Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137322e302f32342d3234203d3e20323133333035.roa
File: 3138352e3137322e3137322e302f32342d3234203d3e20323133333035.roa (raw, json)
Hash identifier: ne5eq/e/wt6Lej0xHWSR/Kj5FPhgZxEeezxuzg/CYlU=
Subject key identifier: 03:4E:C9:48:D8:03:66:88:15:8C:9E:1A:CE:56:F0:A7:FF:7A:A3:41
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 08DCD0DDE3E3106B6B029C6816798120135DA5B8
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137322e302f32342d3234203d3e20323133333035.roa
Signing time: Wed 22 Mar 2023 18:05:58 +0000
ROA not before: Wed 22 Mar 2023 18:00:58 +0000
ROA not after: Wed 20 Mar 2024 18:05:58 +0000
asID: 213305
IP address blocks: 185.172.172.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:dc:d0:dd:e3:e3:10:6b:6b:02:9c:68:16:79:81:20:13:5d:a5:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Mar 22 18:00:58 2023 GMT
Not After : Mar 20 18:05:58 2024 GMT
Subject: CN=034EC948D8036688158C9E1ACE56F0A7FF7AA341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:07:99:f3:5f:6e:04:67:91:e0:f6:a3:1b:90:
28:74:7c:9e:12:b9:c0:c3:9c:ec:77:5b:fb:d0:a2:
3a:7b:1a:e0:8a:48:02:cd:c5:47:f7:38:49:f0:25:
13:67:11:ae:3b:fd:6c:0e:b8:f8:e4:51:bc:cd:2a:
2c:b3:b6:10:d6:bf:c9:8a:e2:dc:5b:01:55:ca:88:
1f:ea:e9:cc:9d:86:54:ba:74:02:04:cd:02:be:d3:
0a:a8:85:a2:4d:dd:cb:fd:29:c8:a2:53:49:f4:b1:
da:e0:80:09:f3:87:8f:fc:80:1a:27:37:90:fc:39:
6c:55:d9:4f:cc:16:4e:33:04:da:f6:29:72:8b:04:
c7:30:15:52:99:d9:be:a3:df:1e:08:28:a4:88:3d:
8a:d2:4b:21:0f:7b:da:18:dc:66:7a:a4:6f:3b:b3:
fc:ec:44:41:18:cd:6f:35:74:ba:e8:fd:f1:25:0f:
a3:37:c1:0b:c9:bc:e8:fd:7d:eb:e0:69:12:53:58:
49:90:ab:d8:d8:d7:d2:00:ab:57:ff:a8:15:3b:86:
c8:75:67:ac:2e:f3:4a:eb:36:55:ff:7f:17:38:a0:
b9:69:e7:6c:2a:43:14:3f:3d:54:b9:70:80:50:10:
9e:73:ff:13:b9:fd:43:87:00:dc:fc:ed:ae:66:51:
79:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:4E:C9:48:D8:03:66:88:15:8C:9E:1A:CE:56:F0:A7:FF:7A:A3:41
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3138352e3137322e3137322e302f32342d3234203d3e20323133333035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.172.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:7f:a0:5e:a6:38:df:d2:19:e4:ea:42:33:6d:9f:34:90:3a:
7b:4e:68:21:15:c1:ef:88:c7:80:91:44:61:23:6d:14:0b:d7:
43:ce:2b:8f:7c:f5:9b:7b:8c:b8:19:53:74:dc:99:67:52:dc:
6c:5f:01:49:50:77:71:2c:57:a6:96:80:1f:3f:3a:f6:e5:11:
