Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e33322e302f32302d3234203d3e20383334.roa
File: 3134362e3130332e33322e302f32302d3234203d3e20383334.roa (raw, json)
Hash identifier: sUBAluhzKrLsYoEzHj+SkCLuEONPRYSopjvFrHOU/vU=
Subject key identifier: 57:E9:88:00:6C:74:F1:3E:CC:EB:E2:FE:C7:46:CD:FF:2F:B7:4C:30
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 0D74D8D862505D109B083CB5D8BB223545868C6D
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e33322e302f32302d3234203d3e20383334.roa
Signing time: Tue 26 Mar 2024 10:16:02 +0000
ROA not before: Tue 26 Mar 2024 10:11:02 +0000
ROA not after: Tue 25 Mar 2025 10:16:02 +0000
asID: 834
IP address blocks: 146.103.32.0/20 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Mar 2024 17:38:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:74:d8:d8:62:50:5d:10:9b:08:3c:b5:d8:bb:22:35:45:86:8c:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 26 10:11:02 2024 GMT
Not After : Mar 25 10:16:02 2025 GMT
Subject: CN=57E988006C74F13ECCEBE2FEC746CDFF2FB74C30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ee:70:cc:a1:99:00:40:e6:8c:0b:c3:13:09:
10:15:54:85:d5:1b:94:09:e6:6b:dd:da:aa:06:a5:
6d:78:7a:f4:30:48:65:8b:76:5a:3c:aa:bf:65:2c:
c5:10:bc:0d:98:c6:d0:c0:5d:4e:94:38:d4:eb:01:
db:3c:16:58:c1:7c:35:4c:cc:e7:d8:e9:e2:1a:f9:
e3:be:04:98:10:f5:27:1a:75:ca:50:3b:83:d1:85:
78:12:7d:90:e6:d6:ee:ec:29:b4:5f:67:7f:fd:d4:
64:e4:26:61:7f:22:04:97:08:ba:67:a6:bd:b7:88:
47:40:b0:99:79:f9:9c:e5:53:82:68:e3:bd:54:c8:
bc:10:65:d8:c7:a1:cb:9e:90:ba:c5:0e:1b:e5:0b:
3f:71:3a:b2:a1:21:bd:f0:94:94:a5:ba:34:b9:00:
a1:67:ed:33:db:11:e9:31:1d:de:cd:2e:e8:19:c5:
13:9a:8a:82:97:f0:88:2f:31:1e:c1:d7:29:49:0f:
14:32:df:04:7e:e3:a2:c9:70:71:a8:33:88:fe:b1:
e4:fa:3e:60:a2:c7:ed:6b:ca:ad:12:13:de:d7:23:
fa:5a:fc:be:7d:e5:48:9b:1b:fb:3d:d1:a5:30:07:
ed:c7:2c:b1:4f:2b:4d:10:7a:f0:4d:9e:6e:f7:3c:
32:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:E9:88:00:6C:74:F1:3E:CC:EB:E2:FE:C7:46:CD:FF:2F:B7:4C:30
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e33322e302f32302d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.103.32.0/20
Signature Algorithm: sha256WithRSAEncryption
6e:f1:71:4a:56:31:a5:5c:41:ee:e1:2f:d8:93:44:47:b0:af:
44:50:9a:4f:61:ed:4c:5b:c2:87:1e:7b:54:b5:67:cd:ce:6e:
9c:b6:d5:9d:c3:46:ee:71:18:07:30:ea:28:d5:e8:4e:48:58:
22:4f:6b:7d:8c:5c:81:42:39:a8:2d:b3:30:83:12:27:f4:6d:
f9:f6:47:05:64:d4:c9:50:59:5a:f4:80:38:ce:fe:cd:2f:dc:
68:99:ea:e8:bf:53:66:62:33:8e:aa:5c:fb:10:1b:b0:20:63:
68:fe:ce:93:ba:ac:23:12:b6:04:40:fb:ae:14:fe:52:15:24:
53:e8:6e:b9:65:49:61:37:d6:7f:5b:10:04:1f:90:53:e7:bc:
58:3a:a8:5a:e1:d4:12:7f:5b:dc:d5:51:a4:08:c0:b9:be:68:
0e:15:ed:ac:ee:95:b5:b8:fd:19:08:8d:f7:f0:2f:81:aa:7c:
5c:90:f5:e7:3a:c5:5c:cf:59:f4:01:9d:0b:c3:ed:e8:a0:d8:
36:b9:24:35:9e:25:14:be:82:f0:6f:a0:72:6b:9c:a5:47:1c:
9f:09:7b:2d:6c:b9:b3:f9:06:73:2b:8d:8e:78:f6:c1:c2:f3:
9b:12:6c:b7:3b:5b:65:d0:a1:43:8c:92:8f:5b:91:47:c1:5e:
33:c1:34:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:54 2024 by rpki-client on console-ams.rpki-client.org