Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3139302e3234302e302f32332d3234203d3e203432333636.roa
File: 38352e3139302e3234302e302f32332d3234203d3e203432333636.roa (raw, json)
Hash identifier: hXx+7LgfTyGoQRPZWj381cjvZs2V7qdcfS9TCVp2FrU=
Subject key identifier: EC:E3:97:E5:BD:70:04:B0:20:AB:25:BC:CB:5C:44:AD:B9:F5:44:6A
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 41B509FB7FBFFFF4E4D4ED2D70888E48312261EF
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3139302e3234302e302f32332d3234203d3e203432333636.roa
Signing time: Tue 26 Mar 2024 18:03:16 +0000
ROA not before: Tue 26 Mar 2024 17:58:16 +0000
ROA not after: Tue 25 Mar 2025 18:03:16 +0000
asID: 42366
IP address blocks: 85.190.240.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 07:26:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:b5:09:fb:7f:bf:ff:f4:e4:d4:ed:2d:70:88:8e:48:31:22:61:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Mar 26 17:58:16 2024 GMT
Not After : Mar 25 18:03:16 2025 GMT
Subject: CN=ECE397E5BD7004B020AB25BCCB5C44ADB9F5446A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b4:bd:ec:e3:11:02:34:d4:c5:df:70:13:ef:
16:8a:0c:d3:a2:ae:83:e3:13:9e:bc:02:38:c0:b2:
ba:5e:a8:0b:ff:4e:ef:fd:72:91:9e:3c:5a:af:44:
c0:1b:1a:41:88:ee:f2:95:4b:d4:c6:ff:ca:28:1a:
d0:02:ba:33:6a:a9:4e:81:3b:b8:9e:45:48:b1:f8:
59:81:73:1e:55:8b:b8:bc:32:69:6f:c1:f7:d1:cd:
7c:a8:1c:e5:5c:44:c2:80:77:d8:0a:5d:e5:91:ba:
41:0d:47:fa:b0:a5:ad:cb:1f:d6:e9:9d:df:9e:55:
2e:d6:fa:5f:64:5b:cc:b6:33:e4:bc:4f:b5:bd:7e:
2b:3c:5c:b1:9a:f3:90:a2:28:d7:a0:95:8b:d2:bb:
bb:f3:72:c1:60:3f:e5:ad:83:67:8f:9e:df:8b:20:
3e:49:e4:27:89:39:35:6a:7f:51:80:12:c0:37:20:
76:36:e2:75:1d:f5:db:98:52:cf:66:f8:99:3f:93:
70:fc:f3:7f:9f:6d:0b:eb:2c:41:b6:ad:90:ff:93:
cb:91:69:0b:fa:b1:9f:a6:fd:73:85:8b:f3:8d:2e:
34:7a:4c:94:45:ba:33:eb:d8:ee:72:cf:83:9b:78:
95:9f:c7:43:81:91:8e:82:a0:1d:0f:8e:91:85:a2:
ed:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:E3:97:E5:BD:70:04:B0:20:AB:25:BC:CB:5C:44:AD:B9:F5:44:6A
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3139302e3234302e302f32332d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.190.240.0/23
Signature Algorithm: sha256WithRSAEncryption
81:f7:a9:f3:0e:73:d1:26:e3:cb:72:d4:32:b9:20:23:bc:2b:
09:16:b0:5d:7b:4a:10:98:0a:8f:8c:bc:0e:5d:c5:11:3f:04:
a5:26:0a:4a:d7:4c:23:a5:b8:5c:4a:6c:e4:53:74:b6:37:0a:
88:2a:8b:b9:8c:86:f7:38:be:e5:ae:53:45:c8:2c:03:0b:cf:
90:0f:a9:99:da:38:05:08:0e:10:02:ef:93:3f:a0:b7:21:73:
70:5a:ad:90:51:c1:fe:16:b6:1b:b6:59:c2:1d:d6:d2:70:51:
7a:ba:90:6f:47:b6:62:1e:88:49:04:4c:a0:8d:87:c4:a8:3a:
62:71:ab:38:9b:5d:35:aa:57:6b:82:c7:41:5a:c3:fd:bb:a9:
33:17:d9:96:0a:25:c8:76:fb:3d:63:7b:92:f9:53:dd:f8:c1:
ab:78:64:60:76:4e:c6:04:d3:1d:1d:04:38:43:37:ba:cf:41:
1a:e8:36:de:85:03:1d:6b:a2:a7:c5:2a:2b:44:7f:8a:f8:b7:
c0:96:92:72:16:2a:05:e1:8f:70:41:da:66:53:63:eb:46:7c:
b1:a3:a7:08:58:59:be:f7:f2:49:33:05:d6:ff:6d:05:4b:0f:
47:6d:b9:98:49:3c:4d:7c:90:1b:33:78:80:4e:57:0b:f6:e3:
f9:eb:ab:50
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUQbUJ+3+///Tk1O0tcIiOSDEiYe8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNDAzMjYxNzU4MTZaFw0yNTAzMjUxODAzMTZaMDMxMTAvBgNV
BAMTKEVDRTM5N0U1QkQ3MDA0QjAyMEFCMjVCQ0NCNUM0NEFEQjlGNTQ0NkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEtL3s4xECNNTF33AT7xaKDNOi
roPjE568AjjAsrpeqAv/Tu/9cpGePFqvRMAbGkGI7vKVS9TG/8ooGtACujNqqU6B
O7ieRUix+FmBcx5Vi7i8MmlvwffRzXyoHOVcRMKAd9gKXeWRukENR/qwpa3LH9bp
nd+eVS7W+l9kW8y2M+S8T7W9fis8XLGa85CiKNeglYvSu7vzcsFgP+Wtg2ePnt+L
ID5J5CeJOTVqf1GAEsA3IHY24nUd9duYUs9m+Jk/k3D883+fbQvrLEG2rZD/k8uR
aQv6sZ+m/XOFi/ONLjR6TJRFujPr2O5yz4ObeJWfx0OBkY6CoB0PjpGFou1VAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQU7OOX5b1wBLAgqyW8y1xErbn1RGowHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzNTJlMzEzOTMwMmUzMjM0
MzAyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzNDMyMzMzNjM2LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB
Vb7wMA0GCSqGSIb3DQEBCwUAA4IBAQCB96nzDnPRJuPLctQyuSAjvCsJFrBde0oQ
mAqPjLwOXcURPwSlJgpK10wjpbhcSmzkU3S2NwqIKou5jIb3OL7lrlNFyCwDC8+Q
D6mZ2jgFCA4QAu+TP6C3IXNwWq2QUcH+FrYbtlnCHdbScFF6upBvR7ZiHohJBEyg
jYfEqDpicas4m101qldrgsdBWsP9u6kzF9mWCiXIdvs9Y3uS+VPd+MGreGRgdk7G
BNMdHQQ4Qze6z0Ea6DbehQMda6KnxSorRH+K+LfAlpJyFioF4Y9wQdpmU2PrRnyx
o6cIWFm+9/JJMwXW/20FSw9HbbmYSTxNfJAbM3iATlcL9uP566tQ
-----END CERTIFICATE-----
Generated at Tue Apr 9 11:49:21 2024 by rpki-client on console-fra.rpki-client.org