Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135322e302f32342d3234203d3e203633393032.roa
File: 3138352e3232362e3135322e302f32342d3234203d3e203633393032.roa (raw, json)
Hash identifier: r5kSGitOHsydAUbRGc+iVWWj+QdjMCCjl5OKjWa6hjY=
Subject key identifier: 3E:2A:B4:0B:65:F5:1B:C7:B9:07:5A:05:77:61:1E:43:E6:52:A2:BC
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 048399D62C94577640E3DE80B31B8B6C940FDFF4
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135322e302f32342d3234203d3e203633393032.roa
Signing time: Tue 18 Jun 2024 07:16:23 +0000
ROA not before: Tue 18 Jun 2024 07:11:23 +0000
ROA not after: Tue 17 Jun 2025 07:16:23 +0000
asID: 63902
IP address blocks: 185.226.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Sep 2024 00:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:83:99:d6:2c:94:57:76:40:e3:de:80:b3:1b:8b:6c:94:0f:df:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Jun 18 07:11:23 2024 GMT
Not After : Jun 17 07:16:23 2025 GMT
Subject: CN=3E2AB40B65F51BC7B9075A0577611E43E652A2BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:9f:0a:91:82:a1:46:f5:ea:a4:5e:ac:c8:70:
7d:b4:36:9f:f4:cb:b1:88:97:bc:f6:1c:1b:87:8f:
8d:ec:17:42:bd:61:cc:9a:f8:52:71:9d:a3:0e:e3:
68:ff:01:e3:20:3e:5f:c9:52:d3:a9:49:e7:d2:3d:
44:2a:8d:c5:0c:b3:be:47:6d:ce:86:a4:aa:90:aa:
86:8a:45:42:63:eb:f0:82:dd:30:d6:d0:60:46:e9:
92:9a:3d:b1:1c:4e:de:e2:cc:40:16:ec:03:eb:a9:
42:be:43:2b:e8:3f:e6:e2:45:ed:58:04:f4:66:b8:
88:cb:ff:96:ae:3e:7f:45:f3:5f:66:fb:40:2b:10:
48:e1:57:df:a5:b3:f6:b5:47:6b:2d:da:b3:8b:a3:
d7:24:bd:d7:60:ef:6c:71:17:6d:af:c8:d9:37:58:
ca:fc:59:19:d1:1e:02:24:a3:50:72:a0:09:bd:c7:
18:24:27:c9:a9:1b:3f:34:3e:f7:e9:00:40:c7:3d:
bb:45:96:3a:c0:aa:ee:8c:65:2c:6a:2e:f2:c4:cf:
ce:b9:70:d7:74:1d:fe:d6:f3:4c:b0:86:4f:5c:9f:
4b:f8:f2:27:77:dd:26:2a:b1:10:42:3c:af:36:d1:
35:78:0b:a5:7c:11:77:c6:0a:ba:89:57:b1:c7:f5:
62:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:2A:B4:0B:65:F5:1B:C7:B9:07:5A:05:77:61:1E:43:E6:52:A2:BC
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135322e302f32342d3234203d3e203633393032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.152.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:1e:ad:a7:7d:1c:2f:f4:de:c4:eb:d3:3b:43:4a:bb:74:89:
73:b0:18:05:9f:44:bc:ef:ae:fb:3b:43:ea:4d:a7:79:d2:d0:
5d:5b:7c:98:c6:66:d8:b5:c4:3e:bf:85:5b:26:56:27:13:45:
57:ce:27:77:82:e2:08:d4:fd:87:8a:60:0c:b2:e3:0b:cd:b2:
fd:e3:8d:70:9c:2a:4e:0a:a3:0e:66:92:15:fa:02:e4:c4:24:
a4:19:f6:d0:7a:a2:a9:e4:55:68:54:36:a5:81:1e:2d:fa:3b:
64:2c:3b:f1:5f:09:39:03:e6:91:84:2d:da:e0:d4:ad:eb:f1:
5c:1f:65:2e:28:fe:5d:aa:81:71:ed:f5:81:44:1d:37:fb:d9:
bb:e6:c5:b5:65:99:85:3d:59:7f:bf:32:24:81:0c:37:f0:f1:
66:cd:b4:b8:95:66:6e:c9:a5:91:a9:ea:d6:4f:9d:76:b0:03:
ae:59:15:58:35:15:59:0c:bc:89:7e:a5:c6:d1:a2:79:2f:9e:
12:f0:58:a2:80:b9:a0:f7:53:8b:e4:66:8d:71:6f:fa:6f:96:
7a:65:7f:e3:7f:86:8b:3f:c9:8d:f9:5b:78:e4:b1:38:92:ed:
22:33:6f:4b:c1:ee:75:2b:4a:1e:52:c2:2a:d0:29:be:84:0f:
b1:db:7e:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:51:37 2025 by rpki-client