Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138372e3233322e302f32342d3234203d3e20383334.roa
File: 3138352e3138372e3233322e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: JSa7n4w76AaGjni0nyvdUo/jUYOi5Xcp8MGZIXmIyPM=
Subject key identifier: 11:A8:E5:5E:62:68:34:0B:96:EF:C6:F3:69:73:EB:8E:72:8B:0A:B6
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 359C4CADCBE1C56B22AC8A3A35EFE15337CDA16D
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138372e3233322e302f32342d3234203d3e20383334.roa
Signing time: Mon 02 Dec 2024 08:07:58 +0000
ROA not before: Mon 02 Dec 2024 08:02:58 +0000
ROA not after: Mon 01 Dec 2025 08:07:58 +0000
asID: 834
IP address blocks: 185.187.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Dec 2024 20:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:9c:4c:ad:cb:e1:c5:6b:22:ac:8a:3a:35:ef:e1:53:37:cd:a1:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Dec 2 08:02:58 2024 GMT
Not After : Dec 1 08:07:58 2025 GMT
Subject: CN=11A8E55E6268340B96EFC6F36973EB8E728B0AB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:76:79:70:9c:d8:24:86:c9:dd:62:40:d4:09:
ca:d8:d8:47:ad:ed:ed:22:80:d3:ba:a8:bc:13:7b:
00:7b:61:de:1f:d2:11:56:6f:74:7f:fe:d5:31:08:
eb:8b:df:dc:97:b9:94:8c:eb:10:13:2c:14:46:da:
b5:d5:f5:96:bd:95:af:10:3e:42:65:b1:61:42:af:
03:a7:e0:c4:0f:98:95:ea:15:56:5b:e8:c0:e9:23:
66:ce:54:1a:8b:7e:80:57:31:6d:b9:c2:87:3b:75:
52:cf:95:db:42:9c:ff:40:60:9a:59:46:f1:94:cf:
58:4f:36:12:9a:5b:74:7e:6e:66:21:69:65:26:b9:
34:24:df:29:4e:64:0f:9d:a7:c1:d6:29:37:79:6d:
ad:e0:ba:86:6c:d8:0b:6b:47:c0:94:8b:84:7d:45:
1b:d9:fe:f6:4a:eb:87:33:ab:e1:41:64:78:3c:12:
5e:47:4a:e7:1c:ac:cf:73:d6:34:c8:14:dd:02:4d:
4a:db:b4:17:82:a9:2a:16:c0:24:af:82:6a:33:66:
c3:67:4b:23:d0:7d:f1:06:77:5b:bc:ed:13:c3:53:
2c:af:c7:65:0c:71:cb:66:eb:16:ec:3e:e7:55:c4:
03:2b:df:a9:f7:83:32:27:be:52:19:5e:cb:e7:67:
21:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:A8:E5:5E:62:68:34:0B:96:EF:C6:F3:69:73:EB:8E:72:8B:0A:B6
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3138372e3233322e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.232.0/24
Signature Algorithm: sha256WithRSAEncryption
14:7f:b6:ac:27:62:c9:7d:55:42:78:d2:2d:96:5f:84:92:c9:
20:f3:a7:69:a0:28:07:57:64:bc:f1:d4:3a:9d:88:8c:50:aa:
97:c6:a1:b6:cd:9c:e5:c8:d0:05:66:f1:d6:89:e5:8d:da:56:
9b:c2:c1:4d:4b:a0:fa:3d:3d:d8:a8:37:b9:39:69:d4:fe:b3:
86:d6:1f:7a:34:5a:2b:8a:11:bf:cd:17:36:9e:dd:52:d0:78:
fb:e0:98:3d:fc:1f:4e:6e:5c:ef:59:7c:5e:ba:72:0a:93:e4:
2c:c8:c3:d9:b6:3c:00:dc:dc:75:06:0f:59:2f:b5:93:69:0c:
f9:f9:85:81:a1:4f:59:71:3a:04:f5:8b:85:3b:df:7f:63:cb:
fd:a3:22:07:d2:3e:52:80:6d:df:7f:22:a4:2b:9d:91:72:3f:
c5:b9:19:39:00:d2:d7:f1:72:da:57:ad:8f:fb:99:86:1a:e4:
4c:1c:9b:7b:c2:58:ea:ff:1e:da:00:ee:84:e9:b1:f0:10:09:
74:c3:4b:1d:78:30:fd:2c:fe:14:bc:5e:12:11:c9:f4:5c:95:
86:ac:8b:e1:f4:45:35:ef:d2:ca:eb:1f:76:ff:02:7b:06:ce:
f0:91:17:47:89:d9:59:4c:a4:8e:65:76:b2:de:8b:28:39:54:
43:e7:96:69
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUNZxMrcvhxWsirIo6Ne/hUzfNoW0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNDEyMDIwODAyNThaFw0yNTEyMDEwODA3NThaMDMxMTAvBgNV
BAMTKDExQThFNTVFNjI2ODM0MEI5NkVGQzZGMzY5NzNFQjhFNzI4QjBBQjYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4dnlwnNgkhsndYkDUCcrY2Eet
7e0igNO6qLwTewB7Yd4f0hFWb3R//tUxCOuL39yXuZSM6xATLBRG2rXV9Za9la8Q
PkJlsWFCrwOn4MQPmJXqFVZb6MDpI2bOVBqLfoBXMW25woc7dVLPldtCnP9AYJpZ
RvGUz1hPNhKaW3R+bmYhaWUmuTQk3ylOZA+dp8HWKTd5ba3guoZs2AtrR8CUi4R9
RRvZ/vZK64czq+FBZHg8El5HSuccrM9z1jTIFN0CTUrbtBeCqSoWwCSvgmozZsNn
SyPQffEGd1u87RPDUyyvx2UMcctm6xbsPudVxAMr36n3gzInvlIZXsvnZyG1AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUEajlXmJoNAuW78bzaXPrjnKLCrYwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMTM4MzcyZTMy
MzMzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALm7
6DANBgkqhkiG9w0BAQsFAAOCAQEAFH+2rCdiyX1VQnjSLZZfhJLJIPOnaaAoB1dk
vPHUOp2IjFCql8ahts2c5cjQBWbx1onljdpWm8LBTUug+j092Kg3uTlp1P6zhtYf
ejRaK4oRv80XNp7dUtB4++CYPfwfTm5c71l8XrpyCpPkLMjD2bY8ANzcdQYPWS+1
k2kM+fmFgaFPWXE6BPWLhTvff2PL/aMiB9I+UoBt338ipCudkXI/xbkZOQDS1/Fy
2letj/uZhhrkTBybe8JY6v8e2gDuhOmx8BAJdMNLHXgw/Sz+FLxeEhHJ9FyVhqyL
4fRFNe/Syusfdv8CewbO8JEXR4nZWUykjmV2st6LKDlUQ+eWaQ==
-----END CERTIFICATE-----
Generated at Sat Apr 12 10:19:11 2025 by rpki-client