Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232322e302f32332d3234203d3e20323136323235.roa
File: 3138352e342e3232322e302f32332d3234203d3e20323136323235.roa (raw, json)
Hash identifier: jx2moS2E8JkIDlhg2q0dSK5UHHpkchHQ9pdoerfSEGk=
Subject key identifier: C9:43:3B:76:FC:88:BA:50:CA:35:5A:5F:E2:87:84:3B:32:D6:1A:98
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 2C416363CFF6ED483DEAC6EF8883B1EB47040FB3
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232322e302f32332d3234203d3e20323136323235.roa
Signing time: Thu 29 Aug 2024 13:05:04 +0000
ROA not before: Thu 29 Aug 2024 13:00:04 +0000
ROA not after: Thu 28 Aug 2025 13:05:04 +0000
asID: 216225
IP address blocks: 185.4.222.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 16 Oct 2024 00:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:41:63:63:cf:f6:ed:48:3d:ea:c6:ef:88:83:b1:eb:47:04:0f:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Aug 29 13:00:04 2024 GMT
Not After : Aug 28 13:05:04 2025 GMT
Subject: CN=C9433B76FC88BA50CA355A5FE287843B32D61A98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:46:e8:f5:9e:7c:40:dd:04:4e:f2:38:76:07:
a3:ed:c6:0f:ea:f5:13:2b:64:6b:d3:d5:23:75:d8:
00:be:91:1c:3c:fe:00:85:19:cb:74:0c:98:c3:dd:
73:64:22:d7:1b:60:73:60:0b:ff:fc:32:b5:8a:b5:
c4:f1:b5:38:33:26:ec:94:af:b5:c3:79:bf:2f:90:
03:97:dd:1f:91:7f:39:a6:94:01:c4:c2:6e:6c:18:
57:f3:59:76:a9:27:08:49:ad:2b:c4:33:04:d9:0e:
75:eb:5c:48:0a:43:9c:f9:fd:f1:82:24:0b:ec:2a:
e2:a0:40:ab:5f:69:0e:f7:c2:9d:8c:e4:b5:f6:23:
eb:58:df:cb:08:c6:87:55:6b:c4:7a:80:65:a8:0d:
6f:0f:f7:9a:ab:f6:96:d2:54:95:06:ed:fa:2d:aa:
8b:ef:de:fd:e5:2c:c1:7c:4b:cf:8d:fe:e2:29:63:
9b:fb:39:38:c3:1e:60:3a:6d:3d:22:d9:98:e8:31:
c8:7f:51:eb:43:70:58:d6:3f:8e:35:12:1b:69:3a:
6b:47:51:4e:4b:95:73:52:98:20:d5:d0:a0:1a:6f:
38:05:01:06:38:4b:3d:36:dc:94:9e:52:e4:4a:ff:
d8:2d:e3:e7:ee:97:25:0e:06:94:51:bb:6c:bc:17:
0a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:43:3B:76:FC:88:BA:50:CA:35:5A:5F:E2:87:84:3B:32:D6:1A:98
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232322e302f32332d3234203d3e20323136323235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.222.0/23
Signature Algorithm: sha256WithRSAEncryption
66:0a:a8:49:86:05:68:83:ad:d7:1d:fc:0b:fe:75:69:4f:56:
5e:a5:f1:21:74:e9:bf:16:b3:e1:4e:6b:9f:72:65:71:80:a0:
af:ec:69:77:9d:e1:b5:33:5f:90:a9:67:42:7b:57:40:6a:f4:
d0:c3:45:31:39:4f:5a:89:24:4a:45:ea:c1:ff:f5:1a:b8:19:
3b:04:b7:d4:41:a7:5e:25:bb:ec:64:ee:39:f2:71:8c:e7:dd:
07:9d:83:cc:fc:b7:00:05:8e:c9:bf:68:19:45:41:33:7e:b2:
d6:28:3a:5c:fe:6e:b6:2d:3b:61:3a:74:f6:2f:97:0b:f6:45:
eb:71:9e:8a:74:f3:95:5d:2c:40:8d:0e:75:68:2a:89:a9:e6:
f1:1d:53:91:6d:e1:19:4f:dc:56:0d:99:28:6a:de:a5:08:c8:
fd:99:34:a2:07:5d:d1:7d:e4:98:61:6f:29:b0:63:e4:24:c8:
1e:37:e8:14:d1:e9:07:2e:e3:04:f3:ee:a6:5b:ac:02:31:a4:
71:d3:48:b1:66:21:ef:4a:7b:bd:00:cb:9e:07:b3:e6:60:1c:
bb:d4:a3:1f:95:98:e0:a8:32:2e:f9:1b:75:57:04:e9:b6:c8:
a4:e8:08:93:5f:04:a8:a2:df:2f:2a:04:aa:ec:0f:d7:f9:9a:
20:e9:72:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:15:57 2025 by rpki-client