0f:94:37:ee:da:74:6b:97:09:69:03:0b:54:61:10:b6:79:e1:
e5:24:d4:96:1e:f6:95:5f:f0:90:ad:f8:0a:9e:d5:cb:82:54:
ed:c4:06:d7:e8:31:80:b9:fc:b0:a7:cc:03:61:d0:1c:51:d6:
ec:d6:c8:6c:92:bb:2e:9f:d7:17:9e:7d:27:45:00:7b:f1:3e:
4e:01:bb:29:67:50:00:f1:43:ed:fa:7d:1d:96:8e:d8:41:18:
5f:6d:85:1f:91:35:c1:c7:c1:ce:49:a8:07:3d:fa:08:fb:28:
b4:ed:37:17:c4:66:01:15:88:57:aa:07:68:ff:6d:81:f9:ad:
98:6e:99:ac:ce:ac:94:c8:6a:9d:f8:ce:ce:3a:18:0b:84:c9:
7b:c3:3e:86:8f:50:d5:e9:46:19:75:e2:ec:67:1a:74:22:e7:
9d:bf:43:ee:c3:03:ad:a5:db:ef:1f:0b:e6:1a:06:cb:6c:35:
6a:db:15:d5
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIUCNzQ3ePjEGtrApxoFnmBIBNdpbgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzBjYmQ3YTk4MTdlNDcwMDA5YzBmNDBlYTFlMzcwYWE3
OWI1ZmQ5MTAeFw0yMzAzMjIxODAwNThaFw0yNDAzMjAxODA1NThaMDMxMTAvBgNV
BAMTKDAzNEVDOTQ4RDgwMzY2ODgxNThDOUUxQUNFNTZGMEE3RkY3QUEzNDEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzB5nzX24EZ5Hg9qMbkCh0fJ4S
ucDDnOx3W/vQojp7GuCKSALNxUf3OEnwJRNnEa47/WwOuPjkUbzNKiyzthDWv8mK
4txbAVXKiB/q6cydhlS6dAIEzQK+0wqohaJN3cv9KciiU0n0sdrggAnzh4/8gBon
N5D8OWxV2U/MFk4zBNr2KXKLBMcwFVKZ2b6j3x4IKKSIPYrSSyEPe9oY3GZ6pG87
s/zsREEYzW81dLro/fElD6M3wQvJvOj9fevgaRJTWEmQq9jY19IAq1f/qBU7hsh1
Z6wu80rrNlX/fxc4oLlp52wqQxQ/PVS5cIBQEJ5z/xO5/UOHANz87a5mUXmxAgMB
AAGjggJBMIICPTAdBgNVHQ4EFgQUA07JSNgDZogVjJ4azlbwp/96o0EwHwYDVR0j
BBgwFoAUcMvXqYF+RwAJwPQOoeNwqnm1/ZEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYjczMzJhZjAtZGQ3My00NzU1LTlkMjAtNjkzZWE4Mjg5
ZjhhLzAvNzBDQkQ3QTk4MTdFNDcwMDA5QzBGNDBFQTFFMzcwQUE3OUI1RkQ5MS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NNdlhxWUYtUndBSndQUU9vZU53cW5t
MV9aRS5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYjczMzJhZjAt
ZGQ3My00NzU1LTlkMjAtNjkzZWE4Mjg5ZjhhLzAvMzEzODM1MmUzMTM3MzIyZTMx
MzczMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzEzMzMzMzAzNS5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEALmsrDANBgkqhkiG9w0BAQsFAAOCAQEAzn+gXqY439IZ5OpCM22fNJA6e05o
IRXB74jHgJFEYSNtFAvXQ84rj3z1m3uMuBlTdNyZZ1LcbF8BSVB3cSxXppaAHz86
9uURD5Q37tp0a5cJaQMLVGEQtnnh5STUlh72lV/wkK34Cp7Vy4JU7cQG1+gxgLn8
sKfMA2HQHFHW7NbIbJK7Lp/XF559J0UAe/E+TgG7KWdQAPFD7fp9HZaO2EEYX22F
H5E1wcfBzkmoBz36CPsotO03F8RmARWIV6oHaP9tgfmtmG6ZrM6slMhqnfjOzjoY
C4TJe8M+ho9Q1elGGXXi7GcadCLnnb9D7sMDraXb7x8L5hoGy2w1atsV1Q==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:49 2023 by rpki-client on console-ams.rpki-client.org