Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3230382e34392e302f32342d3234203d3e203139343337.roa
File: 38352e3230382e34392e302f32342d3234203d3e203139343337.roa (raw, json)
Hash identifier: 356eSymALuYWdF4/FVR15E7wwIwUqPGpjJ/UX1rrwwI=
Subject key identifier: CF:87:F9:8C:56:22:F1:12:1A:15:E7:1E:53:73:AF:84:6D:F8:FC:F4
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 10442BA989AAFFCA4C26BE06F2024B93F440406D
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3230382e34392e302f32342d3234203d3e203139343337.roa
Signing time: Fri 20 Oct 2023 13:41:58 +0000
ROA not before: Fri 20 Oct 2023 13:36:58 +0000
ROA not after: Fri 18 Oct 2024 13:41:58 +0000
asID: 19437
IP address blocks: 85.208.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Mar 2024 07:49:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:44:2b:a9:89:aa:ff:ca:4c:26:be:06:f2:02:4b:93:f4:40:40:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Oct 20 13:36:58 2023 GMT
Not After : Oct 18 13:41:58 2024 GMT
Subject: CN=CF87F98C5622F1121A15E71E5373AF846DF8FCF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:7a:22:95:fa:62:2d:4a:55:8e:e4:5f:07:c2:
a3:17:4c:6a:82:c7:28:ea:f3:b0:89:d5:70:4d:05:
0d:2a:43:a9:25:43:ae:04:ea:63:d4:65:24:27:36:
bb:28:c7:f4:ba:99:c6:04:5c:b4:42:56:07:6e:eb:
7c:88:6c:00:07:a9:09:1a:e7:15:1c:9e:a2:bb:f4:
2a:dc:bb:04:05:e0:03:f2:10:fc:44:57:33:3d:38:
d1:26:d4:0d:1e:60:7f:e5:22:a8:7c:7a:9d:e5:61:
90:93:f0:79:8b:0b:15:33:29:f6:76:9e:2b:bd:9b:
79:2a:9d:bb:d7:0e:48:3d:45:5d:e2:55:f7:d2:b8:
22:e2:13:a9:4c:f8:d2:77:5b:7c:f5:09:4b:80:39:
4a:d1:eb:fa:44:0e:99:58:39:2c:33:5b:d6:f5:16:
82:42:65:f1:d8:97:9e:66:23:5c:7b:53:48:01:f5:
ea:53:9f:4d:b9:9f:8f:aa:12:52:57:5c:4b:25:7e:
48:78:03:99:ce:0e:93:42:e1:9b:56:cd:ad:7c:e8:
97:c0:41:ab:f1:5a:17:7f:ad:a2:5b:6e:ca:62:c0:
81:92:95:46:fe:35:e2:44:57:56:1e:6b:c8:ed:cf:
1a:f3:bf:16:e8:53:40:dd:08:5e:2c:b1:78:f3:72:
d7:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:87:F9:8C:56:22:F1:12:1A:15:E7:1E:53:73:AF:84:6D:F8:FC:F4
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38352e3230382e34392e302f32342d3234203d3e203139343337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.49.0/24
Signature Algorithm: sha256WithRSAEncryption
01:8b:da:e4:d9:92:23:b9:d5:88:49:2f:08:81:45:7d:d4:51:
81:62:f0:d1:8d:ed:06:24:8e:2a:b9:0c:ce:05:75:93:a5:20:
ee:bb:17:80:c5:e0:e2:3a:4d:00:eb:3d:6f:44:47:18:ca:74:
32:1a:a8:59:bf:a6:a2:0d:53:6b:e9:8a:c8:09:04:22:98:b0:
cd:cf:df:40:99:d5:b5:f8:f0:a5:da:8a:77:a6:1c:7a:1d:f4:
5d:44:2e:4a:2a:3c:db:1d:c8:17:d0:50:a8:29:30:c3:6d:90:
e1:96:3b:2d:9a:40:6f:2a:4f:67:e0:36:f2:fb:9e:a5:b8:cf:
69:1c:49:25:19:c1:83:8a:a4:ce:c5:68:14:52:2e:6a:76:40:
e2:30:c7:a8:a7:75:e2:be:e2:c3:39:7c:cf:bf:9d:e8:79:e5:
dc:51:33:7e:6d:26:2a:e6:6c:1e:94:fa:a1:eb:f9:c5:84:a2:
af:d2:bd:91:36:61:0c:54:11:9f:17:08:56:d5:d5:df:87:34:
dc:6f:13:04:a3:7b:b8:d7:ba:d6:10:55:2e:bc:13:da:ae:e1:
9a:7f:be:a0:58:63:2a:65:cd:df:4d:3b:fc:b9:d4:f9:3e:39:
1e:5c:2c:22:0c:01:b4:50:16:95:6a:5d:0c:18:bf:07:05:20:
8e:82:bd:31
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUEEQrqYmq/8pMJr4G8gJLk/RAQG0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yMzEwMjAxMzM2NThaFw0yNDEwMTgxMzQxNThaMDMxMTAvBgNV
BAMTKENGODdGOThDNTYyMkYxMTIxQTE1RTcxRTUzNzNBRjg0NkRGOEZDRjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWeiKV+mItSlWO5F8HwqMXTGqC
xyjq87CJ1XBNBQ0qQ6klQ64E6mPUZSQnNrsox/S6mcYEXLRCVgdu63yIbAAHqQka
5xUcnqK79CrcuwQF4APyEPxEVzM9ONEm1A0eYH/lIqh8ep3lYZCT8HmLCxUzKfZ2
niu9m3kqnbvXDkg9RV3iVffSuCLiE6lM+NJ3W3z1CUuAOUrR6/pEDplYOSwzW9b1
FoJCZfHYl55mI1x7U0gB9epTn025n4+qElJXXEslfkh4A5nODpNC4ZtWza186JfA
QavxWhd/raJbbspiwIGSlUb+NeJEV1Yea8jtzxrzvxboU0DdCF4ssXjzctcFAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUz4f5jFYi8RIaFeceU3OvhG34/PQwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzNTJlMzIzMDM4MmUzNDM5
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzOTM0MzMzNy5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFXQ
MTANBgkqhkiG9w0BAQsFAAOCAQEAAYva5NmSI7nViEkvCIFFfdRRgWLw0Y3tBiSO
KrkMzgV1k6Ug7rsXgMXg4jpNAOs9b0RHGMp0MhqoWb+mog1Ta+mKyAkEIpiwzc/f
QJnVtfjwpdqKd6Yceh30XUQuSio82x3IF9BQqCkww22Q4ZY7LZpAbypPZ+A28vue
pbjPaRxJJRnBg4qkzsVoFFIuanZA4jDHqKd14r7iwzl8z7+d6Hnl3FEzfm0mKuZs
HpT6oev5xYSir9K9kTZhDFQRnxcIVtXV34c03G8TBKN7uNe61hBVLrwT2q7hmn++
oFhjKmXN3007/LnU+T45HlwsIgwBtFAWlWpdDBi/BwUgjoK9MQ==
Generated at Mon Mar 18 11:50:13 2024 by rpki-client on console-fra.rpki-client.org