Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232312e302f32342d3234203d3e20323131343339.roa
File: 3138352e342e3232312e302f32342d3234203d3e20323131343339.roa (raw, json)
Hash identifier: L1f125LyL5nxmt9WV26aDm1bv7Kmhd2aByqzK+jnaxQ=
Subject key identifier: EA:8C:3B:6B:E6:D0:56:37:C1:8E:05:39:36:5D:D4:19:B0:5D:28:22
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 3A8F8A5375885382C924F405FA5D22178AAC737F
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232312e302f32342d3234203d3e20323131343339.roa
Signing time: Wed 22 May 2024 08:42:46 +0000
ROA not before: Wed 22 May 2024 08:37:46 +0000
ROA not after: Wed 21 May 2025 08:42:46 +0000
asID: 211439
IP address blocks: 185.4.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 22 Jun 2024 00:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:8f:8a:53:75:88:53:82:c9:24:f4:05:fa:5d:22:17:8a:ac:73:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: May 22 08:37:46 2024 GMT
Not After : May 21 08:42:46 2025 GMT
Subject: CN=EA8C3B6BE6D05637C18E0539365DD419B05D2822
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:db:a8:33:2b:4d:1c:51:aa:7e:24:05:cf:6f:
bf:89:f8:00:6f:d6:83:98:d6:de:a8:a5:8e:d0:25:
4d:57:00:af:fd:f1:7f:a2:c1:80:0b:1c:45:a0:b2:
64:53:d2:be:37:d7:5d:61:c6:7f:7e:e9:f5:a4:22:
89:3f:7e:d8:f4:24:18:56:91:47:bb:d7:23:72:47:
44:6a:99:7e:b9:12:68:ab:56:57:33:e3:a3:61:d9:
16:e7:0a:c5:94:4a:99:a8:9e:39:3f:98:fe:c8:44:
7f:c8:85:7f:1c:1c:25:87:34:03:ff:0a:46:f6:d1:
73:24:fe:67:5c:e8:dd:d1:94:e8:f4:f1:f2:15:ed:
93:4e:80:9f:92:32:c7:1b:ff:5f:07:93:d1:4d:cb:
07:36:bf:ad:9f:de:5c:d1:fe:c3:03:89:78:27:a7:
d2:0a:7b:02:03:94:c7:30:fb:00:41:0c:97:03:67:
b1:fd:07:ad:10:6e:53:b1:8d:d9:87:c8:2a:4a:9f:
2b:66:32:80:6a:44:b6:da:66:ad:05:d0:f9:05:33:
f0:57:bd:c8:dd:66:01:e2:d5:d6:55:6c:c9:25:fb:
49:4e:ba:52:71:88:bc:82:46:58:85:db:af:be:9c:
83:e6:ed:9b:68:3c:b8:de:97:f2:52:75:90:24:65:
7e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:8C:3B:6B:E6:D0:56:37:C1:8E:05:39:36:5D:D4:19:B0:5D:28:22
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232312e302f32342d3234203d3e20323131343339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.221.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:dd:57:f0:4f:59:af:40:7d:f1:b0:78:24:20:76:7d:bb:3a:
5e:e7:b0:38:09:40:83:3d:e8:a4:7e:ed:42:f0:42:c7:79:92:
78:c6:94:99:23:99:02:fb:78:3f:87:b2:2f:86:a0:ad:d0:19:
7e:9a:22:67:7b:dd:1c:30:50:07:be:3a:65:0b:2d:3d:0d:cf:
37:e5:be:e8:25:86:91:ae:5c:02:ce:08:38:4f:4c:71:76:8d:
66:c3:99:96:a6:12:d4:fe:b1:66:b2:86:5f:0d:8e:47:80:a4:
f3:0a:15:98:3f:e0:a2:67:2a:4d:a4:16:8d:a1:bf:cd:3b:30:
4c:4d:00:b0:c4:d1:9c:c9:37:a3:f8:c4:97:01:81:1f:b8:d9:
e5:7d:11:f1:4d:2c:48:00:51:b9:63:c2:cb:3f:38:76:ea:1a:
8f:8d:cf:ae:e1:6e:3f:ea:2b:d2:e7:4c:b1:36:0f:30:7f:c6:
90:b8:4b:68:ed:d9:09:b8:1b:15:da:53:c2:e5:fd:b5:54:2c:
53:c4:b7:fa:9f:7f:b0:98:9e:3b:94:a0:5b:59:e8:b4:3c:92:
13:af:73:95:c4:82:25:6a:5f:7f:7e:4a:ea:3d:b2:4f:8b:82:
06:e1:3b:f0:24:c4:cd:c4:66:83:1e:a2:0a:a3:32:4c:72:ad:
51:4a:6d:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 04:25:27 2025 by rpki-client