Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b17479d1-95d8-4a14-8ee2-de100c66774c/0/3138352e3232392e3232312e302f32342d3234203d3e2031323339.roa
File: 3138352e3232392e3232312e302f32342d3234203d3e2031323339.roa (raw, json)
Hash identifier: nZXS6Y59uMwJcAc6mtN56qzO8nWZKAGHbMSg3Qmcbbg=
Subject key identifier: 1B:CD:65:B8:AD:6C:8D:64:8C:A8:2F:09:24:11:46:E4:DF:ED:80:0E
Certificate issuer: /CN=bad36cdaf43498a668b553f581ccd281ac1a8cd7
Certificate serial: 1055F4F01C7167E9FF1D199F8BB46216C5B9D1B8
Authority key identifier: BA:D3:6C:DA:F4:34:98:A6:68:B5:53:F5:81:CC:D2:81:AC:1A:8C:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/utNs2vQ0mKZotVP1gczSgawajNc.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b17479d1-95d8-4a14-8ee2-de100c66774c/0/3138352e3232392e3232312e302f32342d3234203d3e2031323339.roa
Signing time: Thu 15 Jun 2023 14:46:19 +0000
ROA not before: Thu 15 Jun 2023 14:41:19 +0000
ROA not after: Thu 13 Jun 2024 14:46:19 +0000
asID: 1239
IP address blocks: 185.229.221.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:55:f4:f0:1c:71:67:e9:ff:1d:19:9f:8b:b4:62:16:c5:b9:d1:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bad36cdaf43498a668b553f581ccd281ac1a8cd7
Validity
Not Before: Jun 15 14:41:19 2023 GMT
Not After : Jun 13 14:46:19 2024 GMT
Subject: CN=1BCD65B8AD6C8D648CA82F09241146E4DFED800E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:95:63:c7:f8:d4:2c:e2:4a:6e:11:dc:25:c7:
a0:5e:87:bb:30:1e:e0:49:4c:c4:57:5c:19:dc:6a:
1d:92:d8:9b:53:34:fd:48:1e:50:bd:af:42:0a:de:
f2:91:cb:ed:77:3a:3e:c6:cf:f4:8b:86:66:ad:8d:
8c:d6:a6:87:ab:12:fa:f6:66:5b:df:d2:47:35:39:
3b:3b:05:ba:ff:50:71:ee:d8:86:a1:3e:c6:7c:76:
ee:90:ab:24:c4:e6:b0:f9:8b:dd:05:91:54:38:23:
af:91:25:df:0c:7f:3c:4c:19:72:88:a6:67:3d:b3:
e1:41:fe:11:22:7c:9d:1b:d7:ac:71:c6:67:1f:ef:
f3:d5:5a:a8:74:20:4f:30:7e:1a:0c:0b:2c:59:c9:
b7:9a:25:cf:10:5f:e7:70:54:8d:d4:f7:d9:67:63:
e1:f5:27:00:a7:56:25:8c:b5:ee:79:ad:ca:a4:51:
50:ca:d6:47:a9:b7:42:db:f2:41:f6:89:de:6f:79:
38:15:ad:ea:12:1f:14:75:10:57:a8:25:0f:fa:99:
9d:20:9e:d2:95:31:f0:c8:7c:96:48:75:1c:f8:7c:
98:91:79:ce:0f:4c:87:6a:f6:eb:c8:ec:a8:2b:6b:
4b:0e:6c:5f:3e:a4:09:42:bb:45:2b:22:7a:5f:05:
11:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:CD:65:B8:AD:6C:8D:64:8C:A8:2F:09:24:11:46:E4:DF:ED:80:0E
X509v3 Authority Key Identifier:
keyid:BA:D3:6C:DA:F4:34:98:A6:68:B5:53:F5:81:CC:D2:81:AC:1A:8C:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b17479d1-95d8-4a14-8ee2-de100c66774c/0/BAD36CDAF43498A668B553F581CCD281AC1A8CD7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/utNs2vQ0mKZotVP1gczSgawajNc.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b17479d1-95d8-4a14-8ee2-de100c66774c/0/3138352e3232392e3232312e302f32342d3234203d3e2031323339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.221.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:a9:bc:d3:9d:10:4a:f6:b7:d4:b3:49:80:f8:b5:b1:bf:bb:
