Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232312e302f32342d3234203d3e203631313335.roa
File: 3138352e342e3232312e302f32342d3234203d3e203631313335.roa (raw, json)
Hash identifier: 9/usvg3g3WyvoYVWPe12ufvB45zHdIQ0hgv/KkNFES8=
Subject key identifier: 49:A2:D5:A9:E7:EF:1F:51:92:6A:59:76:24:A4:97:83:62:18:C2:C0
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 2FEEB5B710B27DA713DB91017F9BB22813D49F14
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232312e302f32342d3234203d3e203631313335.roa
Signing time: Tue 02 Jan 2024 11:47:24 +0000
ROA not before: Tue 02 Jan 2024 11:42:24 +0000
ROA not after: Tue 31 Dec 2024 11:47:24 +0000
asID: 61135
IP address blocks: 185.4.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jan 2024 14:13:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:ee:b5:b7:10:b2:7d:a7:13:db:91:01:7f:9b:b2:28:13:d4:9f:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Jan 2 11:42:24 2024 GMT
Not After : Dec 31 11:47:24 2024 GMT
Subject: CN=49A2D5A9E7EF1F51926A597624A497836218C2C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b0:83:3b:17:da:d7:a7:7f:91:c9:70:91:b1:
a2:4f:82:1f:83:84:fd:d2:b4:6f:a7:86:6d:aa:54:
c1:e3:c5:37:4d:da:c1:48:2b:77:b1:e5:68:3e:c7:
2b:8e:57:e4:3b:7a:a1:96:51:5a:c7:59:b0:66:60:
15:fc:02:6e:b6:fe:e8:36:4f:88:57:60:12:f1:9a:
f8:13:ae:a8:3a:c9:ef:68:b2:81:4d:47:45:ca:29:
1a:91:e0:15:82:ea:e2:b8:cc:f0:16:51:3b:2a:bb:
f1:56:69:fb:de:b2:f7:48:22:6d:78:ba:2e:4c:75:
11:32:09:da:21:fa:de:16:51:47:a1:c2:9b:20:bf:
3c:a1:0d:28:de:7c:3c:71:f4:04:8d:36:22:69:7d:
9e:5e:be:b6:ba:3e:22:55:d9:2e:49:50:91:f4:58:
d9:b5:62:4a:cc:9b:dc:e1:e6:fc:fe:28:47:12:7f:
1a:4e:97:9f:90:4c:8e:cd:67:70:82:7b:2d:b7:28:
28:b5:ee:ed:70:e0:c0:e1:97:1b:31:96:bc:18:43:
e6:93:ee:b9:f7:2e:65:85:8e:cd:09:e3:18:1b:d0:
13:5a:9a:b1:df:83:15:e3:8b:53:cc:58:b0:b8:49:
a7:10:9d:ce:4b:0c:81:73:17:58:e4:d3:44:ca:60:
81:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:A2:D5:A9:E7:EF:1F:51:92:6A:59:76:24:A4:97:83:62:18:C2:C0
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232312e302f32342d3234203d3e203631313335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.221.0/24
Signature Algorithm: sha256WithRSAEncryption
15:e0:b0:0a:6a:89:d8:bc:c5:d7:a8:79:58:47:70:05:d3:26:
9b:6b:c3:f8:2f:05:1c:47:57:ed:91:2d:03:48:bd:e8:65:8e:
ef:8a:65:96:2f:5d:e0:b3:58:2f:8b:fb:77:90:af:8c:7a:7a:
30:f5:46:d4:53:e1:4c:77:c8:2b:95:dd:1d:48:05:f2:d8:e1:
b9:ff:cf:84:c4:08:22:6b:72:39:8d:bb:45:10:a9:57:dd:53:
9a:a2:e3:61:b4:d3:44:99:98:02:30:bd:e6:95:1d:84:cd:85:
ec:83:48:36:1f:80:86:af:16:2f:31:1b:60:81:30:62:88:d2:
ad:2d:63:4d:3c:c2:fe:10:d6:8a:89:6c:1e:1d:96:45:1d:7e:
aa:ee:e5:f2:ab:40:60:9a:2d:b0:29:ba:a0:a3:5b:7d:ec:69:
1f:0c:3c:5c:85:ea:23:f2:f0:df:a5:d7:00:bc:6b:5f:34:10:
54:3a:7a:48:a4:fd:68:48:46:9d:a6:fe:0a:22:8f:ab:26:03:
4c:21:52:48:7e:07:d9:4c:eb:f1:8a:89:18:3d:82:91:14:6f:
dc:e0:12:fb:af:df:9b:7e:9d:ee:85:1e:ff:77:5d:ad:9a:f9:
d1:b4:54:56:e8:1d:d4:38:40:ea:65:c0:c9:90:c8:2d:e9:ba:
62:7e:b1:92
-----BEGIN CERTIFICATE-----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Generated at Thu Jan 11 18:15:43 2024 by rpki-client on console-ams.rpki-client.org