Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135322e302f32342d3234203d3e20383334.roa
File: 3138352e3232362e3135322e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: oUARrmGgxqrzqINJjrIVSOkWro84M1zgotO2lHiXovM=
Subject key identifier: 16:F3:67:AA:73:13:2A:97:73:52:33:4E:90:06:17:FE:53:76:58:86
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 0D1293AC6CBAE47713835FD6C43A323360FE5935
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135322e302f32342d3234203d3e20383334.roa
Signing time: Wed 18 Sep 2024 00:03:39 +0000
ROA not before: Tue 17 Sep 2024 23:58:39 +0000
ROA not after: Wed 17 Sep 2025 00:03:39 +0000
asID: 834
IP address blocks: 185.226.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Sep 2024 14:46:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:12:93:ac:6c:ba:e4:77:13:83:5f:d6:c4:3a:32:33:60:fe:59:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Sep 17 23:58:39 2024 GMT
Not After : Sep 17 00:03:39 2025 GMT
Subject: CN=16F367AA73132A977352334E900617FE53765886
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ce:74:8c:84:9f:c1:8a:62:23:f1:d4:82:f2:
e5:30:4e:6a:db:5b:29:75:ce:f1:d1:63:3e:c5:9b:
2b:f6:46:4e:da:9f:a2:50:d9:88:23:ce:f0:f6:ef:
c4:4c:ef:7b:94:96:eb:d2:90:d2:34:ae:64:c8:7e:
39:10:42:cc:a6:10:45:0b:46:c8:75:86:02:fd:ab:
00:1c:71:26:49:b6:6f:b1:34:90:73:65:ec:29:a8:
89:5b:1a:04:7e:88:20:1c:75:b5:8e:24:b4:d2:5c:
16:38:fd:46:99:f9:1c:5c:ff:9c:45:d3:c9:c1:cf:
86:f7:df:57:a4:62:2d:34:a2:0b:96:15:1e:16:9c:
ef:37:6d:61:5c:0c:bf:1e:d7:98:e9:22:f6:ae:f9:
05:a4:35:aa:fe:a3:85:3f:4f:38:4f:65:79:cd:77:
ad:de:66:7b:c1:7a:f6:f9:df:bc:89:aa:9b:d9:8e:
2b:7c:32:e7:f3:90:f6:7f:1b:97:fd:1a:4d:ae:d9:
f0:b9:42:f0:2d:09:23:00:ef:a1:3c:46:9c:3d:72:
d9:9e:97:4e:7f:94:56:cc:ee:77:12:86:98:00:0e:
e6:07:77:0b:d8:98:a7:20:9a:a7:97:51:02:f9:24:
df:d4:07:a1:1a:5b:7b:12:25:fc:28:c5:a3:5b:6b:
4a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:F3:67:AA:73:13:2A:97:73:52:33:4E:90:06:17:FE:53:76:58:86
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135322e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.152.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:7c:3c:e6:db:6d:d5:9a:7e:44:cc:8d:51:99:8f:a2:eb:f3:
5f:cc:6a:a0:c5:35:71:ba:7b:1a:14:a1:6e:a0:83:fc:4d:78:
2f:74:d4:90:74:1a:96:08:77:d4:6a:73:1c:9e:6a:8e:b6:c5:
c3:37:c4:0b:ed:3a:69:9b:d1:fe:90:3f:0d:35:7f:1c:89:b1:
f6:2e:1f:32:3d:f4:8a:df:bd:fe:ed:f9:59:d0:14:5b:f4:da:
2d:c9:94:0e:9d:8a:51:06:e3:45:0c:3a:d2:fa:c0:cb:f0:ea:
1d:36:b4:ed:93:10:b8:88:a0:54:74:cb:c4:60:02:42:97:87:
82:89:fb:c6:52:b2:fb:84:8f:8e:a8:a7:9c:92:dc:18:32:f3:
65:01:d7:13:0a:17:76:db:af:d8:f7:0b:44:a1:bf:a1:77:f7:
6c:31:21:f8:64:f7:93:43:73:0c:12:d9:0e:24:0b:de:56:e1:
c8:d3:dc:f8:14:dc:7b:78:e5:5d:ad:be:f0:6d:6e:1a:6e:8d:
5b:8d:da:7b:bf:75:69:9f:81:07:da:f0:d3:19:b1:07:72:4f:
12:97:5f:ed:39:cb:0f:9e:98:8e:38:c0:e9:6e:20:7a:15:62:
28:67:52:f3:f1:77:a6:67:4f:25:c7:d2:70:45:1d:e7:03:a2:
b3:b0:4b:83
-----BEGIN CERTIFICATE-----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Generated at Thu Sep 19 20:31:48 2024 by rpki-client on console-ams.rpki-client.org