Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232322e302f32332d3234203d3e2037303138.roa
File: 3138352e3230352e3232322e302f32332d3234203d3e2037303138.roa (raw, json)
Hash identifier: 0tFWGyaZkVsZk2DyhS9fXNz/uhXqVDr9XjCKjLu3OPw=
Subject key identifier: 29:D0:79:DC:47:5F:57:DD:74:9A:83:E6:70:96:8A:CD:20:88:98:92
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 14925EBC4F6350A1BD5A78458274B6353DEB1039
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232322e302f32332d3234203d3e2037303138.roa
Signing time: Wed 30 Oct 2024 19:43:26 +0000
ROA not before: Wed 30 Oct 2024 19:38:26 +0000
ROA not after: Wed 29 Oct 2025 19:43:26 +0000
asID: 7018
IP address blocks: 185.205.222.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Oct 2024 00:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:92:5e:bc:4f:63:50:a1:bd:5a:78:45:82:74:b6:35:3d:eb:10:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Oct 30 19:38:26 2024 GMT
Not After : Oct 29 19:43:26 2025 GMT
Subject: CN=29D079DC475F57DD749A83E670968ACD20889892
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:23:9e:56:6c:59:20:fb:d0:9d:04:94:5c:e0:
3a:31:86:45:cb:2f:28:f8:b4:b9:5f:c7:74:38:b7:
1e:8d:a5:9e:f9:ff:ac:a3:9e:f3:04:b1:3c:9d:b2:
dc:28:f0:f2:49:c3:9a:9b:43:d6:bd:58:37:ff:eb:
31:3c:44:ba:67:ce:81:92:b6:9d:98:62:fb:5d:4c:
07:db:df:b3:63:91:26:ab:ef:f8:bb:27:52:c1:3b:
1d:b2:c3:14:eb:b5:f9:6e:7b:8a:ff:d9:47:a5:b7:
7a:2d:2f:02:5d:29:ff:dd:72:1c:4b:11:a1:4b:70:
c9:92:53:f1:20:3d:88:e7:44:91:12:53:90:5d:ea:
8e:cf:14:7e:dc:6e:ec:5b:fc:17:d8:33:19:6f:c6:
7b:7f:c5:12:99:e6:7a:a8:1b:30:65:d8:19:e0:c2:
cb:2e:69:4f:4a:1c:48:c4:d4:40:42:df:2e:67:b4:
ba:ca:b4:57:03:13:ef:9e:d7:1e:9f:46:78:87:21:
30:a7:0f:f5:c6:b0:fe:0c:32:37:a0:f9:5f:56:68:
45:08:5a:4c:99:a3:d5:b6:c0:e0:fc:4b:06:69:a2:
43:dc:84:ef:97:66:81:a2:e3:0e:8e:74:bb:b2:ba:
7a:ab:1f:ce:16:bb:a2:6a:e3:b1:10:78:ed:00:19:
8f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:D0:79:DC:47:5F:57:DD:74:9A:83:E6:70:96:8A:CD:20:88:98:92
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232322e302f32332d3234203d3e2037303138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.222.0/23
Signature Algorithm: sha256WithRSAEncryption
59:23:ad:8c:c9:6b:31:a0:98:1f:3b:7c:6e:53:23:48:ea:1d:
ad:b2:38:5c:87:4e:0d:58:ea:6d:b7:29:94:bb:4a:fe:2f:bc:
e7:85:1d:c7:c8:8e:5e:8a:12:a4:9f:ca:02:50:ab:85:ef:49:
53:79:5e:f9:1c:7c:5d:a6:0f:80:c4:af:a8:97:63:e4:a4:d1:
2d:03:89:5f:58:72:47:0e:7c:d1:1d:1a:d9:25:42:85:93:b1:
fb:47:fc:92:4e:b6:b8:8a:47:23:68:44:00:f7:94:1a:df:f3:
6f:5a:ca:1e:be:7a:c3:16:e3:e3:06:93:0d:ad:06:90:7d:a7:
e4:02:f5:21:1b:9a:20:3d:7b:72:84:4e:7e:e2:50:74:db:ee:
81:a6:4f:a9:43:59:91:07:38:04:89:a8:f3:ef:33:d3:54:52:
b9:ee:57:56:d2:e8:5b:9a:bb:22:ba:f4:47:d0:10:c4:da:79:
73:49:8c:b6:ec:11:94:40:cd:21:3f:3a:f2:70:9b:0e:e4:13:
9c:40:c6:cc:ec:84:7b:55:28:fe:bb:6d:bc:d1:79:aa:37:ec:
4c:b6:25:1a:d0:ca:68:07:38:24:c9:7f:62:37:93:df:e2:97:
38:c6:56:69:85:ce:43:65:5f:3e:df:83:2c:8e:ad:1f:05:36:
43:d2:46:0d
-----BEGIN CERTIFICATE-----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Generated at Thu Oct 31 02:09:57 2024 by rpki-client on console-fra.rpki-client.org