Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e32332e302f32342d3234203d3e20343030383636.roa
File: 3134362e3130332e32332e302f32342d3234203d3e20343030383636.roa (raw, json)
Hash identifier: Q+/29cPLssfY8N+v9nONAT+9ssd9mWOS9xZKEko0BxQ=
Subject key identifier: DF:D0:D2:F1:16:6E:C7:7D:75:83:B5:07:0A:17:EC:61:BF:18:A9:8A
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 3E9CFCC9AAD09E321180155931646F7E5B361FBF
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e32332e302f32342d3234203d3e20343030383636.roa
Signing time: Sun 31 Mar 2024 16:14:53 +0000
ROA not before: Sun 31 Mar 2024 16:09:53 +0000
ROA not after: Sun 30 Mar 2025 16:14:53 +0000
asID: 400866
IP address blocks: 146.103.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 Apr 2024 11:09:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:9c:fc:c9:aa:d0:9e:32:11:80:15:59:31:64:6f:7e:5b:36:1f:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 31 16:09:53 2024 GMT
Not After : Mar 30 16:14:53 2025 GMT
Subject: CN=DFD0D2F1166EC77D7583B5070A17EC61BF18A98A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:dc:d2:25:81:68:30:6c:ce:73:f7:1f:10:ca:
3d:de:4a:48:b2:0e:68:20:5e:44:28:c7:aa:5d:97:
bd:ea:8c:d2:53:9c:23:65:cf:51:ac:22:88:21:7b:
f8:b9:8b:f7:92:69:a1:51:29:b6:4e:95:80:da:92:
31:f5:bb:97:b3:08:f2:21:5a:aa:ca:25:35:2a:9f:
9b:23:3b:b8:54:44:3f:60:77:9e:40:6c:8c:a0:ce:
bb:2c:cd:3f:cc:05:aa:1d:36:59:1c:7c:c8:cf:a3:
90:6b:c7:ae:6d:8d:b5:c5:55:6a:17:4d:7f:f1:b4:
87:5a:1e:ca:b0:c0:d3:7a:21:b5:2d:10:18:8b:c5:
ca:82:c0:5a:58:dc:bc:0a:93:db:28:5f:b6:34:b8:
c5:ff:d1:79:db:04:e8:3b:50:a9:b2:35:8e:ed:69:
30:65:a3:61:89:92:6b:30:12:66:db:e9:14:d3:e0:
dc:7e:77:69:05:29:61:2d:f3:50:8f:91:fd:50:ea:
f5:18:ac:7c:c6:4c:1a:5e:08:bd:91:84:78:71:d8:
58:13:b6:e2:fa:d9:8b:b0:7b:ed:a7:6c:73:81:59:
97:73:e1:4e:9a:3e:8c:25:81:b5:fc:91:6b:02:f7:
12:0a:82:cf:9a:a2:1b:1e:f6:55:b7:85:50:14:4e:
16:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:D0:D2:F1:16:6E:C7:7D:75:83:B5:07:0A:17:EC:61:BF:18:A9:8A
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e32332e302f32342d3234203d3e20343030383636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.103.23.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:27:d6:11:75:f4:79:58:a5:38:6b:ad:2a:9b:8d:25:a1:c4:
c8:a2:0d:e1:90:17:7b:1c:a4:52:f4:0f:07:36:0b:93:07:a3:
e8:e5:d2:ed:61:ec:a4:53:30:db:71:75:8d:fd:f1:bf:7e:c0:
cd:9b:44:5e:fd:55:a9:65:af:22:5f:ac:1a:6c:89:0c:32:cb:
ce:a4:c8:c7:d2:3d:bc:e8:1c:47:55:79:5a:8c:09:7b:7a:fb:
e0:70:25:49:17:c5:43:48:0d:bf:31:63:d4:07:48:49:30:5d:
29:09:46:15:cd:b0:de:3a:bd:cf:dd:52:8a:26:e5:f7:9c:a1:
34:28:d3:04:f5:30:6e:ec:dd:49:55:9d:8c:f7:e4:90:e3:b2:
47:15:d7:d2:af:28:3c:c8:48:c9:03:d3:ec:98:55:25:dc:3f:
ca:7f:85:82:be:68:81:9f:ae:9f:d6:fc:d6:51:f9:3f:0a:78:
19:2b:0f:bd:7c:db:bc:68:7e:7e:fc:ef:02:3f:16:17:cd:2d:
bb:da:5b:fb:e1:51:44:fb:06:fa:64:93:e7:6b:ac:a7:c4:c8:
89:17:3a:7d:b4:cc:1c:13:7b:fb:d6:81:28:be:7d:1a:73:69:
ef:10:29:cf:53:d9:ce:97:64:e7:33:08:5b:19:98:d6:ee:23:
57:aa:4e:7c
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUPpz8yarQnjIRgBVZMWRvfls2H78wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi
MjQ2YmZjYzAeFw0yNDAzMzExNjA5NTNaFw0yNTAzMzAxNjE0NTNaMDMxMTAvBgNV
BAMTKERGRDBEMkYxMTY2RUM3N0Q3NTgzQjUwNzBBMTdFQzYxQkYxOEE5OEEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC13NIlgWgwbM5z9x8Qyj3eSkiy
DmggXkQox6pdl73qjNJTnCNlz1GsIoghe/i5i/eSaaFRKbZOlYDakjH1u5ezCPIh
WqrKJTUqn5sjO7hURD9gd55AbIygzrsszT/MBaodNlkcfMjPo5Brx65tjbXFVWoX
TX/xtIdaHsqwwNN6IbUtEBiLxcqCwFpY3LwKk9soX7Y0uMX/0XnbBOg7UKmyNY7t
aTBlo2GJkmswEmbb6RTT4Nx+d2kFKWEt81CPkf1Q6vUYrHzGTBpeCL2RhHhx2FgT
tuL62Yuwe+2nbHOBWZdz4U6aPowlgbX8kWsC9xIKgs+aohse9lW3hVAUThaJAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQU39DS8RZux311g7UHChfsYb8YqYowHwYDVR0j
BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy
NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK
R3Y4dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMDliZTNhYWUt
YWVhMS00MWRjLWIxYjktOTVhYzU5MTgyNDRkLzAvMzEzNDM2MmUzMTMwMzMyZTMy
MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDMwMzAzODM2MzYucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BACSZxcwDQYJKoZIhvcNAQELBQADggEBAI8n1hF19HlYpThrrSqbjSWhxMiiDeGQ
F3scpFL0Dwc2C5MHo+jl0u1h7KRTMNtxdY398b9+wM2bRF79VallryJfrBpsiQwy
y86kyMfSPbzoHEdVeVqMCXt6++BwJUkXxUNIDb8xY9QHSEkwXSkJRhXNsN46vc/d
Uoom5fecoTQo0wT1MG7s3UlVnYz35JDjskcV19KvKDzISMkD0+yYVSXcP8p/hYK+
aIGfrp/W/NZR+T8KeBkrD71827xofn787wI/FhfNLbvaW/vhUUT7Bvpkk+drrKfE
yIkXOn20zBwTe/vWgSi+fRpzae8QKc9T2c6XZOczCFsZmNbuI1eqTnw=
-----END CERTIFICATE-----
Generated at Sat Apr 6 12:13:37 2024 by rpki-client on console-fra.rpki-client.org