Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231352e3138332e302f32342d3234203d3e20323131383330.roa
File: 3138352e3231352e3138332e302f32342d3234203d3e20323131383330.roa (raw, json)
Hash identifier: fYjUlYDK2TYNHW3dXoOzxbwY7usx49qp7NlxNPl9zew=
Subject key identifier: B8:51:53:B4:1F:80:FC:BE:3E:55:43:F6:5B:18:CF:DE:00:42:A6:AB
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 40840ED88A14D77DBF321AEE3CEB07757D4333B8
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231352e3138332e302f32342d3234203d3e20323131383330.roa
Signing time: Mon 27 Mar 2023 08:29:00 +0000
ROA not before: Mon 27 Mar 2023 08:24:00 +0000
ROA not after: Mon 25 Mar 2024 08:29:00 +0000
asID: 211830
IP address blocks: 185.215.183.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:84:0e:d8:8a:14:d7:7d:bf:32:1a:ee:3c:eb:07:75:7d:43:33:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Mar 27 08:24:00 2023 GMT
Not After : Mar 25 08:29:00 2024 GMT
Subject: CN=B85153B41F80FCBE3E5543F65B18CFDE0042A6AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f0:ba:78:e8:ee:0c:57:c7:0c:bd:34:60:6b:
3d:9b:2c:b2:e1:9b:7a:82:a7:27:54:72:36:29:53:
11:6a:e7:72:63:47:ba:29:7a:4b:75:15:cf:ab:e4:
9f:3e:42:52:81:c4:68:87:f2:67:9c:76:1c:55:c7:
59:31:b3:bb:7b:94:45:6c:5b:2a:43:42:0e:63:75:
3e:32:84:c7:fa:93:88:90:ca:ce:83:9e:57:01:53:
cc:80:d1:a4:0e:a3:43:24:3a:b9:fe:f9:98:81:4e:
fc:e6:5e:e3:fa:0d:26:e9:75:7b:91:39:59:a1:45:
48:38:09:3b:65:5b:ed:55:35:c9:95:3f:78:35:1e:
d1:96:2f:91:b4:0d:77:7b:c6:79:ae:6d:9a:f0:d2:
78:63:0a:0b:b0:a0:b2:02:a2:f5:12:81:6d:b5:49:
84:34:cc:09:53:2f:80:60:4e:9d:59:3b:ca:15:51:
9b:e4:8e:88:eb:f0:1c:c8:70:4f:68:5a:5f:43:11:
cf:d3:dc:ce:3a:76:73:f6:c3:32:59:26:c6:22:0c:
10:3f:09:40:e0:33:c6:e2:c2:ef:b7:2e:14:2e:f4:
a2:ca:70:33:38:be:8c:70:b9:da:34:db:bc:54:25:
14:d0:e3:35:9b:91:7a:2f:b8:f6:c5:33:92:1c:87:
64:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:51:53:B4:1F:80:FC:BE:3E:55:43:F6:5B:18:CF:DE:00:42:A6:AB
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231352e3138332e302f32342d3234203d3e20323131383330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.183.0/24
Signature Algorithm: sha256WithRSAEncryption
73:79:ae:81:3a:ec:31:f5:0a:03:53:17:17:48:37:c8:f3:6f:
d0:b1:23:27:38:2f:4e:b8:6b:58:83:f7:a0:c4:a4:de:91:90:
35:0f:4f:7b:5a:46:6b:e2:f4:e7:f5:44:58:8d:2b:67:06:34:
e3:de:24:f0:d9:fb:36:42:fd:2b:c7:04:8a:25:09:44:06:fb:
b9:cb:20:09:bd:53:8b:83:e5:93:b1:cc:40:76:46:8d:e7:8f:
f4:d3:2a:a5:11:0f:a5:d2:62:d1:d4:3a:b8:82:ff:e2:64:64:
67:5c:a2:61:30:d6:ee:de:23:5f:86:c0:35:61:71:e5:81:55:
be:08:97:c0:c4:b8:00:bc:fa:96:71:e6:39:cf:7c:1f:0b:fe:
a0:13:b6:de:3b:c3:76:9f:a1:c9:7c:d5:0d:fd:9a:bb:79:26:
1f:4b:e8:21:9f:5f:b4:ea:e3:e2:35:d6:68:de:75:ad:90:ca:
d2:7f:6b:de:92:e5:40:b7:35:42:8c:74:f9:83:88:6b:9e:7a:
1c:d3:c3:c4:f8:0e:41:0c:85:f1:45:ed:c4:86:db:d1:cf:6c:
6c:fd:96:dc:5a:6c:a8:cc:99:af:28:17:4b:0e:9f:e2:5d:48:
4c:2c:0a:b6:55:2a:19:4b:db:bf:0a:da:90:e3:0e:4d:1e:2a:
88:95:e7:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:52 2023 by rpki-client on console-ams.rpki-client.org