Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135322e302f32342d3234203d3e20383334.roa
File: 3138352e3232362e3135322e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: jhR5KKrB8RpVNtd9EZed8/3LNlldH4a09xN+Ue8gKOs=
Subject key identifier: 7E:49:0D:70:F5:B7:9B:DE:73:B6:BB:06:24:7C:68:5D:6C:CA:B1:AF
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 4C1512FB8ED873AE7FD80EE9F3333858A50F73B3
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135322e302f32342d3234203d3e20383334.roa
Signing time: Tue 09 Apr 2024 00:02:45 +0000
ROA not before: Mon 08 Apr 2024 23:57:45 +0000
ROA not after: Tue 08 Apr 2025 00:02:45 +0000
asID: 834
IP address blocks: 185.226.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 10:06:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:15:12:fb:8e:d8:73:ae:7f:d8:0e:e9:f3:33:38:58:a5:0f:73:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Apr 8 23:57:45 2024 GMT
Not After : Apr 8 00:02:45 2025 GMT
Subject: CN=7E490D70F5B79BDE73B6BB06247C685D6CCAB1AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8d:e2:58:bc:dd:5f:ce:51:63:85:b9:b3:2a:
26:ed:ff:99:bc:42:e1:ae:db:1c:46:fb:bb:9d:70:
32:8d:64:50:a5:d3:ba:3d:dc:b5:97:72:ab:d6:1c:
3e:28:7e:5b:61:71:cc:f3:32:83:fb:bd:2b:fe:24:
19:96:60:07:93:63:9b:d8:a9:c3:56:97:75:d8:95:
15:ba:8a:53:33:39:39:83:36:32:dc:bf:71:90:22:
cf:52:f6:bb:6a:fe:a4:7e:40:7e:c7:0a:fd:c9:d4:
d4:17:3c:7a:14:4e:8c:fd:53:41:bf:58:b9:0d:3e:
3a:0e:5f:94:13:bf:c3:e9:72:71:39:60:d1:d5:48:
85:15:2d:15:07:57:eb:ad:6f:53:72:c2:34:0c:9b:
26:e9:06:17:99:ea:49:cd:ab:df:28:c6:68:e3:26:
6f:56:2c:ed:22:4f:e3:21:9d:26:f5:d2:6d:42:c9:
da:e0:a2:91:68:fc:d6:43:db:71:29:c2:74:09:80:
41:23:cc:b3:ab:f8:05:73:5b:e1:39:06:5d:8a:df:
9b:2a:da:e7:07:8d:b0:04:df:76:0a:90:56:02:f3:
14:10:f4:ba:0b:fb:dc:a9:4f:ca:42:dd:fb:e1:07:
ea:86:2a:50:75:ad:ab:64:9d:7b:2b:51:24:a0:71:
cd:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:49:0D:70:F5:B7:9B:DE:73:B6:BB:06:24:7C:68:5D:6C:CA:B1:AF
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135322e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.152.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:94:fa:57:4c:28:d9:d1:64:5d:87:97:67:a3:fe:a4:fd:ed:
cb:03:ba:d2:2c:15:a9:37:dd:a7:ce:12:8a:3d:f8:32:6f:57:
7c:bc:d2:02:dd:c8:17:02:92:c5:05:ad:a0:55:58:8c:be:1e:
cc:50:53:dd:d6:68:c2:9a:8c:27:c1:88:1b:4f:51:ea:0e:f6:
51:7f:38:ba:40:56:49:9c:26:e7:0e:8f:05:53:80:1f:26:6a:
0d:30:cf:63:91:f9:3d:e8:5e:9e:cd:05:d7:9e:d1:f9:5b:bd:
33:54:65:ef:1a:10:a9:23:fb:9b:d3:3f:2b:cc:15:8e:7f:e5:
3c:b7:7f:74:d0:2c:d9:b0:a3:3b:c5:54:90:d0:ce:1c:01:74:
c8:63:41:98:be:34:38:cd:2b:fb:89:23:0f:90:70:c2:be:42:
f8:02:76:8d:2f:a6:39:77:ff:bb:0a:ff:5e:38:29:d4:0c:d9:
c4:f7:74:2a:de:00:b2:05:e2:27:0f:be:dd:f9:c5:3f:f5:b4:
20:d5:95:32:9e:ef:6f:9a:44:2a:d6:57:dc:ef:13:0b:17:02:
38:b9:12:83:f7:cb:25:9f:55:ba:c0:49:c2:2e:37:7b:ae:43:
25:f6:cc:7a:d3:1d:7a:e2:eb:f0:59:24:c1:d3:fd:41:69:1b:
84:53:d4:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 9 15:26:16 2024 by rpki-client on console-ams.rpki-client.org