Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/3139332e3230332e3230342e302f32332d3233203d3e203339373538.roa
File: 3139332e3230332e3230342e302f32332d3233203d3e203339373538.roa (raw, json)
Hash identifier: Scw+jaeSbE4xX66Y3uDRbhE5zrSI/+LkFSqrABKxMt4=
Subject key identifier: 1C:A2:8E:6F:C0:76:28:F8:A6:45:CA:05:39:DA:FD:6D:16:69:A9:15
Certificate issuer: /CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Certificate serial: 1A15888B4E585331B09661C0C22F1C5BC3A787EF
Authority key identifier: ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/3139332e3230332e3230342e302f32332d3233203d3e203339373538.roa
Signing time: Wed 24 Jul 2024 12:05:19 +0000
ROA not before: Wed 24 Jul 2024 12:00:19 +0000
ROA not after: Wed 23 Jul 2025 12:05:19 +0000
asID: 39758
IP address blocks: 193.203.204.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 19 Dec 2024 15:32:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:15:88:8b:4e:58:53:31:b0:96:61:c0:c2:2f:1c:5b:c3:a7:87:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed9edb2a15871785fbae38e23c38820dbfa2cca4
Validity
Not Before: Jul 24 12:00:19 2024 GMT
Not After : Jul 23 12:05:19 2025 GMT
Subject: CN=1CA28E6FC07628F8A645CA0539DAFD6D1669A915
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:12:2b:74:96:88:fb:ed:a3:b0:dc:fe:30:ca:
5a:f2:a8:f7:ad:55:c5:53:24:50:10:47:6b:f1:3c:
e9:9e:02:63:df:0b:4d:53:01:8a:6b:0b:a7:f8:f7:
fe:33:4d:00:2d:d7:d8:14:50:93:2a:f4:9c:fd:f7:
db:8a:bd:bc:f6:33:f2:b4:99:88:36:ed:ab:5c:9b:
5c:51:7d:20:17:bf:5a:e1:1c:47:55:a3:5a:e8:08:
1c:b3:3a:53:91:64:f0:33:a4:0a:25:39:af:bb:57:
a8:66:60:af:c1:75:52:2f:bb:b0:0c:ce:5f:33:b0:
80:e4:a7:00:b0:d5:47:be:03:c2:f9:93:9a:fb:5e:
b5:24:c9:34:95:42:70:70:c8:41:11:7b:09:8a:e8:
9f:1e:81:da:55:07:0e:64:36:ef:19:bb:8b:8b:65:
0a:eb:9d:f6:a7:2b:f4:6d:95:9d:70:5b:7d:7c:20:
68:47:c9:21:fe:4f:59:12:f3:a5:71:ef:a2:29:fc:
42:6d:e3:6f:64:76:05:90:18:96:40:68:b9:07:0f:
2f:c8:3a:b6:59:ee:74:d0:9e:57:10:39:18:4a:46:
f0:d3:c5:b5:1d:ef:58:ab:22:ba:61:77:c7:53:e1:
e6:2e:8b:58:0a:93:a4:67:7d:46:de:06:4c:99:a2:
66:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:A2:8E:6F:C0:76:28:F8:A6:45:CA:05:39:DA:FD:6D:16:69:A9:15
X509v3 Authority Key Identifier:
keyid:ED:9E:DB:2A:15:87:17:85:FB:AE:38:E2:3C:38:82:0D:BF:A2:CC:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/ED9EDB2A15871785FBAE38E23C38820DBFA2CCA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Z7bKhWHF4X7rjjiPDiCDb-izKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ea0de97f-7ee8-4ce0-b045-efac8c243c79/0/3139332e3230332e3230342e302f32332d3233203d3e203339373538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.204.0/23
Signature Algorithm: sha256WithRSAEncryption
82:a0:87:9a:b8:97:52:e2:09:09:ea:74:4f:ae:ba:a1:3c:15:
12:8d:23:3b:b0:1b:d8:d1:c1:6e:7e:34:39:8e:82:7d:0e:69:
57:e9:b2:d1:8c:93:2d:2e:c6:b0:98:f1:41:2a:4f:9f:e3:60:
3a:fe:cf:d0:00:3a:a8:8d:36:1b:93:98:e6:76:75:22:52:fe:
94:2a:a6:46:99:e2:9b:5c:56:05:39:cf:87:07:38:26:7c:30:
d1:03:db:10:70:35:42:73:f7:3a:9d:70:d0:2b:26:d9:07:15:
54:47:45:97:61:22:57:f1:eb:0f:c1:86:c1:1d:f5:2d:15:7c:
ba:d7:58:3d:3a:0f:e1:6d:0c:27:9b:4e:20:40:c5:9f:24:eb:
f2:22:70:01:51:17:95:4a:a3:51:a6:38:18:b3:f6:9e:e9:fb:
03:6b:2b:91:74:63:c8:17:6a:c0:f7:22:d6:75:23:93:60:96:
1f:2f:e9:c7:d5:6e:9b:ca:4d:47:a8:f2:62:a4:72:6b:3c:cf:
f9:6a:c8:a9:c6:79:cb:1d:50:af:da:9b:44:22:15:52:a1:f3:
f6:3e:8f:26:91:b9:a5:a2:52:28:1d:9f:52:e3:df:af:b8:43:
c6:f1:2d:4d:87:e5:09:3f:f8:e1:6d:fa:21:7f:1b:d0:1f:a5:
c0:f9:fc:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:53:29 2025 by rpki-client