Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231372e3136382e302f32342d3234203d3e203432333636.roa
File: 3138352e3231372e3136382e302f32342d3234203d3e203432333636.roa (raw, json)
Hash identifier: lVlqvzhDOtzP+OvGb+R9T9HsDEbECNjaze9ENkhc63g=
Subject key identifier: 93:6E:A3:3E:AD:C7:AC:69:05:C2:76:28:58:D6:F8:B4:93:46:11:61
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 274B47A9B85019F1386E98F8CFB12C1D67556E8D
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231372e3136382e302f32342d3234203d3e203432333636.roa
Signing time: Sun 07 May 2023 15:43:43 +0000
ROA not before: Sun 07 May 2023 15:38:43 +0000
ROA not after: Sun 05 May 2024 15:43:43 +0000
asID: 42366
IP address blocks: 185.217.168.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:4b:47:a9:b8:50:19:f1:38:6e:98:f8:cf:b1:2c:1d:67:55:6e:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: May 7 15:38:43 2023 GMT
Not After : May 5 15:43:43 2024 GMT
Subject: CN=936EA33EADC7AC6905C2762858D6F8B493461161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:10:10:33:34:ce:05:32:02:39:3a:f2:74:7f:
1e:2b:06:0e:4b:f8:52:55:b4:02:6f:2a:5b:a2:e6:
3d:36:7a:61:0d:5c:8d:cc:9b:80:13:48:80:95:49:
d5:8d:6b:ce:53:42:e0:88:dc:52:20:c2:86:8e:5a:
ad:19:ce:ad:4e:4a:5e:13:f3:0e:f3:ab:5f:58:3b:
d9:a9:86:97:97:ad:d4:8d:55:da:15:8a:f7:f0:e4:
1f:3d:13:5e:65:b2:07:b2:e9:1a:45:ae:4d:2c:58:
85:fd:8d:d7:a9:66:8c:d0:47:60:05:d5:22:7f:de:
40:a4:d5:bd:48:9e:f1:25:8c:c0:38:31:2f:5b:4b:
9a:74:95:69:89:dd:c2:25:5d:b3:5d:63:10:67:7f:
ac:ea:36:8a:10:a9:23:90:b0:de:b2:81:5e:ac:e8:
4c:5d:a1:c2:a4:1a:f7:f7:d1:c0:ec:dc:11:82:95:
b7:ef:38:99:64:1b:eb:c1:3a:70:11:c5:52:27:0f:
db:51:b1:d3:85:04:41:c5:85:a9:4b:5e:de:8c:97:
1c:1b:c7:86:46:64:4c:53:ca:80:6f:66:cd:8e:04:
29:98:8a:98:f8:b1:41:ef:13:9e:b6:b0:54:d8:0e:
39:25:2b:50:5b:71:52:94:75:de:ab:37:d2:ba:e2:
4f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:6E:A3:3E:AD:C7:AC:69:05:C2:76:28:58:D6:F8:B4:93:46:11:61
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3138352e3231372e3136382e302f32342d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.168.0/24
Signature Algorithm: sha256WithRSAEncryption
60:d4:3c:f2:23:6a:4a:6a:c9:b6:23:2e:81:47:2f:c8:0e:1f:
66:b1:9a:25:a5:05:23:26:94:1e:02:04:98:97:b6:e8:ff:98:
ef:d8:87:27:10:45:2e:ea:5d:95:f3:94:94:60:ad:d1:50:4d:
10:b5:66:52:cb:d4:61:0d:84:69:21:bf:70:7a:4d:4f:0d:f1:
89:0a:fb:f5:4d:85:92:45:7e:a0:fc:e3:4c:33:80:ff:30:ad:
05:4f:7a:5e:8a:d3:9f:8c:2b:e3:46:12:ae:cc:c2:9a:9a:cd:
b7:af:dc:37:2c:35:e4:a5:7c:4f:e7:bd:63:fe:51:c3:3b:5c:
06:1d:af:51:75:44:f6:69:f0:aa:0f:96:ed:f1:64:ee:7a:4b:
a8:29:52:20:71:6f:37:46:3f:d2:df:55:50:e0:7a:20:b6:69:
83:2b:3c:ca:80:ca:7a:84:48:4d:84:dd:0c:a0:e2:4c:6b:81:
cf:5c:11:e0:85:41:88:e1:77:9e:2d:0a:b2:fd:f5:5d:17:46:
e3:5c:6f:61:98:89:1a:33:72:c4:ec:87:b0:5b:23:60:40:55:
5a:e2:fa:40:02:94:a0:16:d3:b6:5b:23:ef:14:42:89:db:de:
ef:36:bd:ef:d4:38:7b:c1:6d:ba:02:54:d6:1a:84:e5:14:30:
bd:7f:c6:96
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUJ0tHqbhQGfE4bpj4z7EsHWdVbo0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yMzA1MDcxNTM4NDNaFw0yNDA1MDUxNTQzNDNaMDMxMTAvBgNV
BAMTKDkzNkVBMzNFQURDN0FDNjkwNUMyNzYyODU4RDZGOEI0OTM0NjExNjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZEBAzNM4FMgI5OvJ0fx4rBg5L
+FJVtAJvKlui5j02emENXI3Mm4ATSICVSdWNa85TQuCI3FIgwoaOWq0Zzq1OSl4T
8w7zq19YO9mphpeXrdSNVdoVivfw5B89E15lsgey6RpFrk0sWIX9jdepZozQR2AF
1SJ/3kCk1b1InvEljMA4MS9bS5p0lWmJ3cIlXbNdYxBnf6zqNooQqSOQsN6ygV6s
6ExdocKkGvf30cDs3BGClbfvOJlkG+vBOnARxVInD9tRsdOFBEHFhalLXt6Mlxwb
x4ZGZExTyoBvZs2OBCmYipj4sUHvE562sFTYDjklK1BbcVKUdd6rN9K64k/tAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUk26jPq3HrGkFwnYoWNb4tJNGEWEwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzODM1MmUzMjMxMzcyZTMx
MzYzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM0MzIzMzM2MzYucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAC52agwDQYJKoZIhvcNAQELBQADggEBAGDUPPIjakpqybYjLoFHL8gOH2axmiWl
BSMmlB4CBJiXtuj/mO/YhycQRS7qXZXzlJRgrdFQTRC1ZlLL1GENhGkhv3B6TU8N
8YkK+/VNhZJFfqD840wzgP8wrQVPel6K05+MK+NGEq7Mwpqazbev3DcsNeSlfE/n
vWP+UcM7XAYdr1F1RPZp8KoPlu3xZO56S6gpUiBxbzdGP9LfVVDgeiC2aYMrPMqA
ynqESE2E3Qyg4kxrgc9cEeCFQYjhd54tCrL99V0XRuNcb2GYiRozcsTsh7BbI2BA
VVri+kAClKAW07ZbI+8UQonb3u82ve/UOHvBbboCVNYahOUUML1/xpY=
-----END CERTIFICATE-----
Generated at Tue Aug 22 21:25:37 2023 by rpki-client on console-ams.rpki-client.org