Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e33392e302f32342d3234203d3e20383334.roa
File: 3134362e3130332e33392e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: sGIaQa10D6ZGuZBd0GWhzkKun6amNv7KLKQgH77k0aQ=
Subject key identifier: 18:E4:60:EA:75:DA:F2:40:1E:FE:3F:7F:61:6E:40:8E:05:E1:C0:01
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 226832DBE3F00134B0308DF1715479EDD43D908E
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e33392e302f32342d3234203d3e20383334.roa
Signing time: Mon 01 Apr 2024 09:00:56 +0000
ROA not before: Mon 01 Apr 2024 08:55:56 +0000
ROA not after: Mon 31 Mar 2025 09:00:56 +0000
asID: 834
IP address blocks: 146.103.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 Apr 2024 11:09:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:68:32:db:e3:f0:01:34:b0:30:8d:f1:71:54:79:ed:d4:3d:90:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Apr 1 08:55:56 2024 GMT
Not After : Mar 31 09:00:56 2025 GMT
Subject: CN=18E460EA75DAF2401EFE3F7F616E408E05E1C001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:45:67:e6:37:43:20:ca:b6:23:53:7a:f3:b6:
38:6c:6a:09:01:e0:c0:4a:46:fa:3b:4d:5e:05:1c:
e7:d1:f6:eb:1f:3d:f5:fd:4f:d2:59:5d:08:39:d0:
f5:8b:0f:9f:44:87:a0:69:a6:05:f1:a5:fb:47:a6:
60:7e:c8:49:23:3d:73:73:41:23:e9:f1:70:89:d4:
44:99:88:80:47:30:2c:e1:d5:1b:76:ae:e8:42:2c:
ad:35:b4:e3:e2:03:b8:73:52:09:81:1e:31:e3:8f:
40:c5:ab:0b:4f:cc:08:03:62:0b:a8:f1:23:ec:64:
c5:da:82:07:1e:ef:4e:17:a9:70:05:a6:56:94:f0:
cf:9f:39:a7:9b:5a:51:32:df:21:b8:cd:45:5d:ab:
29:13:de:f3:c1:30:76:e7:b4:aa:b7:9c:76:eb:de:
8f:e3:db:41:68:35:ca:28:d0:41:1c:1d:da:8a:30:
c8:dd:c6:09:b0:ec:12:7e:1b:2d:85:bd:90:7d:1b:
5b:e3:9a:1f:51:f5:9b:41:37:c2:ac:97:69:e4:67:
ec:03:7d:ad:f7:5f:12:91:8c:5b:6f:dc:a1:a8:86:
47:06:7f:a5:77:fb:d6:eb:9d:fd:6a:a6:9a:a0:a6:
57:79:ff:14:0b:ac:81:9f:59:20:bb:dd:3d:0e:92:
88:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:E4:60:EA:75:DA:F2:40:1E:FE:3F:7F:61:6E:40:8E:05:E1:C0:01
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e33392e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.103.39.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:0e:76:c9:2e:22:78:ce:bb:35:85:04:16:c9:77:12:3a:fe:
d8:04:19:d7:ac:f8:80:5a:8c:24:bf:97:57:07:92:a6:ca:d8:
ce:94:4b:c1:32:53:9d:0a:02:ea:a4:9b:e6:6c:e0:70:f4:f1:
f5:8a:e6:e6:37:f8:54:c5:3b:aa:a4:ab:85:2c:36:5d:37:ec:
11:16:34:03:c3:9d:c8:63:6f:7c:74:ab:0c:c7:01:e7:69:a9:
b6:89:cf:41:1f:7b:ee:9d:30:41:9b:fc:5a:22:b8:c2:66:29:
75:a5:02:49:fe:56:e5:3a:05:10:fc:9d:0f:36:88:b3:4b:f4:
c8:72:9b:b0:a5:ec:72:3e:89:43:c1:bf:f8:04:b7:5a:ce:7c:
62:ff:f7:73:96:63:7a:72:88:9c:a7:ef:eb:87:de:05:9b:a4:
f7:6e:01:55:50:6d:d3:03:97:1f:c4:2a:72:0e:c5:37:1a:d0:
1f:1f:92:8d:82:95:7a:9d:31:55:d1:93:a6:f3:a2:df:c0:60:
ab:4a:7b:d9:42:26:a0:e7:08:00:38:13:30:c5:40:f9:18:02:
ae:0d:c5:97:c2:f1:77:78:b5:2a:2c:b4:e1:68:36:ee:d2:be:
79:e9:0e:20:9e:7a:6f:eb:cc:f8:c2:91:1d:bc:99:41:91:aa:
b8:60:d6:03
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUImgy2+PwATSwMI3xcVR57dQ9kI4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi
MjQ2YmZjYzAeFw0yNDA0MDEwODU1NTZaFw0yNTAzMzEwOTAwNTZaMDMxMTAvBgNV
BAMTKDE4RTQ2MEVBNzVEQUYyNDAxRUZFM0Y3RjYxNkU0MDhFMDVFMUMwMDEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpRWfmN0MgyrYjU3rztjhsagkB
4MBKRvo7TV4FHOfR9usfPfX9T9JZXQg50PWLD59Eh6BppgXxpftHpmB+yEkjPXNz
QSPp8XCJ1ESZiIBHMCzh1Rt2ruhCLK01tOPiA7hzUgmBHjHjj0DFqwtPzAgDYguo
8SPsZMXaggce704XqXAFplaU8M+fOaebWlEy3yG4zUVdqykT3vPBMHbntKq3nHbr
3o/j20FoNcoo0EEcHdqKMMjdxgmw7BJ+Gy2FvZB9G1vjmh9R9ZtBN8Ksl2nkZ+wD
fa33XxKRjFtv3KGohkcGf6V3+9brnf1qppqgpld5/xQLrIGfWSC73T0OkohZAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUGORg6nXa8kAe/j9/YW5AjgXhwAEwHwYDVR0j
BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy
NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK
R3Y4dy5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMDliZTNhYWUt
YWVhMS00MWRjLWIxYjktOTVhYzU5MTgyNDRkLzAvMzEzNDM2MmUzMTMwMzMyZTMz
MzkyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzODMzMzQucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACSZycw
DQYJKoZIhvcNAQELBQADggEBAI0OdskuInjOuzWFBBbJdxI6/tgEGdes+IBajCS/
l1cHkqbK2M6US8EyU50KAuqkm+Zs4HD08fWK5uY3+FTFO6qkq4UsNl037BEWNAPD
nchjb3x0qwzHAedpqbaJz0Efe+6dMEGb/FoiuMJmKXWlAkn+VuU6BRD8nQ82iLNL
9Mhym7Cl7HI+iUPBv/gEt1rOfGL/93OWY3pyiJyn7+uH3gWbpPduAVVQbdMDlx/E
KnIOxTca0B8fko2ClXqdMVXRk6bzot/AYKtKe9lCJqDnCAA4EzDFQPkYAq4NxZfC
8Xd4tSostOFoNu7SvnnpDiCeem/rzPjCkR28mUGRqrhg1gM=
-----END CERTIFICATE-----
Generated at Sat Apr 6 12:13:37 2024 by rpki-client on console-fra.rpki-client.org