Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232312e302f32342d3234203d3e20383334.roa
File: 3138352e342e3232312e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: 3iuPRy7nQHdIixgEhXA9sanqVmD5Rk3eyWsqI5iZ0us=
Subject key identifier: E7:37:BD:16:D4:01:78:75:87:AF:C3:2C:C7:CB:1B:7E:B0:37:8B:52
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 06442EB599F054503563A0BD294A68E414718FD4
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232312e302f32342d3234203d3e20383334.roa
Signing time: Sat 22 Jun 2024 00:02:09 +0000
ROA not before: Fri 21 Jun 2024 23:57:09 +0000
ROA not after: Sat 21 Jun 2025 00:02:09 +0000
asID: 834
IP address blocks: 185.4.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 23 Jun 2024 13:47:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:44:2e:b5:99:f0:54:50:35:63:a0:bd:29:4a:68:e4:14:71:8f:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Jun 21 23:57:09 2024 GMT
Not After : Jun 21 00:02:09 2025 GMT
Subject: CN=E737BD16D401787587AFC32CC7CB1B7EB0378B52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:45:b4:15:88:8d:2b:e4:2f:e1:af:f0:77:14:
27:23:d5:6a:c6:00:db:bc:28:38:a4:3f:97:f3:4e:
37:87:6b:f2:4c:b3:24:67:6a:b1:be:42:b3:23:d4:
11:ff:56:ea:e1:85:91:4c:31:5e:f2:07:90:d6:4d:
06:30:7b:1d:ac:0b:c9:91:03:7a:30:30:d7:3a:57:
dd:af:5b:8d:2d:96:67:5a:1b:4c:08:68:d2:e6:67:
df:6f:31:ae:60:12:46:3e:12:8e:2f:aa:57:0a:ef:
e8:5e:eb:af:f0:9a:4e:b6:f0:5a:65:fb:28:d9:26:
2b:3a:44:db:60:a2:c2:1b:ff:9b:6a:ff:65:5a:39:
55:da:53:78:3f:80:2e:08:54:c2:26:a9:f8:c1:de:
a8:ff:67:a6:34:a3:51:08:b0:a5:39:17:f2:7a:6a:
85:23:82:e6:72:41:4a:44:4f:e1:60:30:67:a7:07:
ac:07:3c:66:0d:20:22:b4:de:bc:15:51:8c:7f:94:
a7:d1:fc:0d:28:2d:b5:d1:97:83:fe:cc:79:e2:99:
44:68:19:2e:f8:5d:28:8f:b3:76:d3:c8:64:6e:d1:
f7:3e:a9:95:63:9a:0e:33:c8:14:82:a2:79:bc:64:
c2:41:86:b4:76:3f:4b:b1:cd:ee:18:f0:87:60:fd:
b7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:37:BD:16:D4:01:78:75:87:AF:C3:2C:C7:CB:1B:7E:B0:37:8B:52
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232312e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.221.0/24
Signature Algorithm: sha256WithRSAEncryption
34:90:f2:49:c2:97:4a:bf:83:8e:c1:b4:1e:63:d4:ed:7e:a6:
c0:93:82:6a:0e:90:f5:fb:83:ec:3e:20:a9:22:b6:e5:bf:82:
56:06:1d:da:57:46:bb:dc:f8:40:2a:b3:18:7b:bb:a3:74:d0:
12:e6:9e:f1:f3:03:53:04:24:45:f3:2a:56:65:e1:15:db:82:
61:2f:ec:60:50:2b:2b:12:fa:26:9a:8a:ee:00:fc:5e:6a:54:
45:49:50:ed:a2:95:42:94:17:94:cd:d3:c0:f4:f3:b4:65:2d:
1d:5d:35:7f:b7:fd:f5:12:d9:d6:a3:26:fe:bd:7d:f0:3b:f4:
62:c8:99:c2:df:f5:4f:a1:e0:5e:0b:e8:d6:68:49:4b:53:c9:
c5:c1:6c:65:30:c3:50:95:ac:e6:9b:89:fd:d7:3f:be:ed:7f:
ac:1e:2f:a1:c4:3c:83:3f:c0:2d:62:ad:70:89:94:df:07:0a:
31:70:62:5c:d3:1f:a4:3a:07:b2:b3:03:e6:b8:38:2e:07:b7:
ae:5f:5a:c7:eb:2f:51:a5:11:86:50:e2:0c:d5:90:c1:b7:1d:
f9:78:55:18:78:e8:28:0b:b6:7e:5c:bb:c4:a7:73:17:bb:16:
1a:15:7e:14:71:2e:6b:20:1b:10:ea:3a:67:df:30:1a:d6:dc:
4b:58:4e:c1
-----BEGIN CERTIFICATE-----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Generated at Sun Jun 23 19:21:43 2024 by rpki-client on console-ams.rpki-client.org