20:2b:b9:3b:c4:62:69:53:16:30:03:b0:20:f8:b4:23:ca:40:
9e:3c:a6:ed:ec:d8:f7:58:ad:0f:ce:6a:2e:80:01:55:bb:f6:
b4:9b:11:52:71:73:4d:e6:7a:6c:12:5d:5c:5b:fb:33:20:4b:
ce:ee:dc:eb:7b:d8:06:32:8b:e4:9b:ce:63:c9:95:a6:02:91:
c5:c3:89:78:79:ae:cb:4d:60:d0:bf:fe:e0:0b:db:01:db:0b:
d8:52:a7:86:94:75:f6:a6:0c:62:06:5d:05:17:9c:a7:d9:43:
57:52:47:1e:fe:03:eb:1b:a7:01:33:3c:78:63:e2:a1:2e:3f:
54:5b:b9:f3:11:75:50:01:cf:fd:84:cf:ea:a3:cf:87:c9:89:
10:6f:ac:56:06:83:54:6f:f0:a8:b7:07:c1:91:22:49:96:5d:
26:b5:fa:29:df:f3:e2:e9:78:fb:9e:b4:01:eb:25:49:95:94:
d0:c3:64:a2:2c:e4:df:84:4a:82:dc:75:5f:32:e1:5c:b3:4a:
f3:63:b5:87:b8:4c:cf:f6:63:dd:1b:b2:36:fe:21:07:14:af:
cb:d4:aa:97:a7:d9:05:d2:5c:50:ba:21:c5:91:52:c5:74:88:
0e:07:76:5a
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUEFX08BxxZ+n/HRmfi7RiFsW50bgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYmFkMzZjZGFmNDM0OThhNjY4YjU1M2Y1ODFjY2QyODFh
YzFhOGNkNzAeFw0yMzA2MTUxNDQxMTlaFw0yNDA2MTMxNDQ2MTlaMDMxMTAvBgNV
BAMTKDFCQ0Q2NUI4QUQ2QzhENjQ4Q0E4MkYwOTI0MTE0NkU0REZFRDgwMEUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSlWPH+NQs4kpuEdwlx6Beh7sw
HuBJTMRXXBncah2S2JtTNP1IHlC9r0IK3vKRy+13Oj7Gz/SLhmatjYzWpoerEvr2
Zlvf0kc1OTs7Bbr/UHHu2IahPsZ8du6QqyTE5rD5i90FkVQ4I6+RJd8MfzxMGXKI
pmc9s+FB/hEifJ0b16xxxmcf7/PVWqh0IE8wfhoMCyxZybeaJc8QX+dwVI3U99ln
Y+H1JwCnViWMte55rcqkUVDK1kept0Lb8kH2id5veTgVreoSHxR1EFeoJQ/6mZ0g
ntKVMfDIfJZIdRz4fJiRec4PTIdq9uvI7Kgra0sObF8+pAlCu0UrInpfBRGhAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUG81luK1sjWSMqC8JJBFG5N/tgA4wHwYDVR0j
BBgwFoAUutNs2vQ0mKZotVP1gczSgawajNcwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYjE3NDc5ZDEtOTVkOC00YTE0LThlZTItZGUxMDBjNjY3
NzRjLzAvQkFEMzZDREFGNDM0OThBNjY4QjU1M0Y1ODFDQ0QyODFBQzFBOENENy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3V0TnMydlEwbUtab3RWUDFnY3pTZ2F3
YWpOYy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYjE3NDc5ZDEt
OTVkOC00YTE0LThlZTItZGUxMDBjNjY3NzRjLzAvMzEzODM1MmUzMjMyMzkyZTMy
MzIzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzIzMzM5LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
ueXdMA0GCSqGSIb3DQEBCwUAA4IBAQAqqbzTnRBK9rfUs0mA+LWxv7sgK7k7xGJp
UxYwA7Ag+LQjykCePKbt7Nj3WK0PzmougAFVu/a0mxFScXNN5npsEl1cW/szIEvO
7tzre9gGMovkm85jyZWmApHFw4l4ea7LTWDQv/7gC9sB2wvYUqeGlHX2pgxiBl0F
F5yn2UNXUkce/gPrG6cBMzx4Y+KhLj9UW7nzEXVQAc/9hM/qo8+HyYkQb6xWBoNU
b/CotwfBkSJJll0mtfop3/Pi6Xj7nrQB6yVJlZTQw2SiLOTfhEqC3HVfMuFcs0rz
Y7WHuEzP9mPdG7I2/iEHFK/L1KqXp9kF0lxQuiHFkVLFdIgOB3Za
-----END CERTIFICATE-----
Generated at Fri Sep 15 00:50:44 2023 by rpki-client on console-ams.rpki-client.org