Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3232392e3230332e302f32342d3234203d3e20383334.roa
File: 3138352e3232392e3230332e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: /I0AgQVqpBshmFUCHpDTBbjHpet12LTxu1qRBJsxqOE=
Subject key identifier: 9D:49:A8:E2:ED:30:71:5F:38:5D:0B:8C:03:25:E2:CC:D3:4F:B6:35
Certificate issuer: /CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Certificate serial: 6F0645342D7A567336CB9E7115386BDC638F7A26
Authority key identifier: 3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3232392e3230332e302f32342d3234203d3e20383334.roa
Signing time: Mon 15 Jul 2024 00:02:33 +0000
ROA not before: Sun 14 Jul 2024 23:57:33 +0000
ROA not after: Mon 14 Jul 2025 00:02:33 +0000
asID: 834
IP address blocks: 185.229.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jul 2024 13:35:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:06:45:34:2d:7a:56:73:36:cb:9e:71:15:38:6b:dc:63:8f:7a:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Validity
Not Before: Jul 14 23:57:33 2024 GMT
Not After : Jul 14 00:02:33 2025 GMT
Subject: CN=9D49A8E2ED30715F385D0B8C0325E2CCD34FB635
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:9f:6b:80:4c:08:e2:91:00:9f:2e:55:0b:f1:
21:25:9e:aa:55:d2:48:97:ea:b2:c9:d2:77:e4:8b:
1b:60:08:3e:92:f2:eb:27:12:e3:23:78:f2:f6:bb:
c8:64:af:8c:83:ee:50:e2:c0:20:08:28:68:8e:ad:
54:48:51:85:b4:63:94:4c:e2:85:7f:93:ab:da:8b:
37:e5:de:1b:27:e1:96:1a:47:7c:a5:f3:06:47:93:
54:2f:62:ad:0d:28:f4:3f:7d:74:20:b0:93:50:8a:
94:56:72:57:df:53:55:3f:e4:dd:28:65:5b:92:37:
c3:26:6b:3d:ad:f4:19:e6:f2:10:b8:76:ab:f2:a6:
cf:45:94:54:5d:fd:ca:28:1d:a2:20:e4:f0:57:0e:
cb:e9:23:c9:83:45:9b:ff:c0:13:31:a1:7f:3e:6f:
11:e4:69:04:2b:9d:86:8b:9e:01:18:20:cb:ea:27:
e8:98:ab:4f:9a:ce:20:31:d5:ac:8f:2a:90:28:61:
35:0a:df:86:8a:23:02:a8:2b:b5:62:9c:79:72:62:
15:3a:18:96:93:e1:90:59:2c:ce:9e:00:10:5e:f1:
7e:1c:db:b6:97:aa:33:0d:d1:7f:3c:9d:92:52:fb:
98:84:d2:33:28:fe:ba:a4:3a:10:53:d0:90:03:b6:
02:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:49:A8:E2:ED:30:71:5F:38:5D:0B:8C:03:25:E2:CC:D3:4F:B6:35
X509v3 Authority Key Identifier:
keyid:3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3232392e3230332e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.203.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:70:18:9e:67:40:e6:e9:9c:ca:71:26:d3:dd:41:fe:c4:71:
50:80:7f:26:66:f5:77:86:4b:12:fe:d0:d0:35:4a:4d:22:19:
28:5f:18:78:ad:0b:d4:05:0e:68:39:51:92:75:0c:a2:ed:0c:
25:f3:f2:d1:36:7f:5c:e1:a2:3e:7e:eb:53:ca:39:b3:85:2f:
ce:f5:4b:05:09:9b:ca:2f:de:ac:16:16:4b:9d:13:18:a3:31:
31:f9:55:b6:fb:41:33:2e:96:f6:34:dc:89:76:59:a7:2e:85:
70:85:15:8a:6b:64:5f:a4:73:15:5e:40:2e:f7:9b:74:da:06:
b8:6d:70:bb:eb:a5:70:5c:75:43:c9:2d:90:40:79:80:fc:88:
09:3c:c5:38:19:a1:84:50:4e:58:50:00:67:19:46:97:bf:e7:
02:7d:87:e2:fd:44:1b:76:41:be:ac:4b:06:cc:d3:b9:6c:33:
e4:10:a3:3e:38:ab:fd:a3:55:29:73:e9:ba:69:ac:32:20:d0:
4e:f1:dd:ec:51:97:29:30:bf:e1:15:ff:ec:d0:2f:56:c0:ab:
22:d4:4d:49:f0:bb:a8:00:cb:72:8d:1c:d0:27:d4:a3:e7:be:
6c:d9:9d:4e:ed:d1:5c:90:bc:09:44:b0:c1:c9:96:af:a4:92:
45:7a:9c:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:00:24 2025 by rpki-client