Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135342e302f32342d3234203d3e20383334.roa
File: 3138352e3232362e3135342e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: t9Nr8VpZouAE7Ucg0MVs57ijSZR6YRMsDvqyuzWpLqE=
Subject key identifier: 98:6D:83:86:0F:A8:18:3B:4A:25:5B:10:D9:66:86:63:E5:70:36:48
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 0F6B717D4C2EC17522A682C92757DB04A6DF457C
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135342e302f32342d3234203d3e20383334.roa
Signing time: Sat 28 Sep 2024 00:04:35 +0000
ROA not before: Fri 27 Sep 2024 23:59:35 +0000
ROA not after: Sat 27 Sep 2025 00:04:35 +0000
asID: 834
IP address blocks: 185.226.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 29 Sep 2024 10:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:6b:71:7d:4c:2e:c1:75:22:a6:82:c9:27:57:db:04:a6:df:45:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Sep 27 23:59:35 2024 GMT
Not After : Sep 27 00:04:35 2025 GMT
Subject: CN=986D83860FA8183B4A255B10D9668663E5703648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:80:31:c5:31:89:d9:a5:7c:ad:96:ef:fc:93:
4a:1b:11:df:00:c6:89:cc:09:4e:b6:d6:06:4b:81:
41:c8:9a:15:a4:03:fe:95:bc:77:fe:5f:c1:c6:de:
01:7e:de:ab:c2:9c:f4:25:b8:c6:1a:9b:f1:15:6e:
ac:0d:61:72:5d:39:7d:3a:17:72:84:0e:82:40:54:
b9:5f:f5:75:b3:26:f4:38:40:04:c7:83:0a:60:a5:
28:e9:f5:2b:9e:2a:96:ef:d6:46:17:28:07:a9:6a:
b2:58:fc:fc:31:45:6a:0a:17:d5:03:71:ef:75:28:
ef:b6:dd:24:f9:3b:3f:cb:e1:47:91:52:75:51:ab:
60:13:39:71:be:11:d1:e0:3b:4a:d1:36:69:47:f0:
07:d1:bc:0a:e6:85:f5:7b:64:05:6c:8b:89:6b:54:
99:ee:6c:0a:6c:2b:a4:81:9e:65:2e:d4:55:44:fd:
e2:39:53:c6:ff:76:9a:24:0d:d9:13:ac:5f:6c:53:
c8:1e:bb:eb:58:d5:e8:b0:fa:0f:bb:72:f9:bb:0f:
0d:19:db:56:1c:c0:17:94:1f:3b:78:eb:41:f5:f2:
d1:1b:98:66:0f:35:40:9d:5d:33:a3:c6:57:1a:cd:
30:93:18:e6:c4:16:0e:a0:a7:1b:e6:79:5d:b5:d8:
71:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:6D:83:86:0F:A8:18:3B:4A:25:5B:10:D9:66:86:63:E5:70:36:48
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135342e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.154.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:4e:51:c1:f8:54:02:1e:e7:45:66:15:b4:1a:5b:b1:f4:52:
ba:55:7b:84:d3:90:fe:4a:1e:e8:bb:ec:29:9e:82:b9:80:04:
51:3b:3a:47:d5:24:12:23:58:18:79:3b:5e:6c:8e:22:b3:8f:
9d:6e:0e:91:91:68:84:a3:5a:93:ca:17:0c:88:a1:9b:a1:b9:
69:b9:25:90:ad:bc:5d:fc:43:08:48:3e:a2:4e:68:c5:54:41:
8d:ec:88:e4:5e:03:c0:76:7a:e9:04:e1:05:61:15:22:cb:7e:
ab:a0:66:b5:24:4f:05:f6:f6:b2:b0:3f:cb:99:a8:8c:63:17:
16:8c:c0:d0:b7:7d:28:4e:28:7f:5c:bc:7b:62:8c:23:64:d9:
06:f3:ce:2b:3a:05:32:0f:43:da:34:9c:4c:7b:2d:df:ac:57:
c0:26:c6:ba:df:cc:7a:f0:17:89:b7:42:c6:c4:3f:0c:64:f4:
0c:33:83:92:c7:3e:f9:9f:d0:44:ac:0b:f8:ee:a8:89:7c:ec:
a0:06:88:61:88:92:75:df:69:0a:2b:21:84:0a:0d:57:67:d6:
f4:8e:5f:52:b9:17:bf:36:c1:90:42:03:26:ee:57:4c:8f:58:
31:98:be:be:a6:50:d5:be:11:13:99:21:ca:77:e3:59:ef:75:
1a:21:b1:37
-----BEGIN CERTIFICATE-----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Generated at Sun Sep 29 12:09:38 2024 by rpki-client on console-fra.rpki-client.org