Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e32302e302f32332d3233203d3e203633393032.roa
File: 3134362e3130332e32302e302f32332d3233203d3e203633393032.roa (raw, json)
Hash identifier: 0dm+++av8RieionBAHDMggJLC9glDWrZtwCOZ0Htv38=
Subject key identifier: DE:98:4E:AB:0D:44:9A:A6:51:AB:AA:27:E4:B4:4D:5A:A7:11:C2:4D
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 569D5739CE8F512E10572CFD7ED4D31B54C33A81
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e32302e302f32332d3233203d3e203633393032.roa
Signing time: Mon 25 Mar 2024 10:10:45 +0000
ROA not before: Mon 25 Mar 2024 10:05:45 +0000
ROA not after: Mon 24 Mar 2025 10:10:45 +0000
asID: 63902
IP address blocks: 146.103.20.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sat 06 Apr 2024 11:09:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:9d:57:39:ce:8f:51:2e:10:57:2c:fd:7e:d4:d3:1b:54:c3:3a:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 25 10:05:45 2024 GMT
Not After : Mar 24 10:10:45 2025 GMT
Subject: CN=DE984EAB0D449AA651ABAA27E4B44D5AA711C24D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:3e:41:06:b4:94:bc:ae:32:80:5d:f3:59:ff:
0b:e9:68:49:b9:01:54:a8:d5:b6:16:03:0a:6a:36:
5c:60:b3:b9:bf:92:cc:88:26:2a:5a:ee:1f:0c:1c:
28:81:5e:2f:e9:2b:7d:39:4d:91:7c:2e:da:fe:8f:
d1:eb:b4:77:f9:b4:38:17:3d:99:7a:61:9f:cf:42:
9c:06:7c:0f:28:03:a6:30:18:91:be:39:b6:22:75:
62:f4:5e:50:5f:4a:ca:44:06:3b:5d:ea:4f:ce:99:
4c:a4:9e:74:2d:92:71:e3:f8:a5:a7:2c:20:f3:b9:
ba:05:3d:57:5c:47:51:9d:0d:6b:b9:c4:ff:d7:dd:
5a:06:d0:7b:c8:2b:a5:7e:02:a6:fe:d0:53:26:39:
51:8f:23:c7:fc:a4:49:75:58:9b:b2:86:6f:de:e4:
fb:c6:da:5b:c1:45:da:ec:68:ab:e9:54:41:04:bf:
e0:b9:11:62:e7:80:12:6a:aa:2f:ba:d0:e9:a6:9e:
3f:d1:d4:f2:44:58:c8:4b:1e:0b:89:4c:73:f6:75:
a9:7a:ac:1d:82:e8:f6:d5:4e:c3:37:d5:99:e4:83:
f4:ac:eb:3f:9e:a2:88:c5:e0:42:54:44:01:6b:35:
eb:e7:65:2e:55:d2:0b:b6:97:9c:5e:ee:f5:32:d9:
c7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:98:4E:AB:0D:44:9A:A6:51:AB:AA:27:E4:B4:4D:5A:A7:11:C2:4D
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e32302e302f32332d3233203d3e203633393032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.103.20.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:b9:29:8a:74:44:9a:d0:4d:2d:6f:6a:53:d3:12:2b:aa:b2:
70:d4:47:39:02:69:3c:73:06:9b:21:bd:90:d7:11:bd:20:b9:
9b:a1:df:36:bb:30:74:95:05:0a:98:ca:70:b4:fe:5a:f4:0f:
8d:20:97:a3:ea:35:30:bc:d3:4c:5a:0a:d2:19:6d:57:91:78:
53:b7:f2:5a:96:02:db:1e:81:ef:83:0d:03:7b:9d:7f:17:ed:
13:4d:f6:9c:d1:94:b1:7d:61:68:99:d8:b7:31:06:a6:f4:1e:
41:e8:9d:22:83:30:2c:a5:c6:8c:6a:05:fb:2f:dc:7e:cc:ae:
a3:34:65:d0:03:18:37:ae:c0:22:fd:e0:eb:42:11:ad:2c:87:
2a:42:5c:be:39:a2:27:d3:0f:3e:e5:97:05:02:ed:ff:b4:bf:
7c:1b:6e:90:e5:d0:a8:eb:a3:a8:e3:d9:c6:b7:80:71:aa:e1:
ef:f9:87:55:4f:17:1b:39:e3:54:ff:6c:a2:99:8b:67:5d:92:
9a:07:1b:c8:37:24:67:b0:ab:0d:f2:2c:9e:1b:c2:72:32:e1:
5b:1a:e7:ab:e0:52:7b:2d:fb:75:f3:7a:9c:d5:8b:e2:d3:0e:
b0:b8:4f:ac:7c:9f:25:d2:9a:9e:97:c4:4c:b8:95:87:51:1c:
21:d5:90:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:54 2024 by rpki-client on console-ams.rpki-client.org