Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232312e302f32342d3234203d3e203634323637.roa
File: 3138352e3230352e3232312e302f32342d3234203d3e203634323637.roa (raw, json)
Hash identifier: EWlhNfOVrZveyWD0nS8uED7CHKFwZ+rFtOLxaV7788c=
Subject key identifier: 59:F9:E0:8D:5A:48:5A:90:A4:5C:1A:DC:A1:3B:F0:AF:03:4E:D3:2B
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 4D36A772E157A91876A1F8B8743A33EC3D93576F
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232312e302f32342d3234203d3e203634323637.roa
Signing time: Fri 06 Sep 2024 16:32:04 +0000
ROA not before: Fri 06 Sep 2024 16:27:04 +0000
ROA not after: Fri 05 Sep 2025 16:32:04 +0000
asID: 64267
IP address blocks: 185.205.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Nov 2024 00:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:36:a7:72:e1:57:a9:18:76:a1:f8:b8:74:3a:33:ec:3d:93:57:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Sep 6 16:27:04 2024 GMT
Not After : Sep 5 16:32:04 2025 GMT
Subject: CN=59F9E08D5A485A90A45C1ADCA13BF0AF034ED32B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ff:ad:1d:11:f4:c3:98:fc:d7:09:a0:ca:fe:
db:60:b9:16:28:c8:4c:f0:b1:e0:44:57:a1:2e:76:
5a:4f:36:dd:53:86:e6:fa:87:a2:6e:dc:fc:48:9a:
3b:a6:69:7b:be:60:4e:8f:66:16:e2:28:ab:d6:0b:
4f:a8:b1:35:46:65:3f:9b:88:8f:6b:3f:02:2e:41:
e2:36:9a:a6:5a:d3:d3:6c:97:ad:0b:53:db:1f:d2:
98:66:b2:5d:8d:0a:3e:99:7d:ab:7e:ee:c8:46:ab:
d4:c9:09:72:e4:3d:3b:80:b8:49:2b:5b:f8:a9:0e:
a4:26:bd:b7:2c:64:a8:5c:3a:7d:7e:70:ac:3e:3f:
28:8e:4c:cd:35:24:f4:2b:a2:3d:9f:df:09:2d:19:
5d:49:8a:a0:38:9d:62:ed:05:20:b7:09:c7:30:c2:
04:6a:27:dd:ae:6d:b2:3f:72:23:68:c7:39:28:ce:
de:c9:0e:ff:cb:2b:c2:53:58:a6:74:a7:f1:09:10:
df:f8:63:f9:7d:79:a0:81:4a:51:df:56:68:48:38:
34:b7:33:be:ca:df:b4:73:84:c0:34:be:1c:14:b9:
25:f6:f0:07:5a:62:c6:c9:95:0e:bd:7a:ba:e9:ad:
19:0b:55:47:67:f9:fd:dc:11:c8:d2:65:9d:40:6c:
12:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:F9:E0:8D:5A:48:5A:90:A4:5C:1A:DC:A1:3B:F0:AF:03:4E:D3:2B
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232312e302f32342d3234203d3e203634323637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.221.0/24
Signature Algorithm: sha256WithRSAEncryption
04:1e:da:63:50:b9:46:eb:de:e5:2a:a0:18:92:2b:31:df:bb:
9f:dd:c7:29:14:c9:36:f0:16:bb:a6:36:0c:b5:b2:6b:47:18:
6f:51:df:90:be:8e:9e:3a:d3:74:63:f9:0e:ea:d6:7f:ae:8c:
47:fb:d5:d4:3b:bf:0a:45:51:91:5a:b3:63:a6:aa:71:90:51:
f5:34:9b:1d:87:bd:61:89:ab:45:c2:4f:93:c2:d5:ea:00:42:
39:82:52:9d:ca:e8:de:77:7c:7a:95:6c:55:77:cd:54:08:9a:
a7:24:b1:22:25:dc:6d:ac:19:e8:29:11:ab:a9:ad:23:0b:f9:
ad:b7:eb:a3:02:dc:4d:c1:c8:f3:21:a6:82:6e:3a:bf:28:df:
b3:de:f3:e2:5a:5f:28:97:4d:2d:cb:f4:18:50:89:d3:ea:39:
e8:62:fe:3e:ba:ca:6e:6b:d1:7f:f5:75:47:07:ea:b5:12:50:
1c:ea:82:85:67:bd:1b:e8:e4:94:96:67:42:74:1d:39:77:b0:
6e:0d:4f:97:f9:0c:ed:37:f4:14:3d:60:4a:b2:0c:0c:6b:4f:
08:c7:da:35:4d:0f:96:30:e3:89:d4:47:7a:7b:dd:f4:dc:3b:
13:94:62:56:b8:80:93:1f:76:b5:06:f8:67:3b:d3:01:d1:ad:
6b:e8:43:92
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUTTancuFXqRh2ofi4dDoz7D2TV28wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN2FkZjYzZTM3NWIwYjc4NTA4MWI1OTQ1YjFkMThkOWRl
ODZlMGVmYzAeFw0yNDA5MDYxNjI3MDRaFw0yNTA5MDUxNjMyMDRaMDMxMTAvBgNV
BAMTKDU5RjlFMDhENUE0ODVBOTBBNDVDMUFEQ0ExM0JGMEFGMDM0RUQzMkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF/60dEfTDmPzXCaDK/ttguRYo
yEzwseBEV6EudlpPNt1Thub6h6Ju3PxImjumaXu+YE6PZhbiKKvWC0+osTVGZT+b
iI9rPwIuQeI2mqZa09Nsl60LU9sf0phmsl2NCj6Zfat+7shGq9TJCXLkPTuAuEkr
W/ipDqQmvbcsZKhcOn1+cKw+PyiOTM01JPQroj2f3wktGV1JiqA4nWLtBSC3Cccw
wgRqJ92ubbI/ciNoxzkozt7JDv/LK8JTWKZ0p/EJEN/4Y/l9eaCBSlHfVmhIODS3
M77K37RzhMA0vhwUuSX28AdaYsbJlQ69errprRkLVUdn+f3cEcjSZZ1AbBLPAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUWfngjVpIWpCkXBrcoTvwrwNO0yswHwYDVR0j
BBgwFoAUet9j43Wwt4UIG1lFsdGNnehuDvwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQtOTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2Fi
MDAyLzAvN0FERjYzRTM3NUIwQjc4NTA4MUI1OTQ1QjFEMThEOURFODZFMEVGQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2V0OWo0M1d3dDRVSUcxbEZzZEdObmVo
dUR2dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQt
OTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2FiMDAyLzAvMzEzODM1MmUzMjMwMzUyZTMy
MzIzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM2MzQzMjM2Mzcucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC5zd0wDQYJKoZIhvcNAQELBQADggEBAAQe2mNQuUbr3uUqoBiSKzHfu5/dxykU
yTbwFrumNgy1smtHGG9R35C+jp4603Rj+Q7q1n+ujEf71dQ7vwpFUZFas2OmqnGQ
UfU0mx2HvWGJq0XCT5PC1eoAQjmCUp3K6N53fHqVbFV3zVQImqcksSIl3G2sGegp
EauprSML+a2366MC3E3ByPMhpoJuOr8o37Pe8+JaXyiXTS3L9BhQidPqOehi/j66
ym5r0X/1dUcH6rUSUBzqgoVnvRvo5JSWZ0J0HTl3sG4NT5f5DO039BQ9YEqyDAxr
TwjH2jVND5Yw44nUR3p73fTcOxOUYla4gJMfdrUG+Gc70wHRrWvoQ5I=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:30:49 2025 by rpki-client