Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e33332e302f32342d3234203d3e20383334.roa
File: 3134362e3130332e33332e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: 2HNBEer5Ru7xl5eC62qFyZSsN/2M+W8otFfXOyRN+Es=
Subject key identifier: 8D:19:55:A2:84:CA:2F:90:0E:A2:0E:F5:D7:72:31:8C:A9:76:D2:EE
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 361E7EE635B9151749679BE24EF34641D8CF092E
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e33332e302f32342d3234203d3e20383334.roa
Signing time: Mon 01 Apr 2024 13:52:01 +0000
ROA not before: Mon 01 Apr 2024 13:47:01 +0000
ROA not after: Mon 31 Mar 2025 13:52:01 +0000
asID: 834
IP address blocks: 146.103.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 Apr 2024 11:09:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:1e:7e:e6:35:b9:15:17:49:67:9b:e2:4e:f3:46:41:d8:cf:09:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Apr 1 13:47:01 2024 GMT
Not After : Mar 31 13:52:01 2025 GMT
Subject: CN=8D1955A284CA2F900EA20EF5D772318CA976D2EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:1f:6f:6e:51:2d:3a:bb:cc:e0:2c:e8:a3:49:
6b:68:e8:73:0a:bf:79:9d:d4:51:43:18:1c:27:a2:
62:5a:63:b7:6c:bf:ca:b4:16:77:0a:80:13:9b:08:
48:b5:33:10:f1:a5:8b:c5:57:4f:93:cd:5b:39:87:
0b:be:84:39:39:8e:58:11:e8:e3:37:56:68:17:dd:
cf:01:35:f2:31:e5:4b:68:67:6c:a7:37:1a:ea:57:
4a:99:41:e4:40:a4:c4:aa:d2:8e:a3:c1:ea:7e:2f:
f4:79:b1:c4:6d:e4:3e:6f:ee:59:5a:cb:ec:7a:75:
4b:15:9f:0f:1e:d9:8f:23:b7:da:e4:23:67:f6:5f:
39:ad:ba:76:67:ab:da:26:93:e7:73:7d:98:39:8d:
63:4a:39:22:03:53:e6:78:ad:e9:ce:5d:7e:51:30:
49:41:00:76:89:84:d2:02:2b:8e:49:00:7c:bf:ac:
0a:fe:81:0a:84:21:4f:cf:35:83:ff:ad:15:e0:d3:
4c:07:6c:ca:98:66:ec:08:8e:27:18:04:60:e8:a2:
76:44:ed:9a:50:1b:94:4e:80:c2:f7:3a:4a:94:eb:
a5:eb:2c:b6:4c:09:95:c9:9a:9a:40:6d:e7:b5:a1:
71:0a:84:4c:2b:32:fc:f0:9f:4e:83:10:08:99:6f:
b0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:19:55:A2:84:CA:2F:90:0E:A2:0E:F5:D7:72:31:8C:A9:76:D2:EE
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e33332e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.103.33.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:b4:13:74:62:34:f0:c9:6b:ed:52:93:e4:84:c9:a4:79:70:
9f:f7:e9:4b:f0:a0:e0:09:5f:d1:f3:28:4c:fa:17:ac:ab:1e:
cc:d5:ea:c2:ff:f8:90:d5:36:b4:26:61:55:de:9a:ea:ad:83:
f0:25:ad:ae:2e:7e:68:0f:fe:b8:46:a6:1d:9c:07:d2:9b:fa:
4b:cc:3b:72:c7:0b:96:90:a0:7c:dc:cd:ab:0c:89:93:d4:15:
7b:ce:4e:86:47:96:20:c8:2f:7c:cc:a0:0d:1e:db:01:1b:40:
2f:95:62:a7:1d:a4:93:0b:72:6a:3d:4e:23:e4:05:6c:43:dd:
03:cf:ae:57:6e:52:77:27:f1:4a:d9:07:6d:ba:fe:ae:74:05:
f8:5a:d9:99:55:de:2c:0f:fe:06:f6:d7:1d:58:a8:e6:2a:71:
3a:03:f2:f0:9c:fc:01:61:7c:0b:95:25:38:42:41:34:05:0b:
9d:60:b6:45:4c:72:a9:e9:73:3b:82:fa:78:6c:36:ba:91:7e:
33:27:9a:2a:4e:f9:8e:2e:1f:4d:6f:07:64:15:1c:fc:04:de:
fa:8d:cd:98:b2:06:d1:d7:13:f9:61:c7:84:9f:af:bc:4e:f3:
43:eb:97:84:67:67:26:27:b4:92:04:4c:bf:d1:00:6d:8b:38:
f7:d7:4b:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org