Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ebc533f-7f31-4bd6-874d-e736e9fde5bd/0/3138352e33312e3230322e302f32342d3234203d3e203630313137.roa
File: 3138352e33312e3230322e302f32342d3234203d3e203630313137.roa (raw, json)
Hash identifier: RoECIwKdHaXCXxjG3t01I5qwUnO8ieUgi64vU6KZMJo=
Subject key identifier: 58:84:25:24:D5:34:E2:1D:C3:B3:BD:FB:30:33:4C:16:CE:81:66:25
Certificate issuer: /CN=6464045da5bed0687d15cbda67a04eb87a8fb03e
Certificate serial: 3824F20DD28A2A4E80457AFE059F3C81CDA32C80
Authority key identifier: 64:64:04:5D:A5:BE:D0:68:7D:15:CB:DA:67:A0:4E:B8:7A:8F:B0:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZGQEXaW-0Gh9FcvaZ6BOuHqPsD4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ebc533f-7f31-4bd6-874d-e736e9fde5bd/0/3138352e33312e3230322e302f32342d3234203d3e203630313137.roa
Signing time: Fri 02 Aug 2024 11:50:06 +0000
ROA not before: Fri 02 Aug 2024 11:45:06 +0000
ROA not after: Fri 01 Aug 2025 11:50:06 +0000
asID: 60117
IP address blocks: 185.31.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Aug 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:24:f2:0d:d2:8a:2a:4e:80:45:7a:fe:05:9f:3c:81:cd:a3:2c:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6464045da5bed0687d15cbda67a04eb87a8fb03e
Validity
Not Before: Aug 2 11:45:06 2024 GMT
Not After : Aug 1 11:50:06 2025 GMT
Subject: CN=58842524D534E21DC3B3BDFB30334C16CE816625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cf:83:9a:c4:d4:0f:15:10:9c:e2:bc:36:45:
6b:56:4d:0c:1e:e0:68:48:f5:61:27:ac:e8:75:5d:
16:3a:f8:5c:67:73:54:33:00:c8:69:4b:c7:9c:9d:
64:e7:88:33:1c:74:d8:e9:35:7c:f8:86:c0:f9:a3:
e6:20:b2:d9:36:69:32:92:71:2f:55:f1:d4:24:2c:
f6:18:c0:ef:5e:ef:f8:22:ce:1e:a2:07:9a:0d:f5:
55:73:1b:73:c6:2d:94:4b:ac:93:be:e8:0e:8c:dc:
a6:15:79:54:8b:34:e0:5e:df:85:c7:8b:24:61:cf:
5c:d1:33:84:c8:2e:8f:13:c3:ca:c3:48:b9:4d:1d:
2f:a9:3e:fe:33:93:12:aa:96:82:3a:30:c5:bb:99:
85:9a:a8:54:b7:ae:64:7c:09:94:46:4b:81:de:6f:
fd:47:16:24:1c:3b:2a:7a:45:e4:05:09:5a:3a:de:
6f:9e:77:40:d7:45:11:90:f5:7d:c6:39:30:e1:d9:
96:b6:21:4b:aa:20:14:86:72:80:c0:e0:54:42:4e:
0e:66:2a:3d:b1:99:39:60:d2:98:e9:81:73:0f:f9:
00:2f:1e:17:16:27:8c:55:ab:4f:59:ee:bf:3d:93:
13:c6:33:7a:1f:b2:e4:ad:aa:c3:ba:93:c3:d3:a8:
5e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:84:25:24:D5:34:E2:1D:C3:B3:BD:FB:30:33:4C:16:CE:81:66:25
X509v3 Authority Key Identifier:
keyid:64:64:04:5D:A5:BE:D0:68:7D:15:CB:DA:67:A0:4E:B8:7A:8F:B0:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ebc533f-7f31-4bd6-874d-e736e9fde5bd/0/6464045DA5BED0687D15CBDA67A04EB87A8FB03E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZGQEXaW-0Gh9FcvaZ6BOuHqPsD4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ebc533f-7f31-4bd6-874d-e736e9fde5bd/0/3138352e33312e3230322e302f32342d3234203d3e203630313137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.31.202.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:8b:50:49:d4:3c:21:14:95:16:de:f3:c4:50:3e:ab:7d:c2:
e9:a1:36:54:ab:2e:ff:72:c0:18:ce:fc:fc:c0:f8:74:bc:2f:
12:4d:ba:3c:e4:7a:bb:b4:49:dc:61:b9:22:50:85:84:a5:c4:
71:d5:62:7d:55:6a:43:69:1f:6a:89:0e:eb:da:00:b7:2a:3b:
c0:bd:ec:4c:a7:29:8a:28:ea:67:38:f1:f4:f2:49:89:47:ed:
d9:32:92:93:3e:e7:84:b5:48:6c:87:47:b1:f6:9e:b9:c7:0b:
a2:3a:5b:ba:22:6e:78:3c:1c:34:63:08:4e:f8:d3:ea:2c:47:
c6:45:3f:fc:bc:d3:8a:11:79:a2:90:5e:3e:bb:9a:98:48:28:
ee:36:d5:f2:3e:b8:11:95:e7:db:7f:c7:12:33:cd:fa:94:eb:
7f:b2:aa:56:ff:c7:2b:1e:eb:c2:de:1f:4b:cd:7b:87:e7:c7:
59:0d:79:c1:0d:77:56:08:9b:7b:e8:1d:c9:50:49:18:ab:5c:
b4:91:04:72:6e:e3:f1:cb:87:6d:bd:0f:72:b5:80:a8:c3:05:
15:c0:e4:3c:69:1f:d8:14:56:91:d2:2f:92:07:67:d6:f0:3a:
52:7c:23:c2:92:39:e2:a0:b1:d6:05:25:6c:74:b2:b9:a5:a2:
ef:3b:48:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:33:47 2025 by rpki-client