Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ebc533f-7f31-4bd6-874d-e736e9fde5bd/0/3138352e33312e3230322e302f32342d3234203d3e20383334.roa
File: 3138352e33312e3230322e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: y9BkfFrz24Ih08UvmpGNVSR7CA2IYpX/jFdTnsJKzJ8=
Subject key identifier: CB:ED:BF:1C:9B:87:62:55:56:EC:62:36:4E:B0:0A:E0:38:66:40:27
Certificate issuer: /CN=6464045da5bed0687d15cbda67a04eb87a8fb03e
Certificate serial: 60E39F19F9AACB2B7FC1A47BC005DED8F538CC58
Authority key identifier: 64:64:04:5D:A5:BE:D0:68:7D:15:CB:DA:67:A0:4E:B8:7A:8F:B0:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZGQEXaW-0Gh9FcvaZ6BOuHqPsD4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ebc533f-7f31-4bd6-874d-e736e9fde5bd/0/3138352e33312e3230322e302f32342d3234203d3e20383334.roa
Signing time: Thu 08 Aug 2024 17:01:46 +0000
ROA not before: Thu 08 Aug 2024 16:56:46 +0000
ROA not after: Thu 07 Aug 2025 17:01:46 +0000
asID: 834
IP address blocks: 185.31.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Aug 2024 15:57:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:e3:9f:19:f9:aa:cb:2b:7f:c1:a4:7b:c0:05:de:d8:f5:38:cc:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6464045da5bed0687d15cbda67a04eb87a8fb03e
Validity
Not Before: Aug 8 16:56:46 2024 GMT
Not After : Aug 7 17:01:46 2025 GMT
Subject: CN=CBEDBF1C9B87625556EC62364EB00AE038664027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f0:b3:20:fc:71:e3:d7:5e:d8:bf:7a:b8:a9:
92:89:86:8f:02:a4:53:22:2f:50:9d:7b:1b:f1:94:
d7:4f:e1:d4:35:dc:4c:cb:a4:da:2f:c8:ed:e9:17:
52:b5:dc:df:2d:01:c5:af:49:08:eb:f1:df:af:eb:
d5:48:81:de:2d:17:d4:0b:c8:3e:fb:32:b4:bc:85:
00:2c:de:b7:9c:75:e8:ce:42:05:50:d2:32:36:f3:
71:57:d1:e3:8b:20:5b:30:76:dd:0c:aa:ba:29:f5:
dd:b6:78:a9:54:5e:c2:f9:62:cf:b1:ae:e8:1b:70:
64:81:11:70:af:81:27:f9:00:8f:97:38:af:31:2d:
f3:de:a2:5c:fc:5d:c8:fe:b1:59:81:6e:d3:97:49:
f9:21:da:a8:83:8b:17:3c:b6:f2:fe:0d:0a:f6:2d:
5d:22:eb:42:24:78:e2:a4:a8:55:a5:c7:df:73:0d:
a2:ff:aa:5a:6f:24:8c:88:c2:d7:22:4d:bf:f1:7c:
e8:b4:68:1b:78:c4:46:b4:e0:9d:b6:0d:90:ca:fa:
36:2f:e9:04:04:7f:a5:de:50:8a:5f:82:db:76:2f:
4d:c3:05:e3:b7:c9:bb:b9:e9:ef:78:fa:54:54:bb:
6f:19:b3:27:7e:f4:48:46:ad:39:ad:eb:f9:52:a6:
f2:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:ED:BF:1C:9B:87:62:55:56:EC:62:36:4E:B0:0A:E0:38:66:40:27
X509v3 Authority Key Identifier:
keyid:64:64:04:5D:A5:BE:D0:68:7D:15:CB:DA:67:A0:4E:B8:7A:8F:B0:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ebc533f-7f31-4bd6-874d-e736e9fde5bd/0/6464045DA5BED0687D15CBDA67A04EB87A8FB03E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZGQEXaW-0Gh9FcvaZ6BOuHqPsD4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ebc533f-7f31-4bd6-874d-e736e9fde5bd/0/3138352e33312e3230322e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.31.202.0/24
