Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232322e302f32332d3234203d3e20383334.roa
File: 3138352e342e3232322e302f32332d3234203d3e20383334.roa (raw, json)
Hash identifier: /8ixSWo66kzvuh7o/RPMoQz+/sWHYuKGK+sibHkFFZ0=
Subject key identifier: 31:94:3E:5D:B1:69:81:A3:36:25:0C:F1:A6:D0:39:21:6D:DB:E3:30
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 6D7F4ACC0EC79FC426B4C5F700581AD87241FBF0
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232322e302f32332d3234203d3e20383334.roa
Signing time: Wed 16 Oct 2024 00:01:31 +0000
ROA not before: Tue 15 Oct 2024 23:56:31 +0000
ROA not after: Wed 15 Oct 2025 00:01:31 +0000
asID: 834
IP address blocks: 185.4.222.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Oct 2024 07:44:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:7f:4a:cc:0e:c7:9f:c4:26:b4:c5:f7:00:58:1a:d8:72:41:fb:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Oct 15 23:56:31 2024 GMT
Not After : Oct 15 00:01:31 2025 GMT
Subject: CN=31943E5DB16981A336250CF1A6D039216DDBE330
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:46:9e:52:b2:a4:2b:ed:2c:d1:66:7e:93:f6:
d5:9d:5a:a5:75:66:55:3b:44:c8:34:c9:ad:cf:89:
34:ec:89:f9:6f:5b:c3:d6:f1:f0:a1:2b:3e:05:a8:
3f:04:77:b0:9a:20:00:d7:16:04:71:e1:c3:d1:de:
ab:21:a3:02:72:33:cc:53:a5:9c:ae:9b:af:71:0d:
05:39:55:23:75:8a:51:5a:71:99:a0:51:8b:97:a2:
e1:03:57:48:3e:f6:3f:05:c4:2e:f0:7a:6f:53:1f:
18:b1:40:92:f2:c6:dd:9c:06:d0:dd:4a:39:bc:13:
5f:fa:67:cd:12:aa:44:65:65:f6:1c:5a:90:97:0a:
cf:c6:7c:c0:9b:06:fb:fb:ae:bc:8f:6e:b8:4e:56:
94:b0:5a:5e:10:e5:f1:ad:aa:09:a2:bf:ee:6a:c6:
ad:d6:21:6c:d1:7c:29:38:10:96:68:f9:59:78:c1:
76:11:31:8c:02:a2:e6:4c:40:df:5d:33:c4:6d:6f:
6b:67:9b:1c:9e:44:3e:41:41:d0:87:c4:10:c9:8a:
de:72:3b:8f:6c:7d:3b:f1:56:5a:c5:53:a4:2d:94:
75:ba:0e:f0:26:89:dc:c5:b6:ae:c0:b2:3b:06:33:
50:7a:55:02:6f:1b:ec:cb:a2:6d:fe:b7:99:8d:d8:
87:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:94:3E:5D:B1:69:81:A3:36:25:0C:F1:A6:D0:39:21:6D:DB:E3:30
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232322e302f32332d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.222.0/23
Signature Algorithm: sha256WithRSAEncryption
84:93:6d:16:16:ef:b0:20:2f:bf:dc:e2:73:4f:e8:8b:12:b6:
51:b8:f1:d2:e1:e1:2d:58:cd:38:d9:86:cc:d2:0c:ed:7f:11:
a7:3f:19:3c:70:da:eb:61:db:0a:bc:64:6b:5d:13:a0:0f:00:
c6:01:ef:f4:64:85:21:23:7c:f5:86:2f:d3:77:dc:38:88:f4:
40:06:d4:af:58:df:7a:68:5a:16:38:08:48:5f:63:fc:b0:85:
99:13:a6:2d:ce:4c:76:51:c5:46:e6:f2:76:fb:eb:c4:fe:ba:
c5:6b:53:f7:aa:a4:68:1f:0c:1d:2c:c5:22:a6:20:17:20:aa:
8d:58:98:ed:57:75:cb:30:ba:1e:31:ea:f2:1a:75:f8:2d:b5:
d8:bc:4f:e9:c4:56:31:03:6b:4d:27:07:40:46:4e:9e:a9:02:
19:ef:94:f8:e7:36:2f:ad:b8:2c:96:db:b7:99:dd:4a:fe:94:
cb:05:c6:4a:8d:02:70:3c:77:ef:5d:80:e7:cd:9b:1c:05:a3:
d3:39:11:5f:92:ce:56:26:c2:db:65:09:36:5a:4f:8f:2d:00:
be:4b:93:28:05:32:50:59:0f:4d:54:3d:97:97:76:dd:12:90:
b1:98:e6:ad:16:ed:1b:97:f8:1e:b7:5e:3f:c6:c9:5d:50:41:
2b:9f:fc:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:21:27 2025 by rpki-client