Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232332e302f32342d3234203d3e20383334.roa
File: 3138352e3230352e3232332e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: UWyXF0hfYhcG7Tjl+yRaT9a6xOyg84FUAAKnZlIuM6k=
Subject key identifier: 28:AF:45:33:AE:D4:1B:2A:B8:F8:43:D9:D4:2E:4A:D3:CF:A1:58:94
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 11C82C7430262289E01A2E61702C92C7FF3A353C
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232332e302f32342d3234203d3e20383334.roa
Signing time: Wed 06 Nov 2024 19:55:43 +0000
ROA not before: Wed 06 Nov 2024 19:50:43 +0000
ROA not after: Wed 05 Nov 2025 19:55:43 +0000
asID: 834
IP address blocks: 185.205.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Nov 2024 07:23:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:c8:2c:74:30:26:22:89:e0:1a:2e:61:70:2c:92:c7:ff:3a:35:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Nov 6 19:50:43 2024 GMT
Not After : Nov 5 19:55:43 2025 GMT
Subject: CN=28AF4533AED41B2AB8F843D9D42E4AD3CFA15894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:35:ab:6e:93:75:f5:6d:44:4d:19:b8:23:4e:
d7:de:fc:d1:02:9d:a5:29:0a:76:2a:df:3d:4b:dc:
f4:42:1e:3a:d5:c7:24:86:2f:3c:a1:9b:1c:5c:1c:
e9:ac:f0:0e:a0:ad:08:50:f4:0d:65:c5:67:88:4d:
99:bc:11:f5:be:7d:c9:2b:c6:a9:0a:15:7c:73:5a:
d7:27:14:ac:3f:71:9f:70:3e:58:53:c7:e1:c6:1b:
e9:37:13:98:fc:f8:8c:d9:73:83:a7:c0:30:94:55:
21:00:a7:2d:86:24:cb:5a:e3:e6:76:f6:b2:1a:01:
1d:a2:fb:32:e4:b7:22:e2:73:a7:fa:ed:5f:14:63:
88:a4:74:e5:4c:e4:2d:23:e9:1d:6b:ac:f3:93:3b:
99:f4:84:57:1d:6f:44:d5:bd:01:76:ae:13:76:72:
a0:a9:eb:3d:3a:80:51:20:1d:be:f9:30:22:10:34:
32:65:4d:6e:5a:0e:e9:f7:46:af:d5:c5:cb:9a:97:
c9:c4:ec:d7:a4:c3:05:5b:0d:a5:2d:b3:bf:fe:71:
8b:b6:79:f1:09:15:62:c5:85:02:59:b7:98:65:e7:
0b:a0:da:41:ba:5f:a7:34:b5:5c:8b:4b:b5:70:ea:
d6:b7:78:3d:21:8c:98:5b:13:66:5f:dc:59:6c:75:
c3:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:AF:45:33:AE:D4:1B:2A:B8:F8:43:D9:D4:2E:4A:D3:CF:A1:58:94
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e3230352e3232332e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.223.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:8b:41:57:a8:d0:88:21:dd:83:f1:26:ab:cd:23:60:83:6a:
f0:dd:7c:f6:ae:27:01:a3:c0:d8:29:98:7f:87:8c:d7:3f:34:
f3:ab:48:a6:20:75:6d:aa:d3:c1:8e:58:40:78:db:38:5f:a4:
d5:76:c2:94:22:6f:e7:e7:27:7e:ad:11:7b:be:1d:ef:5f:b6:
f4:5c:12:ee:cc:68:1f:6c:98:59:d1:3f:9a:ad:5c:8a:ba:c9:
80:d4:87:62:9a:78:87:0f:85:7c:9e:4a:90:c5:b4:ff:2f:3c:
63:fc:68:e8:94:5a:37:cf:a4:98:db:08:ba:c2:ba:9b:b5:9b:
da:d3:0b:39:d2:4d:7c:b1:d4:27:82:64:2a:bc:80:d9:09:40:
da:83:f0:51:fa:76:57:6b:c1:4a:80:36:2d:8c:c1:4a:db:d0:
a5:65:ce:6f:a8:92:21:30:a3:07:8a:b7:ab:bf:63:29:dd:04:
27:9f:ad:c3:4c:fb:06:87:fd:07:f0:13:ae:1c:eb:c1:ba:f9:
44:74:2d:c9:3f:fa:e2:1d:0d:79:16:71:36:6a:97:b3:dd:c4:
98:d2:4a:ae:de:9f:04:3c:48:c4:4c:0f:ff:b1:ea:c4:f2:bd:
2c:ca:91:a9:a5:b8:01:b2:f1:5d:d3:b7:a3:de:a1:b5:c8:90:
48:4f:d3:70
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUEcgsdDAmIongGi5hcCySx/86NTwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN2FkZjYzZTM3NWIwYjc4NTA4MWI1OTQ1YjFkMThkOWRl
ODZlMGVmYzAeFw0yNDExMDYxOTUwNDNaFw0yNTExMDUxOTU1NDNaMDMxMTAvBgNV
BAMTKDI4QUY0NTMzQUVENDFCMkFCOEY4NDNEOUQ0MkU0QUQzQ0ZBMTU4OTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzNatuk3X1bURNGbgjTtfe/NEC
naUpCnYq3z1L3PRCHjrVxySGLzyhmxxcHOms8A6grQhQ9A1lxWeITZm8EfW+fckr
xqkKFXxzWtcnFKw/cZ9wPlhTx+HGG+k3E5j8+IzZc4OnwDCUVSEApy2GJMta4+Z2
9rIaAR2i+zLktyLic6f67V8UY4ikdOVM5C0j6R1rrPOTO5n0hFcdb0TVvQF2rhN2
cqCp6z06gFEgHb75MCIQNDJlTW5aDun3Rq/Vxcual8nE7NekwwVbDaUts7/+cYu2
efEJFWLFhQJZt5hl5wug2kG6X6c0tVyLS7Vw6ta3eD0hjJhbE2Zf3FlsdcNtAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUKK9FM67UGyq4+EPZ1C5K08+hWJQwHwYDVR0j
BBgwFoAUet9j43Wwt4UIG1lFsdGNnehuDvwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQtOTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2Fi
MDAyLzAvN0FERjYzRTM3NUIwQjc4NTA4MUI1OTQ1QjFEMThEOURFODZFMEVGQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2V0OWo0M1d3dDRVSUcxbEZzZEdObmVo
dUR2dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQt
OTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2FiMDAyLzAvMzEzODM1MmUzMjMwMzUyZTMy
MzIzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnN
3zANBgkqhkiG9w0BAQsFAAOCAQEAjYtBV6jQiCHdg/Emq80jYINq8N189q4nAaPA
2CmYf4eM1z8086tIpiB1barTwY5YQHjbOF+k1XbClCJv5+cnfq0Re74d71+29FwS
7sxoH2yYWdE/mq1cirrJgNSHYpp4hw+FfJ5KkMW0/y88Y/xo6JRaN8+kmNsIusK6
m7Wb2tMLOdJNfLHUJ4JkKryA2QlA2oPwUfp2V2vBSoA2LYzBStvQpWXOb6iSITCj
B4q3q79jKd0EJ5+tw0z7Bof9B/ATrhzrwbr5RHQtyT/64h0NeRZxNmqXs93EmNJK
rt6fBDxIxEwP/7HqxPK9LMqRqaW4AbLxXdO3o96htciQSE/TcA==
-----END CERTIFICATE-----
Generated at Fri Mar 14 03:01:28 2025 by rpki-client