Signature Algorithm: sha256WithRSAEncryption
02:58:74:db:2f:20:a9:65:f0:42:1e:ab:b7:61:2a:4a:91:1d:
0b:00:60:85:01:1b:80:79:8a:89:b7:dc:c5:ee:7c:67:df:c6:
fc:1b:7b:9e:6b:fe:73:f8:ad:a5:8f:8b:27:94:41:f3:7d:ac:
fd:a5:d3:3b:90:d8:59:31:28:3e:5c:52:11:2c:2c:e7:4f:2b:
da:33:fb:95:82:03:51:0e:83:4b:26:e8:ac:e3:31:34:2f:d2:
59:f8:5e:72:b0:3b:3b:01:59:69:58:e8:6d:f5:86:bb:3d:87:
cb:ad:27:6d:3b:90:b0:87:46:5a:fc:3f:86:2e:bb:ad:df:65:
85:ce:5a:b7:e0:dd:47:49:95:43:b5:12:d3:5c:a5:9d:87:03:
e7:e8:d1:7d:56:54:c7:4a:4d:c1:d9:d6:c6:84:f6:30:31:18:
d7:ff:b7:65:f5:ff:59:9e:59:4e:f3:9d:35:0d:88:d1:fa:a0:
86:d1:94:71:f9:be:15:4c:1c:ab:06:b7:36:56:95:1e:1e:5f:
da:30:17:17:7c:81:68:fe:5e:f6:cd:c2:b5:65:76:4c:23:bf:
e7:77:d8:ce:b1:a4:b9:a1:43:e1:09:af:99:73:89:a1:8a:b1:
21:e3:ce:b4:8b:0b:db:fd:9f:96:06:7d:58:3e:b2:6b:ac:b8:
45:5b:3f:96
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUYOOfGfmqyyt/waR7wAXe2PU4zFgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjQ2NDA0NWRhNWJlZDA2ODdkMTVjYmRhNjdhMDRlYjg3
YThmYjAzZTAeFw0yNDA4MDgxNjU2NDZaFw0yNTA4MDcxNzAxNDZaMDMxMTAvBgNV
BAMTKENCRURCRjFDOUI4NzYyNTU1NkVDNjIzNjRFQjAwQUUwMzg2NjQwMjcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw8LMg/HHj117Yv3q4qZKJho8C
pFMiL1CdexvxlNdP4dQ13EzLpNovyO3pF1K13N8tAcWvSQjr8d+v69VIgd4tF9QL
yD77MrS8hQAs3recdejOQgVQ0jI283FX0eOLIFswdt0Mqrop9d22eKlUXsL5Ys+x
rugbcGSBEXCvgSf5AI+XOK8xLfPeolz8Xcj+sVmBbtOXSfkh2qiDixc8tvL+DQr2
LV0i60IkeOKkqFWlx99zDaL/qlpvJIyIwtciTb/xfOi0aBt4xEa04J22DZDK+jYv
6QQEf6XeUIpfgtt2L03DBeO3ybu56e94+lRUu28Zsyd+9EhGrTmt6/lSpvLTAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUy+2/HJuHYlVW7GI2TrAK4DhmQCcwHwYDVR0j
BBgwFoAUZGQEXaW+0Gh9FcvaZ6BOuHqPsD4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2ViYzUzM2YtN2YzMS00YmQ2LTg3NGQtZTczNmU5ZmRl
NWJkLzAvNjQ2NDA0NURBNUJFRDA2ODdEMTVDQkRBNjdBMDRFQjg3QThGQjAzRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1pHUUVYYVctMEdoOUZjdmFaNkJPdUhx
UHNENC5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvN2ViYzUzM2Yt
N2YzMS00YmQ2LTg3NGQtZTczNmU5ZmRlNWJkLzAvMzEzODM1MmUzMzMxMmUzMjMw
MzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzODMzMzQucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC5H8ow
DQYJKoZIhvcNAQELBQADggEBAAJYdNsvIKll8EIeq7dhKkqRHQsAYIUBG4B5iom3
3MXufGffxvwbe55r/nP4raWPiyeUQfN9rP2l0zuQ2FkxKD5cUhEsLOdPK9oz+5WC
A1EOg0sm6KzjMTQv0ln4XnKwOzsBWWlY6G31hrs9h8utJ207kLCHRlr8P4Yuu63f
ZYXOWrfg3UdJlUO1EtNcpZ2HA+fo0X1WVMdKTcHZ1saE9jAxGNf/t2X1/1meWU7z
nTUNiNH6oIbRlHH5vhVMHKsGtzZWlR4eX9owFxd8gWj+XvbNwrVldkwjv+d32M6x
pLmhQ+EJr5lziaGKsSHjzrSLC9v9n5YGfVg+smusuEVbP5Y=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:33:50 2025 by rpki-client