Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/3138352e3138362e32362e302f32342d3234203d3e203233343730.roa
File: 3138352e3138362e32362e302f32342d3234203d3e203233343730.roa (raw, json)
Hash identifier: 768KYOWyXjXfOOhF9zrVbrPZy2I3FG1pqAAiR1uWHso=
Subject key identifier: 52:D5:DF:DD:CF:9F:61:79:9F:D5:16:F0:56:BD:E4:A4:62:4F:B8:6F
Certificate issuer: /CN=b3d0280f500695a43204251c9830454ca8a2e7ac
Certificate serial: 715C28CBA863085982FB85D97097E46875E68901
Authority key identifier: B3:D0:28:0F:50:06:95:A4:32:04:25:1C:98:30:45:4C:A8:A2:E7:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s9AoD1AGlaQyBCUcmDBFTKii56w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/3138352e3138362e32362e302f32342d3234203d3e203233343730.roa
Signing time: Tue 14 May 2024 21:01:10 +0000
ROA not before: Tue 14 May 2024 20:56:10 +0000
ROA not after: Tue 13 May 2025 21:01:10 +0000
asID: 23470
IP address blocks: 185.186.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Aug 2024 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:5c:28:cb:a8:63:08:59:82:fb:85:d9:70:97:e4:68:75:e6:89:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3d0280f500695a43204251c9830454ca8a2e7ac
Validity
Not Before: May 14 20:56:10 2024 GMT
Not After : May 13 21:01:10 2025 GMT
Subject: CN=52D5DFDDCF9F61799FD516F056BDE4A4624FB86F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ff:28:fb:bc:0b:37:29:a5:0d:8a:98:98:ce:
11:af:05:4e:8d:35:43:c7:9b:73:25:23:04:1d:d6:
34:2c:a0:ba:44:c3:30:32:9c:54:9d:c2:37:2f:58:
a0:1a:81:08:45:87:1b:05:62:50:c1:98:37:69:23:
4c:15:c9:30:42:2c:19:2d:e6:8b:e1:6a:6f:56:19:
62:50:cb:9a:68:bd:60:34:b2:d3:49:67:24:04:aa:
d4:33:8e:a8:64:6d:eb:0b:56:fb:53:c5:c8:41:5d:
86:22:02:de:9d:da:51:2c:87:f1:65:0c:2b:78:95:
1f:ac:9c:43:77:4a:2d:1f:d8:a9:b4:ec:d9:f4:cb:
9f:d1:98:17:26:16:f8:fd:20:5c:1c:5f:cb:b4:96:
91:00:cb:86:fd:ca:a1:f2:dc:3f:09:70:fc:e3:34:
35:4c:38:5d:0e:93:ef:05:14:8f:8f:54:a9:62:e5:
3c:cd:9a:9c:37:a5:99:a9:70:4f:9a:68:1e:70:ea:
1c:9b:fb:a8:06:05:25:35:e7:93:b5:81:36:e4:f9:
88:37:8a:ea:bf:26:77:18:c2:e5:25:2c:b3:de:e2:
be:3a:af:df:95:e2:da:47:c5:2c:b4:18:1e:4c:91:
58:ee:50:4a:4f:66:2b:f0:dd:e2:81:5d:6a:ed:f6:
e6:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:D5:DF:DD:CF:9F:61:79:9F:D5:16:F0:56:BD:E4:A4:62:4F:B8:6F
X509v3 Authority Key Identifier:
keyid:B3:D0:28:0F:50:06:95:A4:32:04:25:1C:98:30:45:4C:A8:A2:E7:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/B3D0280F500695A43204251C9830454CA8A2E7AC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s9AoD1AGlaQyBCUcmDBFTKii56w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/3138352e3138362e32362e302f32342d3234203d3e203233343730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.26.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:fb:10:91:a1:7d:d2:0b:86:c5:45:8a:e9:c8:d5:8e:3b:21:
04:7c:ce:ff:39:de:1f:7d:05:5d:44:85:8a:c1:03:1d:f6:bc:
15:fe:c3:a3:2e:a0:d6:17:1e:bd:9f:db:2c:a5:5c:1c:0a:bd:
11:b6:ea:4d:ee:57:0f:eb:ed:60:db:86:e7:bc:c4:e9:b6:3c:
f7:6f:b9:d4:0b:80:69:41:f9:8e:70:a2:6d:64:a3:f1:37:0d:
ae:39:5c:7a:22:36:4d:5d:88:1a:e3:d2:ea:60:3c:da:c0:39:
c0:3b:52:e4:64:c6:33:cb:be:eb:4b:57:1d:5e:f1:9a:4e:0c:
65:64:1c:2d:42:18:86:4c:f0:02:85:95:2f:bf:4e:51:2b:27:
3c:fd:7f:c8:e2:5c:91:ab:4a:07:32:88:06:03:ba:b1:3a:48:
28:71:08:70:07:5b:25:58:41:f3:93:ef:9e:23:35:04:a6:58:
9f:21:9e:4b:f2:a3:92:33:dc:28:94:bc:8a:b0:47:fa:d5:f8:
69:a9:c5:3b:76:6c:f6:11:53:49:47:f8:ef:d4:4e:73:11:58:
e7:8e:b1:66:f4:a7:a8:40:17:06:d8:17:27:57:d2:2a:4a:7f:
60:8f:1c:94:59:0b:75:cd:81:e9:c5:02:40:89:b6:11:e3:a5:
6d:9a:be:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 14 02:00:11 2024 by rpki-client on console-fra.rpki-client.org