHQuH97RT8N3rVzU4pq2h
adKVuJr3XVDdJsI+gJx9l9KTa4a7uKzW+Bq4vOjuUy7LQ3vCPAXbALwOJNzMyHkX
SCDLi+7LxhL9TTAlxO7316KltyrxoGSJEAt/2IAzJS4Ig9k2ncV/toOExFpRAgMB
AAGjggJBMIICPTAdBgNVHQ4EFgQU9FupruiH2hYaOJHZ6xt3AHcs7S0wHwYDVR0j
BBgwFoAUsBcKvclVqhdr4q8mKZZ48vfJrKAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2E3ODllODctZjQ4NC00MjNkLWExZDctMmMyZDU4NjBk
MmVjLzAvQjAxNzBBQkRDOTU1QUExNzZCRTJBRjI2Mjk5Njc4RjJGN0M5QUNBMC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3NCY0t2Y2xWcWhkcjRxOG1LWlo0OHZm
SnJLQS5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvN2E3ODllODct
ZjQ4NC00MjNkLWExZDctMmMyZDU4NjBkMmVjLzAvMzEzODM1MmUzMjMyMzYyZTMx
MzUzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzAzMTMzMzYzNC5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEALnimDANBgkqhkiG9w0BAQsFAAOCAQEAC3C8XZOnuk7PxlPQM0hcjTEMJdNn
C987KLOZrXz8GItSpQfz1xLudA77Zf5Cszrr/+zJQpaixRiLjoPNtWOkeweooCqH
aYfMxY0sM0Ky58E2KhNdR3DQA5DkmAAytqVqNdx/6Slz7+5tDr5WF80mm+x/x8DG
Z8LPpR+gnb+4iKiT46PNLDYNQXItCVRfhzZwULr+UKXlHajTo0HRidoZ8UL8fyrZ
tnW1mYgZXfkZ3yvQup0J3wBregCkbclG2sWQp4jDRHwq6nz9GF4YxLFG/y+1pL79
yBIJI/qKSQMJkbeAqc2qVkkduHMKZCb+HZ0SzM2IdopbNB9+0sW0pm4caA==
-----END CERTIFICATE-----
Generated at Thu Oct 19 09:21:48 2023 by rpki-client on console-fra.rpki-client.org