Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135342e302f32342d3234203d3e20383334.roa
File: 3138352e3232362e3135342e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: y7Su0locoy9/baWLwZMAfYlBNRs2bJ6qSaZNswWKnDU=
Subject key identifier: AA:E9:D6:03:08:2D:6A:C9:BD:CB:F0:03:8B:0B:01:CD:DF:0B:75:9A
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 3AEE71623219A237B067DA70963CC12B8F8B7B61
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135342e302f32342d3234203d3e20383334.roa
Signing time: Tue 06 Feb 2024 00:00:04 +0000
ROA not before: Mon 05 Feb 2024 23:55:04 +0000
ROA not after: Tue 04 Feb 2025 00:00:04 +0000
asID: 834
IP address blocks: 185.226.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Feb 2024 07:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:ee:71:62:32:19:a2:37:b0:67:da:70:96:3c:c1:2b:8f:8b:7b:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Feb 5 23:55:04 2024 GMT
Not After : Feb 4 00:00:04 2025 GMT
Subject: CN=AAE9D603082D6AC9BDCBF0038B0B01CDDF0B759A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:06:c6:7e:11:af:e1:eb:fb:30:54:a1:19:61:
9c:1e:6a:62:6a:f4:93:40:46:83:5f:11:e5:f4:a7:
0b:96:a2:4e:8b:c4:50:22:64:d1:fc:a3:a2:d7:0f:
d4:0e:50:65:82:8c:99:37:6a:42:25:1e:64:28:fd:
8c:b4:64:4b:82:ae:d6:36:a1:a4:07:d2:f7:50:6a:
45:cd:19:56:e9:43:a5:14:27:58:a6:4c:43:ad:72:
ae:50:f7:6a:de:30:7b:bc:18:15:c2:58:56:ce:76:
35:ce:2f:de:f2:16:86:5a:b6:7b:c8:51:de:1d:c1:
cd:06:9f:56:61:38:10:b5:75:86:a8:ac:06:14:b7:
c1:2d:4d:66:b2:e0:95:04:0e:a3:fd:62:ba:df:ef:
a2:e4:ca:ad:8e:cb:b1:92:fd:06:49:48:2f:cb:73:
35:5d:9d:33:c2:0b:b0:d7:c6:6f:70:88:cd:eb:06:
2a:f6:b4:a6:34:bb:59:36:f7:05:f8:42:16:45:ae:
16:9f:09:0c:ea:b3:d5:b1:c2:83:28:28:48:01:ff:
fb:17:60:45:fb:51:f6:6e:a3:1e:5d:0e:8f:8e:3d:
ec:af:b9:a5:af:9b:b2:0a:53:e4:7d:b3:71:e7:be:
03:b2:2e:ca:b4:ca:65:f3:3c:93:d6:fa:34:39:60:
99:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E9:D6:03:08:2D:6A:C9:BD:CB:F0:03:8B:0B:01:CD:DF:0B:75:9A
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135342e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.154.0/24
Signature Algorithm: sha256WithRSAEncryption
68:d2:66:c1:a9:cc:58:36:ef:5a:b3:f9:01:65:77:4f:3f:3a:
17:cf:fb:5c:d4:f0:1b:22:c9:3a:1e:bb:8d:64:d0:1f:ec:39:
16:85:c8:b6:96:02:eb:e8:4b:c1:7f:d3:0f:9f:47:4d:28:e4:
09:4d:98:54:d8:55:fe:d1:98:a2:d7:38:f5:d2:63:b9:54:8e:
6b:ed:c1:45:d9:49:a1:0e:68:70:60:48:3c:3c:89:8d:d3:7d:
19:1b:67:35:5b:d2:49:29:ec:c6:f3:92:43:58:de:f9:68:10:
e1:2d:e7:10:33:e4:65:c5:b8:59:71:bd:14:93:18:b8:fa:e7:
37:d2:18:86:b0:bd:f2:9f:5a:62:52:92:ae:81:bb:82:54:f0:
e0:3a:13:8d:bc:f3:0b:c1:9d:01:58:aa:05:08:37:3c:fc:80:
2e:38:51:84:2d:67:12:23:4a:39:d6:2d:16:c1:a9:47:fe:e1:
f7:7c:f0:9b:be:97:4b:f8:1e:d8:cd:b3:70:86:12:95:31:d7:
f9:5b:5c:3b:6e:ec:1d:14:70:ea:65:bf:1d:94:4c:32:e4:9c:
9c:cd:1a:15:85:1b:a1:b1:a6:d5:03:da:27:e0:f1:05:3f:fe:
fd:f7:7f:bb:f8:fc:d0:6b:df:52:36:ec:ed:d6:36:84:a6:51:
81:0e:9b:a3
-----BEGIN CERTIFICATE-----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Generated at Mon Feb 26 11:39:51 2024 by rpki-client on console-fra.rpki-client.org