Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135322e302f32342d3234203d3e20383334.roa
File: 3138352e3232362e3135322e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: 1dfTcmhHu/h/kEpMhvdmB+nB/neFL59TKKmg+E9bQIQ=
Subject key identifier: CF:AC:DF:CD:C7:1D:F5:30:F8:99:92:EA:91:FE:CB:A2:0B:8F:4B:37
Certificate issuer: /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial: 286F5ADD80F7E20672167EBAE60E3CA7B3E14538
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135322e302f32342d3234203d3e20383334.roa
Signing time: Thu 13 Jun 2024 00:01:33 +0000
ROA not before: Wed 12 Jun 2024 23:56:33 +0000
ROA not after: Thu 12 Jun 2025 00:01:33 +0000
asID: 834
IP address blocks: 185.226.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Jun 2024 07:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:6f:5a:dd:80:f7:e2:06:72:16:7e:ba:e6:0e:3c:a7:b3:e1:45:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Validity
Not Before: Jun 12 23:56:33 2024 GMT
Not After : Jun 12 00:01:33 2025 GMT
Subject: CN=CFACDFCDC71DF530F89992EA91FECBA20B8F4B37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:9a:d2:b6:0a:5e:5d:67:67:b2:d7:dd:d5:f0:
8f:49:e3:1b:36:27:53:c3:b8:d3:4a:ea:ee:df:18:
24:a6:e1:a0:02:16:59:da:e5:e8:6d:85:a6:83:2f:
72:7c:37:16:57:7c:e3:30:f1:e9:5c:a9:5d:72:bb:
ff:43:47:81:1d:73:bd:fc:5b:90:d2:be:77:e4:93:
0d:df:66:73:1e:0a:11:8c:4e:ce:89:44:2d:57:65:
67:f9:97:14:34:e2:56:be:27:10:8e:17:8a:dc:21:
bc:e8:41:81:22:35:88:47:63:8a:22:94:9a:74:be:
6b:a9:16:95:b0:13:5d:eb:84:59:67:99:7f:ac:f5:
a4:61:92:d8:96:23:a4:12:51:0b:0a:a0:22:e8:45:
14:bc:73:dd:14:99:5a:6b:c7:ad:6d:95:28:9c:51:
18:4f:54:f4:be:43:18:11:22:49:a6:61:0e:2c:71:
d8:56:75:0c:bb:13:29:00:ca:86:49:29:ca:cd:7f:
11:55:2a:b3:d7:5d:dc:51:d9:4f:6a:4e:bd:25:8c:
49:f9:05:64:07:a5:d8:e4:57:d4:7a:eb:cb:38:c7:
7a:61:74:30:db:9d:54:5c:47:b2:16:e0:a7:42:85:
4f:bf:34:38:0d:eb:bf:5e:be:47:95:81:27:18:bc:
67:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:AC:DF:CD:C7:1D:F5:30:F8:99:92:EA:91:FE:CB:A2:0B:8F:4B:37
X509v3 Authority Key Identifier:
keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135322e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.152.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:98:2d:2d:47:93:25:e1:b9:26:68:c5:14:b2:6b:0a:54:f7:
45:ff:dd:f1:9e:7b:05:27:55:47:46:19:aa:5d:bb:2e:2a:d3:
1d:0d:8f:4b:8e:45:e1:ac:5e:71:95:b0:cf:6f:48:5a:09:82:
32:8d:6a:e7:1b:4b:dc:f4:c2:29:6c:69:d3:fc:aa:00:05:aa:
dd:5f:00:55:40:17:3f:c3:b4:f8:e2:27:14:9d:b2:a8:c9:78:
66:94:dd:cc:3b:ca:68:05:2a:75:66:69:5d:96:8f:f7:3f:f2:
75:64:d9:b6:fc:fc:5d:3f:22:ed:d9:47:69:3e:83:d2:3c:6a:
61:c9:7e:16:7a:e7:87:9e:57:dd:c6:70:f7:13:e4:39:76:f3:
97:a1:40:88:62:4b:74:c4:54:42:5d:38:37:bf:2e:22:70:d1:
ee:0d:c4:c1:b8:8a:e2:61:b5:ed:2d:55:9e:99:59:6b:96:9f:
7b:88:e0:60:30:01:21:fa:5d:7d:a9:95:42:30:b2:12:99:a9:
78:66:8f:78:6a:11:4c:a6:4c:5a:80:cc:8d:15:d8:c4:cf:77:
f1:6c:a0:14:30:5f:10:7d:d4:2a:3c:6c:f5:69:46:dd:48:ce:
b8:bd:06:d5:b2:8b:78:ab:3e:81:eb:28:72:72:3b:b8:38:83:
4f:78:63:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 18 15:35:53 2024 by rpki-client on console.sobornost.net