Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e33382e302f32332d3234203d3e20383334.roa
File: 3134362e3130332e33382e302f32332d3234203d3e20383334.roa (raw, json)
Hash identifier: I7IiwrQyzRwP+nULWHnlNO6KCSF4emONA98/O7UDo4U=
Subject key identifier: 08:C0:43:13:F7:93:5C:26:AC:7E:80:FF:35:58:8D:B5:38:86:93:A5
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 27653A2B8E2E06F85CEAF082B663AACA9ABA7C61
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e33382e302f32332d3234203d3e20383334.roa
Signing time: Sun 31 Mar 2024 16:15:32 +0000
ROA not before: Sun 31 Mar 2024 16:10:32 +0000
ROA not after: Sun 30 Mar 2025 16:15:32 +0000
asID: 834
IP address blocks: 146.103.38.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Apr 2024 08:59:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:65:3a:2b:8e:2e:06:f8:5c:ea:f0:82:b6:63:aa:ca:9a:ba:7c:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 31 16:10:32 2024 GMT
Not After : Mar 30 16:15:32 2025 GMT
Subject: CN=08C04313F7935C26AC7E80FF35588DB5388693A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8b:65:85:dc:40:d6:b3:26:2e:7d:10:3b:9b:
8f:3e:9b:98:fa:f5:19:4e:2e:56:e6:0f:a6:c7:d7:
8e:4c:1f:40:e8:f5:b4:08:d0:50:59:93:97:d6:68:
2d:c7:f3:f9:21:2a:d9:0e:a8:a7:4e:3b:32:e7:59:
c6:76:61:1c:3f:db:90:ae:1f:4e:4d:07:94:03:d4:
79:86:c6:9f:6c:96:69:09:cb:c0:71:34:6c:7f:3c:
54:fb:98:20:7c:78:b4:cc:cf:94:1b:9b:ab:7f:16:
62:e5:85:04:f2:03:a6:91:53:98:e9:9d:18:4b:59:
0d:5c:1a:21:5d:aa:04:64:a0:92:53:69:51:68:2d:
11:35:85:28:71:a7:f2:4d:ff:88:1b:5a:7a:e6:8f:
15:39:b3:d3:52:8e:dd:27:57:57:68:51:49:a5:4d:
2c:7f:7f:15:5a:5a:46:1c:c8:a3:e9:77:cf:2b:f5:
3c:f3:f8:09:47:c3:a7:9c:0f:25:27:b0:50:03:56:
16:d4:3e:83:52:48:44:35:c1:5e:2a:c6:3c:52:27:
6c:cb:06:53:6d:c6:4c:79:e5:e3:21:86:c7:5f:b3:
3f:98:97:1f:bc:0f:42:15:d4:c2:7b:c7:7a:d2:18:
21:a0:5d:0a:06:40:9f:d3:fe:46:48:1f:db:7e:58:
9e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:C0:43:13:F7:93:5C:26:AC:7E:80:FF:35:58:8D:B5:38:86:93:A5
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e33382e302f32332d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.103.38.0/23
Signature Algorithm: sha256WithRSAEncryption
61:20:b8:7b:90:f0:bd:a0:2d:13:c4:91:4a:c5:c6:c5:dc:0e:
51:dc:4e:b6:7a:65:09:97:99:9f:27:4f:7b:e6:d1:b5:1c:a4:
68:2b:8f:5d:31:db:82:be:59:64:f0:dd:e1:bf:9d:16:ca:e8:
8e:41:38:dc:06:39:16:aa:7a:b6:e2:ff:ad:7f:a9:ee:82:7b:
a8:5e:d4:5b:65:d9:aa:c9:c3:d1:a3:44:38:35:44:40:51:12:
c6:e1:42:9c:8b:a8:54:9a:0b:d1:51:57:e2:c3:cc:81:b9:f4:
cc:38:c3:5b:4b:3c:fa:97:d1:9a:e5:66:43:54:ef:25:b4:dc:
79:51:7c:75:4b:36:e9:3e:3e:d9:18:39:ac:1b:cc:4a:02:ea:
bb:30:b4:6a:f3:dc:5a:4c:ed:79:83:08:f1:ef:1f:92:84:0c:
d6:b1:15:74:28:1d:53:ad:8c:63:de:c6:93:08:e7:21:e2:08:
d9:30:c3:44:3a:89:93:e5:ac:67:82:dc:1e:25:3c:1d:9e:7d:
13:2d:dd:16:29:93:b0:68:22:a4:07:ff:f9:20:69:d5:27:48:
35:47:d3:b8:af:ab:fe:7f:63:e0:8e:dd:45:6f:88:e1:24:e6:
90:4d:52:97:e4:47:3c:42:25:85:e6:8d:2b:bb:0c:69:23:89:
8f:75:11:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org