Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b17479d1-95d8-4a14-8ee2-de100c66774c/0/3138352e3232392e3232312e302f32342d3234203d3e20343030353039.roa
File: 3138352e3232392e3232312e302f32342d3234203d3e20343030353039.roa (raw, json)
Hash identifier: X6ivtvs5T920O2W1yNabPBWT3TyORvBi1cqlnLVxZ7U=
Subject key identifier: 39:E4:F8:9F:78:FB:13:A6:CA:AC:61:78:A9:DB:D1:0F:43:82:27:96
Certificate issuer: /CN=bad36cdaf43498a668b553f581ccd281ac1a8cd7
Certificate serial: 101D7AF0AF158BC79BDFCD918A9C16A24D2A4BAD
Authority key identifier: BA:D3:6C:DA:F4:34:98:A6:68:B5:53:F5:81:CC:D2:81:AC:1A:8C:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/utNs2vQ0mKZotVP1gczSgawajNc.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b17479d1-95d8-4a14-8ee2-de100c66774c/0/3138352e3232392e3232312e302f32342d3234203d3e20343030353039.roa
Signing time: Wed 07 Jun 2023 06:45:40 +0000
ROA not before: Wed 07 Jun 2023 06:40:40 +0000
ROA not after: Wed 05 Jun 2024 06:45:40 +0000
asID: 400509
IP address blocks: 185.229.221.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:1d:7a:f0:af:15:8b:c7:9b:df:cd:91:8a:9c:16:a2:4d:2a:4b:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bad36cdaf43498a668b553f581ccd281ac1a8cd7
Validity
Not Before: Jun 7 06:40:40 2023 GMT
Not After : Jun 5 06:45:40 2024 GMT
Subject: CN=39E4F89F78FB13A6CAAC6178A9DBD10F43822796
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:a5:5d:d0:23:19:dd:04:f6:4e:f9:74:28:b0:
80:91:14:72:f6:22:df:7b:21:e3:c5:a1:4e:bd:b0:
ff:1d:a6:04:33:ef:ce:23:3d:46:96:01:cb:6d:19:
9f:82:59:7f:e1:84:05:28:2b:ac:55:74:ab:de:e1:
b9:f7:98:52:6c:1d:f5:3d:ae:c4:b3:fe:76:60:aa:
38:08:c0:fb:00:dc:a4:3d:24:d3:7d:ec:df:c8:9a:
34:64:55:40:a9:59:f7:97:a6:18:a5:37:7f:89:1d:
36:b1:b7:df:59:ff:2c:26:f7:73:cc:52:75:73:ee:
dc:a2:92:98:66:ee:5b:66:07:8b:8d:63:02:a3:b4:
a3:46:96:17:54:5a:58:eb:53:46:5f:c4:dc:13:59:
5a:f3:6d:4e:4c:2a:de:38:0d:22:4f:84:3e:70:a5:
3f:38:c6:95:db:66:c3:6c:ff:61:c5:99:2a:4b:25:
19:18:b2:05:93:34:2e:10:84:a1:57:a4:e7:c1:0c:
b4:1c:32:55:10:89:20:ba:f3:aa:7e:55:2d:ec:b2:
cd:e7:17:97:94:99:bc:63:fd:eb:57:77:98:b8:24:
17:4c:e4:45:4d:bc:9d:08:6d:21:05:e3:f8:a1:c6:
62:bc:c1:e9:fb:1c:95:d3:e5:3d:46:82:f2:2e:b7:
ff:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:E4:F8:9F:78:FB:13:A6:CA:AC:61:78:A9:DB:D1:0F:43:82:27:96
X509v3 Authority Key Identifier:
keyid:BA:D3:6C:DA:F4:34:98:A6:68:B5:53:F5:81:CC:D2:81:AC:1A:8C:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b17479d1-95d8-4a14-8ee2-de100c66774c/0/BAD36CDAF43498A668B553F581CCD281AC1A8CD7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/utNs2vQ0mKZotVP1gczSgawajNc.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b17479d1-95d8-4a14-8ee2-de100c66774c/0/3138352e3232392e3232312e302f32342d3234203d3e20343030353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.221.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:0e:cf:30:8c:e2:c4:9b:a7:3b:ff:4a:00:b4:23:3e:e6:32:
bc:94:d4:b6:bb:cf:36:0c:96:ee:89:63:9a:22:dd:70:39:95:
28:7f:42:e0:69:21:7e:aa:e0:0b:43:d8:c1:aa:bc:86:72:14:
5c:f4:f7:d3:86:bd:73:08:65:13:4b:c2:ca:68:08:2a:7f:9d:
d1:c9:08:d8:f7:b6:f9:cc:32:8b:3f:b0:69:7c:e4:ed:c0:c3:
63:7a:86:41:ce:5a:be:73:73:b2:77:4e:5f:a3:d4:8a:1d:f6:
0e:e6:76:2b:f9:ca:38:f8:1f:d0:be:56:32:09:89:e6:a6:48:
b9:d3:33:25:b2:41:e2:15:84:f9:e6:6c:8d:34:41:c7:c1:6d:
a4:df:9b:d8:2c:62:e0:17:76:46:a4:d1:24:c0:40:76:39:67:
8d:37:0a:97:ba:51:d2:01:e4:1d:3d:c0:6d:bb:08:d5:89:98:
17:2e:4b:c3:02:79:d6:ef:dc:27:64:2a:bf:e1:0e:ec:05:0a:
54:d8:5a:46:34:c9:ec:78:5b:52:57:3e:7b:d3:e9:0c:e4:1c:
71:7e:b6:cc:c4:23:a5:84:a9:0a:2f:a9:70:a4:70:62:84:04:
48:e5:b9:a3:70:91:d4:ff:1e:ab:2c:81:d4:a4:ea:42:a1:32:
21:8c:14:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:59 2023 by rpki-client on console-fra.rpki-client.org