Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e32392e3136352e302f32342d3234203d3e203232333633.roa
File: 3138352e32392e3136352e302f32342d3234203d3e203232333633.roa (raw, json)
Hash identifier: YMGqC/2qfTvAE8n67m0+tCdaHGt1FITAWKhCy9EksoI=
Subject key identifier: B0:E0:48:E3:71:36:8C:2B:3A:B2:A8:CA:E7:C4:DB:CF:DA:F3:AE:D0
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 7F2FEC870E97CFEAEFF697F7603B564488E03AA9
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e32392e3136352e302f32342d3234203d3e203232333633.roa
Signing time: Mon 02 Sep 2024 06:05:19 +0000
ROA not before: Mon 02 Sep 2024 06:00:19 +0000
ROA not after: Mon 01 Sep 2025 06:05:19 +0000
asID: 22363
IP address blocks: 185.29.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Dec 2024 17:13:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:2f:ec:87:0e:97:cf:ea:ef:f6:97:f7:60:3b:56:44:88:e0:3a:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Sep 2 06:00:19 2024 GMT
Not After : Sep 1 06:05:19 2025 GMT
Subject: CN=B0E048E371368C2B3AB2A8CAE7C4DBCFDAF3AED0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a0:1c:b0:2a:9c:e4:d9:41:57:59:bf:0a:f7:
77:5b:fb:65:3a:0d:40:20:45:a9:28:c5:58:0d:9e:
3d:fa:f0:16:86:27:cf:ea:ca:66:91:8a:51:66:fd:
c2:9d:ee:fd:da:86:20:07:19:78:20:1d:68:49:b7:
ae:5c:34:49:b5:4f:c9:4d:db:5d:7c:c5:8f:77:93:
e2:b3:6a:89:63:69:10:e5:16:6e:e4:bd:56:47:08:
12:f7:55:f1:8f:49:66:58:94:67:f2:9a:bc:2a:9e:
55:89:df:6a:e1:52:44:59:61:9a:2f:b5:8c:ef:8e:
c1:d0:38:a0:18:fa:31:95:05:ae:21:e7:53:33:e4:
4a:11:d4:07:6a:1d:98:ce:a9:59:fb:1e:5e:94:18:
db:54:11:ff:ee:db:f1:5d:de:bf:14:e9:66:de:5e:
00:c0:3a:33:b7:5e:39:01:db:b2:fa:d1:48:df:28:
0e:c3:cd:65:9c:19:05:30:e3:32:2f:18:f5:6a:14:
86:ba:4c:72:f1:67:22:f6:e2:39:15:29:ea:ba:cf:
f6:83:4e:ed:1f:b8:5b:28:35:dc:46:bc:c1:92:b9:
cc:0b:d0:79:82:c0:39:b7:7d:c4:17:fd:49:29:82:
11:95:6a:de:b5:e7:c4:19:5d:ce:86:b2:0a:bb:c7:
85:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:E0:48:E3:71:36:8C:2B:3A:B2:A8:CA:E7:C4:DB:CF:DA:F3:AE:D0
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e32392e3136352e302f32342d3234203d3e203232333633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.29.165.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:2d:69:a4:3d:3a:a7:24:98:46:cb:0e:3b:25:56:ec:8a:8c:
4e:a2:93:33:39:82:99:89:b5:9e:72:f1:a3:1b:ff:b2:87:8e:
e0:99:c9:ff:d6:b9:d5:35:0c:e2:cb:5e:75:37:cb:a7:03:68:
1c:55:fb:80:12:4e:e3:f8:9d:fa:74:79:ef:13:bd:bf:90:3b:
8c:5a:19:5e:95:c9:dc:58:44:65:de:08:87:40:d8:0b:e0:1e:
94:e2:e9:88:a8:9e:4b:13:82:1f:1f:51:ea:69:1e:bd:e1:97:
a9:d7:62:47:9e:11:f3:18:70:3c:8d:51:8e:73:80:da:1b:0f:
58:c5:ab:72:e4:56:1f:80:ee:e2:2e:e7:0f:ce:53:07:01:59:
00:22:0e:d3:0a:5e:eb:74:21:d2:4d:82:a2:ad:f1:5e:b1:a9:
c6:87:f1:fd:75:63:1c:b2:82:bf:6e:d3:62:c5:28:cd:41:f0:
d6:7f:f9:f4:f9:e4:68:d0:54:28:a6:51:f9:ec:c3:a1:a0:a1:
3b:cf:10:3a:47:77:1f:4a:80:4a:77:20:1e:80:ad:67:66:b1:
e4:11:9c:e5:ca:15:c9:45:56:fc:2c:18:95:e5:5c:ea:86:71:
5b:e0:33:75:16:ca:c0:c8:24:6f:c1:26:6c:c8:42:0b:5d:b9:
f7:3e:6e:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:04:33 2025 by rpki-client