Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232312e302f32342d3234203d3e20383334.roa
File: 3138352e342e3232312e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: 0Yn8y/Z1Uoz4/FM+hIBB0HDd6An2scbTlDmFs7uD+SU=
Subject key identifier: 06:2E:85:F3:D8:87:BA:0E:5C:2B:EB:7A:00:44:C1:BC:8F:08:19:97
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 53182E128AA185A444CFB04D89FE009D20D0FF66
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232312e302f32342d3234203d3e20383334.roa
Signing time: Sat 18 May 2024 00:02:51 +0000
ROA not before: Fri 17 May 2024 23:57:51 +0000
ROA not after: Sat 17 May 2025 00:02:51 +0000
asID: 834
IP address blocks: 185.4.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 May 2024 08:42:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:18:2e:12:8a:a1:85:a4:44:cf:b0:4d:89:fe:00:9d:20:d0:ff:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: May 17 23:57:51 2024 GMT
Not After : May 17 00:02:51 2025 GMT
Subject: CN=062E85F3D887BA0E5C2BEB7A0044C1BC8F081997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:7b:cf:74:cf:eb:41:e0:3c:4c:f6:7c:5f:cd:
0f:b0:c4:40:d9:49:a4:d2:01:ee:70:60:b6:61:17:
c4:d3:b2:2d:52:ac:19:18:8e:fc:ff:23:f2:0c:05:
4d:ae:3d:a3:17:52:22:7d:dd:5d:aa:6c:11:b0:70:
76:f8:e1:69:90:12:7b:15:aa:13:af:17:37:71:8c:
a1:71:83:49:a2:48:f6:24:c6:f9:53:93:67:55:2d:
b2:ef:b0:92:91:d7:41:a1:73:da:18:8b:c7:62:a1:
70:58:34:aa:75:bc:8a:1c:13:49:46:f3:24:15:3b:
50:c5:fc:71:03:35:4d:bd:c3:d8:57:7a:c0:ea:4d:
06:4f:c5:59:4b:f9:fb:8d:b7:be:45:89:69:36:1a:
14:fd:6c:3b:b0:3e:79:32:88:a8:75:53:3f:66:79:
4f:e6:ff:ba:91:d6:db:2d:40:df:ba:ab:d5:9f:4f:
ae:97:94:49:d5:11:84:5f:fb:00:c4:01:31:59:53:
67:9d:c0:68:25:47:cd:ec:6b:ef:35:c1:cd:cd:19:
1d:d2:07:05:37:41:0c:88:18:38:10:c5:53:f3:85:
b6:11:19:62:b7:62:7b:7b:0f:1a:c8:9b:1c:23:a9:
05:a2:ca:38:d9:6d:98:c8:93:71:2a:0a:56:65:2e:
a4:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:2E:85:F3:D8:87:BA:0E:5C:2B:EB:7A:00:44:C1:BC:8F:08:19:97
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232312e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.221.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:50:23:ab:8a:2b:e8:1f:5a:75:89:96:c0:77:aa:86:35:d1:
1b:3a:0f:7d:c7:e6:03:06:66:27:62:93:f7:37:bc:0f:6c:ff:
af:dc:ac:f7:ce:48:1a:d5:b3:61:38:83:ed:34:24:9e:3e:72:
7f:d1:93:a2:c3:96:16:39:d7:af:67:85:99:1b:cf:2e:fb:57:
68:de:36:79:0b:2d:40:96:f5:f9:9e:77:42:03:f3:18:2b:66:
a3:da:c3:86:04:9a:f2:d7:7d:f3:cf:90:48:90:51:b1:4a:5a:
d9:d4:b3:ed:24:89:c5:94:dc:39:e0:0c:c5:b3:ee:c1:d7:ca:
0a:b4:9b:1e:dc:e4:45:88:d9:98:23:e0:4e:2f:b1:42:98:05:
6b:5b:8f:26:13:7e:e5:8a:c6:a8:e1:df:c8:24:84:c9:65:53:
04:ba:2c:ac:38:04:b6:68:1e:41:8b:01:fe:41:b1:f2:d1:95:
4c:e4:f8:33:73:69:24:2a:01:da:c0:8e:15:e7:60:b9:ed:45:
e9:c4:e8:9f:d4:55:b3:d8:46:c6:fa:80:cc:cf:07:ca:cb:d7:
34:07:02:7c:db:32:a0:96:f7:81:43:66:d1:53:bf:08:ca:d6:
f9:52:b1:45:b4:f6:4d:7e:b5:63:c6:fe:5a:dc:6b:c2:93:63:
8b:a5:81:e1
-----BEGIN CERTIFICATE-----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Generated at Wed May 22 12:04:24 2024 by rpki-client on console-fra.rpki-client.org