Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232302e302f32342d3234203d3e203631333137.roa
File: 3138352e3230352e3232302e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: vRGHF9CD95ZWgNl3IjU3iXqRKP0cxPaDUF8RpP090MU=
Subject key identifier: B4:3F:29:B3:04:43:C0:99:61:F9:03:11:88:D1:C3:92:0D:3A:53:B6
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 0A6116D28281A8ACF4A9E27B0B7FE35213988B36
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232302e302f32342d3234203d3e203631333137.roa
Signing time: Fri 05 Jan 2024 10:37:33 +0000
ROA not before: Fri 05 Jan 2024 10:32:33 +0000
ROA not after: Fri 03 Jan 2025 10:37:33 +0000
asID: 61317
IP address blocks: 185.205.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Feb 2024 10:03:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:61:16:d2:82:81:a8:ac:f4:a9:e2:7b:0b:7f:e3:52:13:98:8b:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Jan 5 10:32:33 2024 GMT
Not After : Jan 3 10:37:33 2025 GMT
Subject: CN=B43F29B30443C09961F9031188D1C3920D3A53B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:98:f6:38:b7:fb:58:28:6a:8d:40:3b:9f:44:
f5:fd:2f:90:c1:e4:f2:3d:85:41:c1:12:54:91:ca:
87:8e:eb:ca:39:0c:fa:22:c8:4f:02:00:da:2e:97:
1a:ce:8c:42:c0:40:9b:ca:19:2f:b7:e1:62:16:76:
41:aa:9f:f0:45:cb:84:33:3a:b8:b3:d3:8a:7f:c3:
0e:7b:de:4e:1d:4e:f2:16:82:67:8f:0d:c4:a3:9a:
13:5c:1f:57:ae:3e:5c:8a:f8:98:f6:c6:8b:f3:b1:
5e:08:f2:71:58:f2:03:f7:e8:a4:cb:fb:8c:73:64:
74:ee:3d:69:60:03:0c:aa:2c:66:af:62:a7:b7:cc:
ed:f7:18:39:6e:48:bf:d0:fa:83:34:f5:aa:1d:31:
60:68:9c:03:3e:ab:96:49:68:95:77:31:c0:ad:c0:
9d:26:63:71:e3:2e:03:56:f7:8b:2a:f7:d9:ea:ee:
50:bd:66:9e:24:ca:aa:9e:46:d3:61:04:7f:7a:f6:
62:53:3a:ad:e1:f5:ff:c9:a0:38:1c:7c:81:4b:fa:
af:c3:cb:80:09:ab:fd:29:fb:5f:e7:3a:90:0f:3f:
dd:c9:0d:f2:b9:cf:dc:43:00:73:29:ba:f3:bd:68:
d3:f8:b2:2c:e9:ab:eb:52:ef:24:a1:f5:9f:cc:c1:
c4:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:3F:29:B3:04:43:C0:99:61:F9:03:11:88:D1:C3:92:0D:3A:53:B6
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232302e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.220.0/24
Signature Algorithm: sha256WithRSAEncryption
10:1e:34:7f:62:d4:ce:11:67:7e:7e:b6:40:09:b9:c7:e5:4f:
96:4f:57:45:3f:4a:7e:75:a1:a0:98:45:64:fc:b4:cc:13:5f:
db:ef:eb:32:d9:f2:47:ae:0f:20:a8:a1:f4:ec:cf:93:26:8c:
28:b0:4f:f8:a4:5e:a8:71:c8:06:8e:93:b7:84:4c:ac:2e:8b:
d6:e1:fc:ac:38:7f:80:14:03:14:1f:6c:bd:c3:43:15:90:55:
