Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135332e302f32342d3234203d3e20383334.roa
File: 3138352e3232362e3135332e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: gttA2cSXLZ2KpZ4c2XXI7LeDBYKl+gupg+KUr2pjvS4=
Subject key identifier: A3:4A:EC:25:C9:5E:B6:5B:D5:BF:A5:9B:81:EB:E2:B8:0D:D2:2E:93
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 5BDF44BF9557A353D5F2E8C5D6E2CC575E213CA5
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135332e302f32342d3234203d3e20383334.roa
Signing time: Sun 14 Apr 2024 08:06:45 +0000
ROA not before: Sun 14 Apr 2024 08:01:45 +0000
ROA not after: Sun 13 Apr 2025 08:06:45 +0000
asID: 834
IP address blocks: 185.226.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Apr 2024 08:13:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:df:44:bf:95:57:a3:53:d5:f2:e8:c5:d6:e2:cc:57:5e:21:3c:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Apr 14 08:01:45 2024 GMT
Not After : Apr 13 08:06:45 2025 GMT
Subject: CN=A34AEC25C95EB65BD5BFA59B81EBE2B80DD22E93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:3c:18:69:ab:80:d1:b8:59:4e:0d:fc:56:b6:
0b:b8:15:c5:21:e9:59:40:d2:d5:d1:19:80:d6:7c:
4e:1d:c2:39:93:89:70:cb:40:c5:79:e9:94:45:b3:
2b:35:1b:9c:e7:2e:cb:a7:f4:a4:a3:d8:33:6a:08:
97:27:20:5b:45:e3:fe:66:06:6f:0b:f0:54:87:3c:
de:93:7a:24:c0:51:89:fb:ae:a1:2c:30:86:ce:db:
46:17:27:a6:b0:93:d6:fd:77:94:c6:0f:89:6e:16:
e9:d2:20:fb:7f:99:e6:da:16:dc:5b:d2:0d:c0:c3:
31:e1:68:fd:8c:05:c5:1a:07:d1:74:23:cd:f6:a7:
cc:db:36:19:b9:45:e3:f7:c6:12:bc:d5:de:2b:67:
f3:ea:58:15:f7:b2:d4:93:70:12:25:b3:94:a4:05:
a8:a5:9b:21:a0:6f:3a:0f:a0:77:4c:48:d8:3e:b0:
08:fe:57:66:45:9f:1e:ed:b2:fb:03:cd:a8:3c:b4:
b5:21:59:d3:a3:39:be:76:a8:e9:c1:a1:85:8f:89:
eb:ac:c2:3a:da:47:34:ba:09:32:e9:f6:e4:5d:df:
32:96:e3:56:39:fb:e6:53:1e:b2:13:75:49:5c:bf:
9c:02:d6:c4:78:03:3f:e1:54:39:17:1a:6f:16:38:
b4:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:4A:EC:25:C9:5E:B6:5B:D5:BF:A5:9B:81:EB:E2:B8:0D:D2:2E:93
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135332e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.153.0/24
Signature Algorithm: sha256WithRSAEncryption
41:a5:18:1d:01:46:8a:e0:aa:3b:db:f9:96:b9:9f:e2:a4:b0:
f0:5f:82:55:89:03:e3:14:37:0d:dd:79:60:42:c0:04:5c:28:
e2:c7:ae:ed:be:71:59:5b:4e:1b:36:61:ea:20:0c:99:d7:8c:
1b:0c:a0:27:67:54:9c:53:1d:b1:5c:52:54:3c:aa:b5:56:1d:
f9:02:3f:73:a3:77:30:af:4e:e4:48:b3:ff:70:e1:e8:bc:6b:
a1:47:27:57:fd:c2:dc:0e:c5:60:bf:f9:b4:9d:cd:c9:cc:e1:
44:d4:eb:40:8e:89:eb:b0:42:b5:12:a2:b3:cc:3d:0a:3b:c0:
61:16:7e:37:9d:44:44:c5:98:5e:4d:25:45:25:f7:4c:75:c9:
10:7c:ec:c7:a2:ef:94:2b:ef:3a:d1:62:dc:ed:46:90:c5:be:
9a:e8:96:eb:cb:cc:00:1a:ed:38:42:f6:83:c4:19:6b:ea:34:
16:d7:03:75:6d:69:13:f1:50:16:b8:6e:b3:cc:5d:0c:f6:e5:
ab:21:da:26:32:cb:fc:4a:99:6c:0e:f8:59:f2:5a:20:25:58:
30:68:7c:0c:51:63:51:3d:72:0b:03:c8:5b:ea:16:0d:b8:56:
3e:ab:5e:07:8e:88:b3:f1:72:1d:fa:f5:37:73:1d:c3:47:9a:
a4:3a:5b:d4
-----BEGIN CERTIFICATE-----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Generated at Mon Apr 15 11:25:19 2024 by rpki-client on console-fra.rpki-client.org