Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3138352e3234302e3130372e302f32342d3234203d3e20383334.roa
File: 3138352e3234302e3130372e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: 0nTEcpU6htPV64VRniD+Ds9uIjxc8BZqV7qDKkuAr2A=
Subject key identifier: 37:E1:57:36:92:63:FE:F1:90:FB:22:E4:D6:58:C9:5B:EF:32:DF:98
Certificate issuer: /CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b
Certificate serial: 5AEE44BE5C6FDD45FEEAC18157629BAB9C010425
Authority key identifier: 8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3138352e3234302e3130372e302f32342d3234203d3e20383334.roa
Signing time: Wed 04 Dec 2024 00:04:38 +0000
ROA not before: Tue 03 Dec 2024 23:59:38 +0000
ROA not after: Wed 03 Dec 2025 00:04:38 +0000
asID: 834
IP address blocks: 185.240.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Dec 2024 22:03:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:ee:44:be:5c:6f:dd:45:fe:ea:c1:81:57:62:9b:ab:9c:01:04:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b
Validity
Not Before: Dec 3 23:59:38 2024 GMT
Not After : Dec 3 00:04:38 2025 GMT
Subject: CN=37E157369263FEF190FB22E4D658C95BEF32DF98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f9:f1:0f:ce:36:4b:c9:a5:ad:97:75:27:74:
14:20:bd:8b:27:db:9c:5f:34:cc:7b:7f:93:56:2c:
be:50:e1:a3:b8:7a:bc:76:73:91:7e:ec:10:5e:ba:
de:8b:f0:69:bb:dd:b0:23:81:36:a4:d0:21:98:85:
85:3b:ff:d9:9d:cd:45:8c:d9:47:3b:29:ef:6a:33:
09:47:a7:b6:2b:6f:d0:30:6c:2e:da:79:2a:d5:58:
cb:b3:ba:66:cc:62:6b:5b:5a:d2:84:9d:ca:ca:84:
63:f5:6d:c8:ad:aa:f0:be:b3:04:6b:f6:d8:16:55:
06:5d:22:7b:ea:2f:82:41:8e:43:9e:0d:8a:4d:ed:
1d:06:99:03:90:91:50:f6:68:82:02:37:57:fe:16:
08:70:f6:5d:7a:8d:8a:dd:1c:53:81:e7:9e:11:fc:
14:fd:61:01:7c:fd:b1:99:73:33:a3:50:59:90:2d:
78:38:a2:20:05:5f:5a:9d:a9:9d:13:9f:66:79:9e:
10:85:20:2b:18:b0:8c:5e:ac:14:31:2c:46:60:32:
ca:b1:1c:af:48:aa:f0:97:25:e8:25:9f:9f:53:be:
09:43:09:06:5e:97:b3:f4:6a:5f:18:d6:f1:b5:ca:
83:7c:46:6b:7e:ac:81:fa:ac:2f:c0:df:a7:bb:c0:
5d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:E1:57:36:92:63:FE:F1:90:FB:22:E4:D6:58:C9:5B:EF:32:DF:98
X509v3 Authority Key Identifier:
keyid:8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3138352e3234302e3130372e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.107.0/24
Signature Algorithm: sha256WithRSAEncryption
67:08:ca:5d:89:1e:d7:0f:70:87:d5:8f:2b:26:1c:50:d9:d2:
78:62:61:00:38:ad:3c:7a:ee:6c:6c:45:ad:e6:28:16:59:d3:
00:21:db:72:a0:bf:f6:45:8c:d8:31:0c:aa:6c:b5:b0:ed:5b:
f6:28:d5:7d:ae:e8:78:4b:45:dc:cf:5a:5f:69:39:e3:ab:58:
fa:e9:3f:fd:16:41:9d:f2:0b:c6:d3:f2:dc:47:a5:6a:4d:25:
15:dd:c4:30:55:70:c8:c9:08:5b:72:d0:5d:c3:2c:81:96:73:
80:87:a1:f9:ed:e9:d8:29:8a:0f:f1:af:41:65:86:72:5d:35:
1c:a8:31:33:5b:cc:98:a2:9a:87:13:d0:c8:eb:9d:07:9e:e7:
94:ff:5c:ac:a5:0a:4e:f4:fe:55:49:a0:24:65:6b:f7:fa:92:
70:69:0e:58:d1:6c:c1:6b:b3:8a:59:df:27:a1:7d:ba:ff:c7:
15:c5:5f:43:67:f3:f4:26:83:50:95:d4:45:69:39:8a:59:10:
22:f6:fb:8b:52:05:c9:4f:18:ae:a3:a7:07:ec:70:44:19:cb:
37:21:8e:d1:c6:1c:9b:40:2e:34:6a:22:26:32:b3:c8:af:c8:
94:ab:84:19:d6:cd:e0:0d:6d:75:4e:89:b0:5e:31:d8:4d:11:
a9:13:c2:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 02:13:42 2025 by rpki-client