0d:55:e7:a2:f7:fe:4e:c5:b0:e6:c1:2e:46:db:21:88:b0:49:
f2:c9:be:9d:c9:2a:17:4b:08:4c:6a:49:34:e4:df:3e:9c:2e:
d8:ca:ee:cc:a6:b3:78:ab:52:cb:00:00:8b:d2:be:e3:47:f8:
a4:3f:8a:73:a7:56:ef:2e:60:83:5f:27:4b:e8:4f:3c:f3:20:
c3:ee:72:8f:d6:b2:1c:93:cd:6b:f1:f6:b5:62:33:c4:aa:bd:
04:6c:a4:b7:ac:e4:2d:1e:3e:c6:b8:3c:16:86:01:3d:15:42:
41:2d:fc:0f:dd:8a:8a:b5:5b:8f:cd:0c:a5:52:13:a0:07:9c:
66:2c:5d:29:14:a4:32:9a:9b:96:eb:34:15:45:b2:81:fd:0c:
c6:0d:f2:43:7d:71:d3:d6:e0:bc:ee:a3:8f:2a:cf:17:50:ff:
6c:9f:d2:5f
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUCmEW0oKBqKz0qeJ7C3/jUhOYizYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN2FkZjYzZTM3NWIwYjc4NTA4MWI1OTQ1YjFkMThkOWRl
ODZlMGVmYzAeFw0yNDAxMDUxMDMyMzNaFw0yNTAxMDMxMDM3MzNaMDMxMTAvBgNV
BAMTKEI0M0YyOUIzMDQ0M0MwOTk2MUY5MDMxMTg4RDFDMzkyMEQzQTUzQjYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQmPY4t/tYKGqNQDufRPX9L5DB
5PI9hUHBElSRyoeO68o5DPoiyE8CANoulxrOjELAQJvKGS+34WIWdkGqn/BFy4Qz
Oriz04p/ww573k4dTvIWgmePDcSjmhNcH1euPlyK+Jj2xovzsV4I8nFY8gP36KTL
+4xzZHTuPWlgAwyqLGavYqe3zO33GDluSL/Q+oM09aodMWBonAM+q5ZJaJV3McCt
wJ0mY3HjLgNW94sq99nq7lC9Zp4kyqqeRtNhBH969mJTOq3h9f/JoDgcfIFL+q/D
y4AJq/0p+1/nOpAPP93JDfK5z9xDAHMpuvO9aNP4sizpq+tS7ySh9Z/MwcS9AgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUtD8pswRDwJlh+QMRiNHDkg06U7YwHwYDVR0j
BBgwFoAUet9j43Wwt4UIG1lFsdGNnehuDvwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQtOTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2Fi
MDAyLzAvN0FERjYzRTM3NUIwQjc4NTA4MUI1OTQ1QjFEMThEOURFODZFMEVGQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2V0OWo0M1d3dDRVSUcxbEZzZEdObmVo
dUR2dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQt
OTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2FiMDAyLzAvMzEzODM1MmUzMjMwMzUyZTMy
MzIzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM2MzEzMzMxMzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC5zdwwDQYJKoZIhvcNAQELBQADggEBABAeNH9i1M4RZ35+tkAJucflT5ZPV0U/
Sn51oaCYRWT8tMwTX9vv6zLZ8keuDyCoofTsz5MmjCiwT/ikXqhxyAaOk7eETKwu
i9bh/Kw4f4AUAxQfbL3DQxWQVQ1V56L3/k7FsObBLkbbIYiwSfLJvp3JKhdLCExq
STTk3z6cLtjK7syms3irUssAAIvSvuNH+KQ/inOnVu8uYINfJ0voTzzzIMPuco/W
shyTzWvx9rViM8SqvQRspLes5C0ePsa4PBaGAT0VQkEt/A/dioq1W4/NDKVSE6AH
nGYsXSkUpDKam5brNBVFsoH9DMYN8kN9cdPW4Lzuo48qzxdQ/2yf0l8=
-----END CERTIFICATE-----
Generated at Tue Feb 6 15:04:19 2024 by rpki-client on console-ams.rpki-client.org