Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135342e302f32342d3234203d3e203433323839.roa
File: 3138352e3232362e3135342e302f32342d3234203d3e203433323839.roa (raw, json)
Hash identifier: ilJK3hJ3SQ4Ztx7/itvwxvrYKkmin85XKnIaD1rMAsA=
Subject key identifier: C1:48:49:CD:56:52:0C:F9:EC:BD:15:F3:79:E5:F0:94:3E:F7:E0:18
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 2A22EA28F306C89F7218FF9CCC1B337D7456F511
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135342e302f32342d3234203d3e203433323839.roa
Signing time: Sat 06 Jan 2024 09:59:49 +0000
ROA not before: Sat 06 Jan 2024 09:54:49 +0000
ROA not after: Sat 04 Jan 2025 09:59:49 +0000
asID: 43289
IP address blocks: 185.226.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Feb 2024 00:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:22:ea:28:f3:06:c8:9f:72:18:ff:9c:cc:1b:33:7d:74:56:f5:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Jan 6 09:54:49 2024 GMT
Not After : Jan 4 09:59:49 2025 GMT
Subject: CN=C14849CD56520CF9ECBD15F379E5F0943EF7E018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b3:ad:9e:54:b0:e6:2d:d2:4e:91:a8:76:c7:
6a:e7:3a:f1:76:60:bb:75:d3:75:cd:09:20:fc:21:
82:5e:57:7e:2f:f8:e4:f6:9f:a1:1a:f7:fc:3a:89:
b3:78:3e:f0:91:a0:70:65:ef:95:dc:b0:12:5b:1d:
48:06:2f:bf:71:09:a2:0f:56:8e:3c:b0:ae:69:63:
8a:7e:f3:46:46:72:d0:8b:b4:fb:0e:e2:e7:1f:3a:
ae:8f:a2:2d:11:a0:24:ab:8b:97:fb:7a:43:d7:5d:
c8:f0:9d:d1:80:ec:5d:dd:07:c3:81:d9:0b:fd:e1:
4d:21:e4:8a:e0:28:9e:1f:bd:bd:dd:85:de:47:6f:
4e:eb:f9:cf:d4:bb:f1:bc:b3:b6:1c:55:92:8e:59:
42:2e:9e:71:5c:0b:8e:d8:84:d6:99:a4:b1:32:2c:
3b:0e:68:7c:37:7b:91:e7:a3:58:72:ef:93:46:f3:
82:d0:bd:16:4d:17:a0:2c:de:c6:06:88:30:ec:bf:
17:df:c6:36:51:2f:fb:88:4b:04:22:2c:bd:01:5e:
15:23:be:6f:b7:b4:ba:66:f1:85:3e:29:b1:f2:c2:
b5:2d:d8:de:22:81:8d:d3:50:d0:3d:cd:cb:97:a5:
ce:da:ce:02:ec:ec:bc:95:ed:da:a7:e3:c7:ac:20:
56:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:48:49:CD:56:52:0C:F9:EC:BD:15:F3:79:E5:F0:94:3E:F7:E0:18
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135342e302f32342d3234203d3e203433323839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.154.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:f2:ea:11:19:a9:79:e7:86:a4:15:34:39:12:7c:91:02:7b:
af:d1:00:e3:4c:ac:17:0b:52:86:b1:77:4d:4c:e3:87:5d:4b:
dd:cb:9b:12:5d:71:45:26:85:a7:17:79:3c:0d:0b:20:25:f2:
50:fe:76:8b:cf:f5:27:a3:ff:1c:bd:e1:a2:27:c5:03:91:c6:
5e:19:97:21:0f:9d:7c:3e:4c:4d:f9:1a:03:ce:9f:4f:08:38:
60:e4:1a:b5:91:7e:fb:34:8e:63:01:af:8d:2d:e1:4c:49:aa:
a4:0b:6b:d2:dc:1f:43:7d:bb:8a:00:3a:77:25:e5:3d:c8:5a:
e5:fd:3a:52:78:44:5e:c2:56:3c:82:d5:06:aa:03:5a:51:5c:
0f:e2:f4:ad:09:88:c7:b3:08:9d:78:ab:0c:f1:e8:7d:95:90:
2e:f9:b2:c9:ea:a8:c0:4d:5c:f5:1e:e0:f2:5b:bd:81:5b:b8:
3a:15:1b:2f:a9:8e:14:aa:ef:28:b9:33:e9:e9:dc:ad:c6:d3:
1e:85:b7:b5:85:af:0c:1f:39:1f:6d:24:79:f3:28:e9:ec:19:
4c:f2:d9:84:2a:b0:7a:05:c1:54:f4:10:1b:fb:51:ac:a6:f5:
33:df:45:f1:1b:4e:23:55:44:e2:c1:fa:da:77:e3:f1:05:b7:
4d:4d:1f:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 6 03:05:39 2024 by rpki-client on console-fra.rpki-client.org