Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139302e3134312e302f32342d3234203d3e20383334.roa
File: 3138352e3139302e3134312e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: itPySFbP4bYJUwd5D6XLHJOspDpgYOH5pbTst6snOS0=
Subject key identifier: B7:73:E9:EA:66:4C:D3:83:74:A8:02:A8:96:F9:66:9C:A9:7C:9B:DD
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 0ADAA12785DBC3B32EB97E750FCA956C4359FE8B
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139302e3134312e302f32342d3234203d3e20383334.roa
Signing time: Fri 04 Oct 2024 19:05:08 +0000
ROA not before: Fri 04 Oct 2024 19:00:08 +0000
ROA not after: Fri 03 Oct 2025 19:05:08 +0000
asID: 834
IP address blocks: 185.190.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 04 Jan 2025 05:30:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:da:a1:27:85:db:c3:b3:2e:b9:7e:75:0f:ca:95:6c:43:59:fe:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 4 19:00:08 2024 GMT
Not After : Oct 3 19:05:08 2025 GMT
Subject: CN=B773E9EA664CD38374A802A896F9669CA97C9BDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d6:6d:b8:94:34:3b:00:4a:6d:fa:a1:91:7a:
79:2e:3d:55:4f:92:05:9c:4d:08:91:8c:28:8c:b4:
e0:48:69:a2:84:9a:d0:a3:68:a7:8e:a4:a3:da:b6:
8f:7f:61:1a:da:e4:19:53:67:fc:fd:fa:ed:71:3e:
7b:34:87:ce:24:e7:e2:ec:41:68:e2:be:07:29:37:
9d:30:76:46:66:d7:ac:fa:7f:ad:bc:e8:52:37:00:
b1:78:4e:cb:97:a9:04:00:38:5b:ca:8c:13:3d:d9:
2d:25:c7:4f:85:84:39:10:7b:e5:ce:a4:32:91:5b:
bb:ec:f0:c7:9f:e5:67:8c:17:91:ad:2f:8c:20:80:
fc:f4:e7:b3:ec:19:4b:4a:32:fb:11:8a:d2:62:5b:
31:08:e1:93:f2:23:61:06:77:ba:30:0e:90:0b:6a:
30:91:c9:7e:36:fe:db:93:64:84:07:79:8e:23:cd:
a1:7d:90:4c:32:04:fd:5c:00:2e:04:ac:89:96:64:
32:08:00:17:02:d2:99:c4:12:f6:61:e3:c5:0d:05:
32:3f:76:94:0a:65:84:09:ae:69:ae:37:40:ed:b1:
8e:3e:a9:6a:b4:a8:5b:f2:9b:13:4c:17:31:33:3b:
5e:d6:29:ba:84:fd:63:d4:d1:6b:16:34:78:f0:17:
c2:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:73:E9:EA:66:4C:D3:83:74:A8:02:A8:96:F9:66:9C:A9:7C:9B:DD
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3139302e3134312e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.141.0/24
Signature Algorithm: sha256WithRSAEncryption
87:69:dd:67:3f:f5:e6:42:4c:53:fa:92:bb:df:69:a4:1e:32:
6e:43:10:8e:1a:65:19:e3:93:97:bb:c8:0d:f0:fb:da:ea:01:
5e:14:6b:c5:19:c6:7e:28:34:a1:b0:b4:be:dd:4e:e8:bd:7f:
ed:6e:1e:74:aa:68:ee:67:22:ea:51:77:9b:65:77:fc:34:ab:
d5:c3:3f:bb:9e:ee:f0:3a:a9:c0:41:bc:f5:e8:80:19:b4:a5:
ac:77:80:4b:7a:55:cb:f5:71:d2:cf:2b:6a:2c:a4:4b:e4:fa:
2b:a3:9f:1c:c3:2a:7e:da:39:b6:3e:e0:b7:bc:3e:3d:43:0b:
fb:63:02:25:ee:31:f6:19:64:7d:81:13:06:de:db:f1:47:3b:
a0:13:a5:eb:ae:89:65:ff:5f:c7:00:2f:53:5d:ab:dd:26:ca:
f1:fd:51:37:fb:de:b3:f6:ca:59:60:2a:a5:b6:a0:88:d3:0c:
cc:95:9f:75:53:93:d0:14:ee:44:ad:78:6c:4d:91:99:84:83:
1d:13:39:70:95:4b:54:8e:fa:e0:87:c2:4f:f5:8a:35:8c:77:
bb:d9:63:bd:a2:3c:3f:9e:07:99:da:0f:8b:52:cb:1c:46:4a:
70:69:3d:91:d7:88:5f:6b:bf:cc:94:16:51:54:a2:9c:ce:16:
e5:87:39:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 10:21:25 2025 by rpki-client