Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e32322e302f32342d3234203d3e20333938333535.roa
File: 3134362e3130332e32322e302f32342d3234203d3e20333938333535.roa (raw, json)
Hash identifier: dQiHAaR5NSV+JPcnZbKklKUbpcmP3/BDFsoK4aE/Kro=
Subject key identifier: 2B:AA:05:72:37:2A:AC:05:9B:AA:C9:28:7E:85:8B:4A:F2:5F:91:DA
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 4B22288F3E7457D6A514117B59FF2885E85CD489
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e32322e302f32342d3234203d3e20333938333535.roa
Signing time: Wed 03 Apr 2024 09:01:24 +0000
ROA not before: Wed 03 Apr 2024 08:56:24 +0000
ROA not after: Wed 02 Apr 2025 09:01:24 +0000
asID: 398355
IP address blocks: 146.103.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 Apr 2024 11:09:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:22:28:8f:3e:74:57:d6:a5:14:11:7b:59:ff:28:85:e8:5c:d4:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Apr 3 08:56:24 2024 GMT
Not After : Apr 2 09:01:24 2025 GMT
Subject: CN=2BAA0572372AAC059BAAC9287E858B4AF25F91DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c4:5b:0a:4d:06:1f:40:da:99:27:b9:72:3d:
c1:a4:d5:40:eb:ad:3b:18:69:c1:c7:cd:1b:87:6b:
9f:a1:0c:7a:f3:b0:34:4b:7c:16:e8:23:94:24:bc:
4e:68:c6:1b:da:4f:9c:ae:56:70:a1:d8:9d:d9:36:
7d:02:e6:fd:37:2a:51:e5:f5:06:2c:ef:6b:eb:51:
1f:54:74:d6:05:30:44:fd:50:af:27:7e:56:6c:48:
12:cc:f3:e1:30:53:2c:6d:b3:c4:c6:f8:8a:75:16:
c9:1f:86:9a:d5:b9:3c:d7:8d:b7:d4:5c:95:df:d1:
1d:81:08:0e:f9:ec:e3:5e:47:92:66:17:07:c6:99:
10:18:46:65:4d:53:e3:1f:be:17:c3:c9:d7:e4:f1:
c4:f8:3a:63:cf:b8:20:63:37:ba:9a:da:ed:fc:0d:
ab:ec:06:79:ad:a2:1b:ab:e4:d5:8d:43:96:83:8c:
3f:29:8e:0e:35:20:f0:af:20:4c:ff:75:9a:6c:cd:
f7:07:f5:f4:f9:14:de:c6:b5:6c:34:2e:5b:80:ca:
f0:ea:d3:44:9c:e0:de:16:6c:d7:8d:00:d1:f0:c8:
cf:a6:b5:ec:c7:61:a4:8a:2d:9b:15:53:27:b2:1f:
77:c0:6a:b6:75:9a:bf:fc:cf:94:75:d5:f8:47:5e:
0c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:AA:05:72:37:2A:AC:05:9B:AA:C9:28:7E:85:8B:4A:F2:5F:91:DA
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e32322e302f32342d3234203d3e20333938333535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.103.22.0/24
Signature Algorithm: sha256WithRSAEncryption
49:64:9f:9c:8f:ce:58:ba:b2:90:5f:2e:63:06:67:0b:96:a5:
75:fe:70:6d:af:49:0f:02:40:2b:d7:80:eb:ad:07:9c:36:44:
1b:f5:32:f9:66:bc:00:36:e0:e8:ee:ee:3b:67:fc:48:7f:f9:
31:b2:6a:4c:d5:c6:a9:e0:c1:d3:cc:a5:d4:86:84:d3:48:32:
56:4f:8a:36:9e:5c:43:16:d0:31:27:60:98:7b:d7:93:36:cd:
c5:25:77:bc:d8:66:5c:98:ad:92:a5:98:6c:60:74:a8:b0:2e:
a3:58:56:0c:29:36:7c:e1:96:36:70:39:f3:5b:c7:02:dc:ac:
ea:dd:ac:d1:0a:39:5a:15:ba:10:f0:14:65:a9:85:ff:fa:2f:
d5:fb:72:e8:29:9b:13:ef:98:0a:b8:d4:95:e3:09:6f:73:ea:
13:42:75:0b:b2:d5:33:46:83:de:f5:a6:06:85:4d:8f:05:10:
bc:8b:76:63:c2:ce:31:ef:9d:2a:2d:94:c2:6c:e3:5f:44:56:
f5:7f:2c:0d:cc:44:4c:e3:02:2d:18:81:7e:47:de:5e:92:73:
3e:86:49:76:02:40:41:9d:8e:e3:b0:71:ed:90:79:4b:83:af:
89:2c:d4:32:c9:47:bf:d7:33:4b:bf:b9:8c:61:91:55:f9:48:
f7:94:70:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:54 2024 by rpki-client on console-ams.rpki-client.org