Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e32332e302f32342d3234203d3e20383334.roa
File: 3134362e3130332e32332e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: xWTehjU+QcumjgmOYb0xIQ3WsJ0bya0uxqQvo5PQK2Y=
Subject key identifier: 9A:38:22:1D:CC:D6:01:84:BC:E9:79:2F:5C:81:02:69:4B:08:C8:F2
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 45C02315F59FCB526733438006BF48EFDB068905
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e32332e302f32342d3234203d3e20383334.roa
Signing time: Sun 31 Mar 2024 08:51:27 +0000
ROA not before: Sun 31 Mar 2024 08:46:27 +0000
ROA not after: Sun 30 Mar 2025 08:51:27 +0000
asID: 834
IP address blocks: 146.103.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 31 Mar 2024 16:14:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:c0:23:15:f5:9f:cb:52:67:33:43:80:06:bf:48:ef:db:06:89:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 31 08:46:27 2024 GMT
Not After : Mar 30 08:51:27 2025 GMT
Subject: CN=9A38221DCCD60184BCE9792F5C8102694B08C8F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8f:91:d0:a0:0f:8b:32:4c:ff:cd:74:90:c9:
36:34:08:2f:2a:6b:56:46:03:f4:dc:9d:5f:74:39:
37:e6:9d:30:0d:0b:d3:57:54:f1:57:9e:57:1e:c4:
8f:3a:c5:d8:61:aa:70:1f:11:f6:a0:cc:46:55:b0:
fd:9c:8d:b6:cd:ad:ac:96:47:a7:ff:c8:5e:28:b0:
c3:45:00:96:dd:85:92:4d:2d:39:70:1a:e6:69:aa:
01:69:f1:67:fc:43:9d:09:49:9e:d5:7c:d1:fb:6d:
22:48:b0:e2:47:d3:60:4e:d8:d5:3a:25:9f:7e:fb:
e6:c9:15:5a:ad:b7:75:f4:cf:c7:9d:2a:b6:29:c4:
09:43:df:30:72:01:81:ca:da:17:94:18:fe:5e:83:
eb:de:2b:a9:80:43:52:11:bc:d5:8e:e9:d1:7f:b8:
56:28:2d:6a:62:ab:49:12:fc:da:1c:3c:4e:fb:7e:
c7:21:26:19:cd:07:50:81:57:b8:bb:c6:56:0c:8a:
36:ad:51:cb:c1:7d:ee:35:a9:ce:07:04:a2:e7:65:
4c:b3:9d:58:2f:2d:d5:9f:7d:76:9f:0a:99:25:d4:
34:23:c1:f5:bd:dd:10:dd:23:6b:86:35:dd:16:6a:
dc:85:83:d7:04:27:61:60:87:87:a0:7d:0f:84:cc:
2c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:38:22:1D:CC:D6:01:84:BC:E9:79:2F:5C:81:02:69:4B:08:C8:F2
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e32332e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.103.23.0/24
Signature Algorithm: sha256WithRSAEncryption
31:b6:51:eb:d1:21:d2:bf:d1:c8:fb:1c:ef:54:e2:a8:74:1c:
03:c7:bb:a2:ac:04:1e:63:53:60:ff:6d:25:2b:a1:b3:de:81:
2b:f9:c8:7f:4f:c4:c9:6d:42:63:1a:3c:27:b3:c4:76:89:5a:
45:63:82:c8:d8:3b:8f:2d:e0:25:d5:1a:a2:32:7d:04:d0:30:
f5:6f:93:c6:d6:28:86:be:64:f4:03:6c:d4:1d:4a:f7:cd:4f:
f4:7e:e0:0a:7a:eb:3d:62:95:58:53:fb:49:45:6d:6d:dd:10:
79:16:e2:70:c0:f1:d2:3f:78:7b:6c:46:aa:e1:b6:b4:22:fb:
21:34:0a:42:b3:21:97:ba:51:11:96:4c:6a:24:ed:93:ac:c0:
0a:55:58:42:26:64:7f:51:60:f3:a3:3d:eb:46:b4:d7:40:28:
ef:c9:9f:a5:5a:51:e2:94:13:df:ee:ea:a6:4a:70:fc:c9:8e:
bc:58:4d:26:e7:ba:0b:55:a0:8e:35:b3:9b:82:01:de:09:07:
37:bd:10:8c:4f:e1:2f:78:ee:0f:44:83:a3:eb:ea:d9:5f:e0:
de:d6:70:11:32:0d:bf:ce:6c:8c:c3:22:f1:29:6d:4f:7d:14:
40:d8:0d:b4:28:f2:48:3b:9d:49:16:c5:89:07:dc:cb:87:01:
0c:ec:02:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org