Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b17479d1-95d8-4a14-8ee2-de100c66774c/0/3138352e3232392e3232332e302f32342d3234203d3e203631333137.roa
File: 3138352e3232392e3232332e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: 9xDIzCs0tDFerWSKSRrtYAJs2jb49uy6QqtGngmVTCM=
Subject key identifier: F2:E4:B0:BA:8E:2E:5D:18:22:A6:70:4C:DC:BF:C5:B7:3D:AB:1D:8E
Certificate issuer: /CN=bad36cdaf43498a668b553f581ccd281ac1a8cd7
Certificate serial: 542FC05258C469C68184112698D6B41082298FF7
Authority key identifier: BA:D3:6C:DA:F4:34:98:A6:68:B5:53:F5:81:CC:D2:81:AC:1A:8C:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/utNs2vQ0mKZotVP1gczSgawajNc.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b17479d1-95d8-4a14-8ee2-de100c66774c/0/3138352e3232392e3232332e302f32342d3234203d3e203631333137.roa
Signing time: Wed 07 Jun 2023 06:45:40 +0000
ROA not before: Wed 07 Jun 2023 06:40:40 +0000
ROA not after: Wed 05 Jun 2024 06:45:40 +0000
asID: 61317
IP address blocks: 185.229.223.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:2f:c0:52:58:c4:69:c6:81:84:11:26:98:d6:b4:10:82:29:8f:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bad36cdaf43498a668b553f581ccd281ac1a8cd7
Validity
Not Before: Jun 7 06:40:40 2023 GMT
Not After : Jun 5 06:45:40 2024 GMT
Subject: CN=F2E4B0BA8E2E5D1822A6704CDCBFC5B73DAB1D8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e2:9d:2a:28:c5:f4:c4:d3:98:ba:db:89:67:
07:0b:0d:cb:ab:af:5a:5d:c1:52:ff:7f:63:31:5b:
93:06:f0:74:f4:c4:84:0e:ec:fa:cd:31:18:9e:60:
17:52:15:3b:fc:d1:fe:de:be:f4:6c:d7:45:f9:6e:
eb:70:72:07:c7:3e:8a:2d:97:28:47:5b:99:5e:d6:
f2:e7:33:f0:cc:78:6b:db:60:82:08:52:cc:99:76:
a9:1a:55:7d:76:f2:97:26:b7:69:85:d2:da:ea:e9:
f8:83:40:c2:d1:6e:a8:cc:5c:ea:34:01:47:48:29:
eb:13:c5:d9:1f:bc:2d:d6:ce:f9:f1:80:e6:c6:9a:
80:17:4c:42:71:80:a2:7c:30:9b:d5:b5:14:bd:fa:
b8:99:5b:7a:dc:7e:f2:b5:b9:a7:6d:56:29:bf:55:
b9:1e:47:16:fb:f6:fa:fc:6b:ac:fd:c0:f6:32:65:
0a:c7:be:e4:3b:43:7c:d1:83:d0:1d:a7:9d:ba:9e:
56:f3:7f:63:f4:74:99:ca:08:e4:21:db:1c:1b:6d:
b3:77:fb:b5:2c:5e:36:fc:bb:8f:e8:fa:07:07:37:
fd:be:a4:bb:fc:5c:d3:b1:02:b6:56:ed:c9:cf:0d:
49:84:ce:e7:8d:d4:70:0a:43:b7:45:32:0d:b0:c3:
0f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:E4:B0:BA:8E:2E:5D:18:22:A6:70:4C:DC:BF:C5:B7:3D:AB:1D:8E
X509v3 Authority Key Identifier:
keyid:BA:D3:6C:DA:F4:34:98:A6:68:B5:53:F5:81:CC:D2:81:AC:1A:8C:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b17479d1-95d8-4a14-8ee2-de100c66774c/0/BAD36CDAF43498A668B553F581CCD281AC1A8CD7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/utNs2vQ0mKZotVP1gczSgawajNc.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b17479d1-95d8-4a14-8ee2-de100c66774c/0/3138352e3232392e3232332e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.223.0/24
Signature Algorithm: sha256WithRSAEncryption
36:85:e1:7f:67:10:7d:44:c2:c1:98:99:22:06:87:ae:f6:20:
a9:89:56:b9:04:ce:05:bb:00:26:0a:fb:11:6e:da:99:e3:23:
98:ef:d0:46:1e:56:8d:b3:47:41:22:dd:86:47:be:76:25:18:
00:ee:15:b7:1f:42:dd:90:75:fe:9b:af:dc:39:78:32:de:94:
31:58:7c:06:84:91:70:47:c3:e7:6d:a5:f2:83:62:76:64:a4:
d5:75:90:5e:ae:67:b3:13:78:1b:d7:47:5b:cc:8f:6b:fa:5c:
55:d6:f9:21:61:db:e0:05:1d:cb:1d:13:5f:42:e8:af:c5:d9:
0b:de:6c:21:3a:51:f3:67:9c:52:6c:6b:79:6a:17:a1:ec:ef:
8c:ca:5e:04:82:d4:45:74:19:2b:9e:23:37:5b:44:f6:b4:b1:
71:e4:d9:b4:29:c4:86:5d:d3:03:89:ab:d9:47:9d:65:1f:19:
3a:84:c2:bd:36:56:f9:4e:02:45:3d:ad:2d:6f:8f:13:02:2e:
e9:3c:4b:25:56:fa:20:3c:75:68:ca:ee:18:33:c8:38:a4:2b:
63:f8:00:4a:50:af:a8:c5:a3:7b:5f:82:ca:07:9d:ef:b4:29:
45:b6:be:a5:37:89:1e:20:7d:04:6c:4d:92:24:db:3b:40:84:
7c:41:54:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 21 11:06:47 2023 by rpki-client on console-fra.rpki-client.org