Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3232392e3230322e302f32342d3234203d3e20383334.roa
File: 3138352e3232392e3230322e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: tlPKf+upEjqprHxt5SBX3sJfoboeGBFqx0XNekU+6oM=
Subject key identifier: B6:F5:29:0B:EB:5C:92:82:19:DF:A5:02:88:DD:0E:AC:11:1A:8E:13
Certificate issuer: /CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Certificate serial: 625C8EA9A19C65A48E269F1D744C9306AF732096
Authority key identifier: 3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3232392e3230322e302f32342d3234203d3e20383334.roa
Signing time: Tue 05 Mar 2024 00:00:38 +0000
ROA not before: Mon 04 Mar 2024 23:55:38 +0000
ROA not after: Tue 04 Mar 2025 00:00:38 +0000
asID: 834
IP address blocks: 185.229.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Mar 2024 18:57:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:5c:8e:a9:a1:9c:65:a4:8e:26:9f:1d:74:4c:93:06:af:73:20:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Validity
Not Before: Mar 4 23:55:38 2024 GMT
Not After : Mar 4 00:00:38 2025 GMT
Subject: CN=B6F5290BEB5C928219DFA50288DD0EAC111A8E13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:3f:5f:6d:c1:ce:f9:84:db:f6:77:f4:4d:56:
b1:56:c3:da:0b:a7:17:f5:af:d1:f3:c4:ac:47:0a:
31:7f:7b:ac:3a:d1:97:55:4d:b1:1a:07:e6:d6:9e:
bc:97:21:42:79:cd:86:e1:ba:c4:01:a3:90:7d:7d:
50:ef:57:a1:4d:fb:df:f1:38:b1:c8:3b:f6:c4:7d:
e0:dc:c1:84:14:e5:0b:5c:6b:5e:fc:1a:03:e6:c8:
e6:18:f2:15:9b:48:1c:e9:ba:b7:7e:f3:89:06:cb:
66:2f:cb:50:6c:54:ab:48:4a:06:97:ad:ca:56:64:
11:96:23:6a:55:09:cd:35:9c:6a:46:d3:52:56:f3:
fc:36:94:1c:a4:8a:cf:5d:6d:30:9d:99:16:8c:7c:
8f:63:04:58:f9:d4:ec:b1:96:3e:cb:d1:fe:d7:e2:
f5:11:2b:bc:1d:5b:d7:86:2a:f4:45:b7:0b:40:53:
63:71:80:18:c3:7e:3a:51:b3:0c:f4:a9:0e:4b:51:
82:e3:8c:d4:a3:2b:ea:40:0a:8f:3d:9c:88:68:bc:
c0:80:9a:8c:98:67:1b:9a:2a:88:94:30:f5:f4:bc:
42:d6:1e:64:f7:57:63:c7:ca:e4:25:f1:d4:4a:ea:
6d:f4:ff:b9:9e:1c:da:6e:2b:f9:c2:9e:f8:59:2e:
40:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:F5:29:0B:EB:5C:92:82:19:DF:A5:02:88:DD:0E:AC:11:1A:8E:13
X509v3 Authority Key Identifier:
keyid:3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3232392e3230322e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.202.0/24
Signature Algorithm: sha256WithRSAEncryption
92:8b:e4:6b:b7:a4:67:19:c7:57:00:ae:90:74:25:7a:e9:33:
7e:89:5b:56:06:3b:01:87:fc:bf:1b:df:e2:99:75:69:b6:df:
3a:ad:9a:9b:c8:60:90:c1:eb:35:18:b4:88:51:87:6d:7f:ca:
9f:cc:34:b0:1e:de:d8:b8:0b:98:36:95:41:07:3c:54:45:64:
f4:f2:f0:b9:b7:74:29:dd:94:56:ce:c3:93:ad:1d:30:82:f4:
6a:7f:60:99:db:c8:9f:fd:fa:b7:c6:7f:bb:42:c6:be:1d:68:
b5:e7:ee:d0:a0:88:2f:42:80:13:11:0c:0f:42:97:fb:d3:89:
4f:cb:7c:5d:b0:6f:d9:16:63:6f:88:2b:ec:c6:28:91:6e:5f:
b0:81:af:16:72:63:20:58:97:d2:4a:48:ce:c7:f7:e9:21:5f:
aa:eb:88:0c:e2:08:41:7a:8c:d2:27:e2:2d:60:b0:99:3b:33:
9c:ae:12:da:b0:f3:b7:2b:87:5d:76:60:05:c1:68:ea:8b:07:
3c:2e:46:e0:66:0d:7f:f6:a5:ea:77:4d:1b:ba:45:34:14:13:
c4:6c:81:cd:81:79:89:af:a9:f0:2a:26:46:36:83:7b:cd:f9:
31:83:9e:1f:5a:eb:b6:3b:81:0f:f1:a1:3c:d2:96:e4:7c:47:
0a:68:39:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 8 21:08:32 2024 by rpki-client on console-ams.rpki-client.org