Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/38352e3230392e3232392e302f32342d3234203d3e20383334.roa
File: 38352e3230392e3232392e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: OnJrSFaS/V8foosPRNyWUha22diKgNH7W8ekj6i2zBI=
Subject key identifier: 6C:02:6E:04:C4:55:83:B1:C4:ED:B8:3B:EE:26:D4:21:7E:4D:16:C1
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 543F3746C171247AF68CA877D843409377EA8C7E
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/38352e3230392e3232392e302f32342d3234203d3e20383334.roa
Signing time: Fri 05 Jan 2024 00:00:05 +0000
ROA not before: Thu 04 Jan 2024 23:55:05 +0000
ROA not after: Fri 03 Jan 2025 00:00:05 +0000
asID: 834
IP address blocks: 85.209.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jan 2024 18:16:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:3f:37:46:c1:71:24:7a:f6:8c:a8:77:d8:43:40:93:77:ea:8c:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Jan 4 23:55:05 2024 GMT
Not After : Jan 3 00:00:05 2025 GMT
Subject: CN=6C026E04C45583B1C4EDB83BEE26D4217E4D16C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ef:37:95:8c:35:3b:de:69:5a:cd:8e:12:11:
4c:ec:2f:23:83:65:dd:5c:a3:28:49:ae:74:60:d4:
a0:9c:31:a9:db:f8:4d:1b:db:16:ea:8e:74:11:75:
16:a3:7c:3d:f4:2f:8b:8a:8a:13:55:e8:af:be:80:
7b:ea:bd:57:af:ab:7d:00:cd:a3:9e:8c:b0:80:ad:
c9:1c:09:80:8e:f3:63:56:0c:0f:c4:14:b0:fb:af:
01:53:17:f5:62:bf:8d:24:c3:ce:ee:fc:81:6b:4a:
6a:1f:25:df:db:a0:6f:ea:00:f8:0a:79:49:9b:ee:
c8:f3:69:af:29:59:39:08:99:4a:12:97:eb:dd:fe:
5d:10:8f:c2:7f:69:2f:5a:40:80:2c:7f:80:0d:7f:
df:a5:c0:48:7c:e5:ea:f5:97:f6:c1:8d:b7:8d:70:
a1:20:3c:fb:89:fa:0a:a9:3a:11:d2:4a:ba:c6:4c:
57:d2:e1:38:78:42:63:58:31:21:f5:e9:0a:98:79:
92:62:8f:be:7c:d2:ee:1f:b5:12:61:8c:e5:8d:d4:
47:2a:66:93:28:d4:11:52:15:0c:ca:53:92:09:68:
24:c6:37:d4:88:4d:40:c9:af:20:4e:f7:c8:0d:7e:
e9:24:8e:86:b2:6d:d6:6a:e0:66:cf:dc:eb:88:70:
67:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:02:6E:04:C4:55:83:B1:C4:ED:B8:3B:EE:26:D4:21:7E:4D:16:C1
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/38352e3230392e3232392e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.229.0/24
Signature Algorithm: sha256WithRSAEncryption
18:b9:ba:4a:bd:95:06:73:dd:e3:82:90:76:e3:54:30:2d:48:
e0:f5:33:a3:6a:70:ea:b6:d5:9c:9f:56:5d:60:63:4e:c8:75:
af:a4:e3:0b:99:1e:75:f8:1d:1e:58:c6:49:8d:fe:61:8c:95:
94:75:83:7a:32:93:45:fe:a0:3b:87:e3:a1:21:dc:19:07:15:
0e:97:d9:5c:ce:3f:64:ae:bf:fb:f0:19:18:e1:c6:dc:fc:82:
d9:3b:05:76:5b:a2:7f:7e:33:10:cd:36:c5:92:d7:02:7a:09:
df:26:87:d3:4f:98:20:c5:38:92:63:75:90:9a:8d:80:b3:88:
24:a0:6f:b9:ea:dd:62:08:8f:bc:6c:61:f9:79:d1:6f:52:84:
7c:13:a4:f1:ee:8d:18:de:76:15:ea:f0:b6:53:03:2c:38:46:
06:c1:13:45:21:51:bc:5b:e4:24:7a:62:ea:32:85:4a:e5:e5:
9f:5d:0d:93:11:17:22:9f:5e:85:21:64:26:f4:b4:63:89:2f:
ae:50:2b:1f:52:4e:bd:6d:c3:d0:86:21:5a:7d:c8:f5:3b:85:
08:6b:98:be:17:30:78:18:d9:ba:75:49:cc:6c:c6:73:9c:30:
b5:38:eb:65:f6:60:99:18:75:62:e6:0f:34:80:d6:7a:11:dd:
c9:80:f5:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 01:01:51 2024 by rpki-client on console.sobornost.net