Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230392e3232322e302f32342d3234203d3e20313336373837.roa
File: 3138352e3230392e3232322e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: Mjk0JG5JLUUrs5d21kKulqwzm3z2r6/io2F64CehSYk=
Subject key identifier: 6B:D5:94:41:5A:81:1C:09:DC:2C:CE:95:72:F3:F1:3F:4E:59:B6:7A
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 727DD6B3E422BFF8F470EA671F865B0EC5AF4730
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230392e3232322e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 20 Oct 2023 13:41:59 +0000
ROA not before: Fri 20 Oct 2023 13:36:59 +0000
ROA not after: Fri 18 Oct 2024 13:41:59 +0000
asID: 136787
IP address blocks: 185.209.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Mar 2024 09:28:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:7d:d6:b3:e4:22:bf:f8:f4:70:ea:67:1f:86:5b:0e:c5:af:47:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:59 2023 GMT
Not After : Oct 18 13:41:59 2024 GMT
Subject: CN=6BD594415A811C09DC2CCE9572F3F13F4E59B67A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5a:d8:b8:7d:1f:d2:d9:15:4f:89:74:8d:4b:
22:70:ed:67:7d:ad:0f:b9:f7:91:98:24:35:37:33:
24:4e:c8:3e:17:88:2a:40:62:e0:ba:90:4f:68:0a:
41:c5:42:9c:e0:2a:44:87:68:aa:7f:bb:62:2a:6d:
7b:37:2a:b3:50:0c:3b:9e:12:b5:b9:da:af:11:6c:
b3:e5:3d:d6:85:26:b8:e9:b0:a5:d3:ff:4c:4f:cd:
3b:3b:97:df:a8:9e:27:6f:50:b3:ca:b6:0e:69:bc:
fb:59:fc:6f:6e:7a:55:5e:b6:de:00:80:a8:6d:25:
11:08:73:27:34:bd:29:39:6c:5f:c6:93:39:f8:77:
7a:74:97:16:07:fc:8b:3c:cf:f2:65:ee:a0:34:e2:
cc:20:d1:24:de:9f:52:9e:f6:e7:16:69:1f:ef:65:
9f:be:36:b6:b3:b5:0c:b1:88:93:f9:c8:ff:e4:02:
be:95:be:77:6b:55:80:fc:dc:fd:6c:17:39:7d:e8:
66:1b:d9:b9:0d:8b:cc:87:5a:d2:e5:18:5e:c3:52:
73:37:9e:1e:63:0a:e2:50:2e:07:c9:cb:8c:10:00:
d3:82:7c:2b:e5:5b:15:84:5c:76:06:92:1c:74:92:
b6:a4:ad:7d:a8:05:90:8d:2f:60:d5:51:70:e4:14:
b4:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:D5:94:41:5A:81:1C:09:DC:2C:CE:95:72:F3:F1:3F:4E:59:B6:7A
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3230392e3232322e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.222.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:75:56:de:15:92:ab:8d:c0:5d:03:b0:e4:96:66:e0:0b:23:
f1:6b:69:e7:e4:e0:14:b6:2e:f6:7f:71:88:3b:28:76:a7:a0:
81:4b:28:a1:e5:cd:2f:cd:a7:86:57:55:04:52:ec:87:c9:13:
69:44:da:73:b1:15:89:b1:33:ff:1c:1e:aa:c8:37:0d:5f:ef:
20:8f:e2:d4:7c:35:5d:12:97:8a:a0:ec:95:e7:1a:e7:7f:85:
f0:b2:ed:8b:a9:c0:88:fa:ba:8b:4e:ce:07:23:08:b4:55:c3:
62:28:b0:b0:30:3b:82:8c:86:7a:b6:53:b8:8f:93:ce:c8:2c:
a0:c6:0e:6f:5c:c5:1e:67:bc:a6:49:80:df:25:a0:9a:6e:6b:
a8:83:3c:49:59:a0:1d:85:6c:4a:e0:d7:01:38:30:bc:e6:e3:
89:15:c9:6f:a2:53:d2:08:7c:24:10:51:30:ec:b7:8c:95:0f:
2e:20:d7:22:df:e2:c6:be:fe:3e:5b:e9:a3:2b:a2:0c:5c:d5:
5c:75:08:f0:a5:84:80:81:24:d0:0a:4f:37:47:cc:cc:94:1d:
0a:de:43:cd:41:aa:42:b9:44:43:19:5b:16:45:21:69:87:2a:
10:a7:8d:fb:5f:67:95:38:7c:e1:dc:83:13:e9:7d:f0:33:6b:
c6:25:1d:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:23 2024 by rpki-client on console-fra.rpki-client.org