Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232312e302f32342d3234203d3e20383334.roa
File: 3138352e3230352e3232312e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: L3LbAEackfTEcSfbZiLcsKJzhM3lBEmntJiFKr98LnM=
Subject key identifier: 16:BC:94:68:97:15:8F:35:36:0E:2B:8E:C5:F5:56:D1:83:64:C9:5D
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 1AE76BD740EA61AF1868AEB2E173DB9997F84BE6
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232312e302f32342d3234203d3e20383334.roa
Signing time: Wed 06 Nov 2024 00:02:29 +0000
ROA not before: Tue 05 Nov 2024 23:57:29 +0000
ROA not after: Wed 05 Nov 2025 00:02:29 +0000
asID: 834
IP address blocks: 185.205.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 10 Nov 2024 01:34:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:e7:6b:d7:40:ea:61:af:18:68:ae:b2:e1:73:db:99:97:f8:4b:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Nov 5 23:57:29 2024 GMT
Not After : Nov 5 00:02:29 2025 GMT
Subject: CN=16BC946897158F35360E2B8EC5F556D18364C95D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f7:81:f9:d4:63:5c:0b:af:29:02:5c:1f:ae:
c5:85:9a:b7:6a:10:56:22:f6:d0:1c:d8:2f:2e:3f:
b8:66:f3:71:f3:bf:b5:1d:0d:19:f1:a4:16:da:62:
5f:e0:29:83:e3:3e:b8:48:3e:67:d6:f3:e5:6b:c8:
aa:da:7e:69:b0:21:63:c3:f9:c3:92:dc:73:46:34:
19:16:2a:c2:15:01:cb:0c:df:8c:65:1a:19:9c:c5:
ab:f5:e0:1f:b8:b1:a7:35:c9:35:da:41:4b:fe:67:
66:2f:83:9f:8e:e3:a0:a2:40:d5:52:cc:df:bd:38:
8b:de:a2:44:49:cc:d1:0f:36:4c:25:77:7a:61:12:
ed:a7:2c:55:bc:c1:eb:7b:46:62:c9:a3:0e:ce:3d:
ba:1f:d5:a2:09:ab:5b:07:a2:f2:50:60:17:86:f8:
c1:76:10:5d:03:6b:43:ee:31:d8:83:30:67:9a:77:
4a:ff:ec:02:68:c1:28:cf:2f:f5:3d:36:23:b1:1a:
17:7c:3a:10:a7:19:42:1a:3a:c5:d7:e2:7f:fa:66:
5d:27:06:93:95:61:68:ac:25:64:07:7d:ac:c1:73:
9c:b0:7c:98:a7:66:c0:9d:69:a9:9e:46:74:8b:bc:
09:ed:d5:ed:39:61:e3:19:e8:d8:43:48:0a:b3:b0:
26:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:BC:94:68:97:15:8F:35:36:0E:2B:8E:C5:F5:56:D1:83:64:C9:5D
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232312e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.221.0/24
Signature Algorithm: sha256WithRSAEncryption
27:73:e5:a9:ae:40:97:b2:90:77:0e:66:ed:ef:24:82:1b:6f:
d8:36:bf:2b:28:f9:a5:f7:56:75:1f:3c:35:f8:69:cd:5b:fa:
48:9d:4b:57:1a:18:f0:f4:dc:d1:0d:5d:f5:c3:fc:d7:66:03:
27:25:72:ec:39:6b:48:a8:26:21:fe:bd:23:e0:80:f8:ba:fc:
ee:0a:f7:37:8c:96:1e:28:4f:e3:7f:4e:a3:a9:bd:cd:e7:57:
3d:5f:e1:5e:fb:9f:8e:e8:f1:2e:63:bf:8b:3b:8b:82:a6:9e:
45:58:ba:93:00:38:b5:55:39:fa:54:44:fa:e3:db:72:95:40:
07:7b:a7:b0:15:33:b9:36:a3:a6:30:36:2b:77:f3:4e:64:6e:
8d:7a:a4:9d:79:cc:c1:0e:d7:74:4c:62:14:18:d3:db:cb:d6:
8e:25:db:6f:54:d8:a4:48:0f:0c:1b:aa:7b:90:36:68:ed:29:
47:d9:69:0e:ab:fa:1f:87:e9:05:1e:af:29:8f:3d:f5:87:b8:
42:0d:27:6c:16:77:ac:fb:cd:6b:f3:4f:79:92:b8:9f:a6:fb:
31:bf:be:0b:21:87:0c:c0:58:40:b9:4c:ad:8f:f5:ae:db:5c:
7b:d0:0f:af:73:44:9b:5a:c0:07:0d:76:0d:a8:85:6c:26:ca:
37:96:7a:b1
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUGudr10DqYa8YaK6y4XPbmZf4S+YwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN2FkZjYzZTM3NWIwYjc4NTA4MWI1OTQ1YjFkMThkOWRl
ODZlMGVmYzAeFw0yNDExMDUyMzU3MjlaFw0yNTExMDUwMDAyMjlaMDMxMTAvBgNV
BAMTKDE2QkM5NDY4OTcxNThGMzUzNjBFMkI4RUM1RjU1NkQxODM2NEM5NUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN94H51GNcC68pAlwfrsWFmrdq
EFYi9tAc2C8uP7hm83Hzv7UdDRnxpBbaYl/gKYPjPrhIPmfW8+VryKrafmmwIWPD
+cOS3HNGNBkWKsIVAcsM34xlGhmcxav14B+4sac1yTXaQUv+Z2Yvg5+O46CiQNVS
zN+9OIveokRJzNEPNkwld3phEu2nLFW8wet7RmLJow7OPbof1aIJq1sHovJQYBeG
+MF2EF0Da0PuMdiDMGead0r/7AJowSjPL/U9NiOxGhd8OhCnGUIaOsXX4n/6Zl0n
BpOVYWisJWQHfazBc5ywfJinZsCdaameRnSLvAnt1e05YeMZ6NhDSAqzsCbNAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUFryUaJcVjzU2DiuOxfVW0YNkyV0wHwYDVR0j
BBgwFoAUet9j43Wwt4UIG1lFsdGNnehuDvwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQtOTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2Fi
MDAyLzAvN0FERjYzRTM3NUIwQjc4NTA4MUI1OTQ1QjFEMThEOURFODZFMEVGQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2V0OWo0M1d3dDRVSUcxbEZzZEdObmVo
dUR2dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQt
OTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2FiMDAyLzAvMzEzODM1MmUzMjMwMzUyZTMy
MzIzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnN
3TANBgkqhkiG9w0BAQsFAAOCAQEAJ3Plqa5Al7KQdw5m7e8kghtv2Da/Kyj5pfdW
dR88NfhpzVv6SJ1LVxoY8PTc0Q1d9cP812YDJyVy7DlrSKgmIf69I+CA+Lr87gr3
N4yWHihP439Oo6m9zedXPV/hXvufjujxLmO/izuLgqaeRVi6kwA4tVU5+lRE+uPb
cpVAB3unsBUzuTajpjA2K3fzTmRujXqknXnMwQ7XdExiFBjT28vWjiXbb1TYpEgP
DBuqe5A2aO0pR9lpDqv6H4fpBR6vKY899Ye4Qg0nbBZ3rPvNa/NPeZK4n6b7Mb++
CyGHDMBYQLlMrY/1rttce9APr3NEm1rABw12DaiFbCbKN5Z6sQ==
Generated at Sun Nov 10 05:03:24 2024 by rpki-client on console-fra.rpki-client.org