Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e33312e302f32342d3234203d3e203439393831.roa
File: 34362e3138332e33312e302f32342d3234203d3e203439393831.roa (raw, json)
Hash identifier: arGzA1IkQTYBRD/MHHp8jtBu1tZJVEaLDXIN8bTONk4=
Subject key identifier: 98:DF:E7:28:D7:40:D5:01:84:45:58:F1:B0:85:D2:51:2D:88:4E:B0
Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Certificate serial: 48AB839DB930988BC85368B989B2DC14246B7236
Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e33312e302f32342d3234203d3e203439393831.roa
Signing time: Fri 03 Jan 2025 15:53:51 +0000
ROA not before: Fri 03 Jan 2025 15:48:51 +0000
ROA not after: Fri 02 Jan 2026 15:53:51 +0000
asID: 49981
IP address blocks: 46.183.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Feb 2025 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:ab:83:9d:b9:30:98:8b:c8:53:68:b9:89:b2:dc:14:24:6b:72:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Validity
Not Before: Jan 3 15:48:51 2025 GMT
Not After : Jan 2 15:53:51 2026 GMT
Subject: CN=98DFE728D740D501844558F1B085D2512D884EB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b9:e7:de:96:5f:f9:cb:7d:1b:5c:c9:56:08:
51:c0:2e:0e:1a:98:55:83:ca:0c:95:5b:a7:2d:4e:
f6:ca:f6:dd:59:94:61:cb:b3:90:26:54:d6:1c:de:
53:e3:f5:47:c6:e8:70:63:61:4c:3c:84:ad:cf:e9:
e1:03:69:ba:73:ee:36:7c:3e:b2:6b:48:2d:b1:64:
b8:14:f5:ea:24:61:65:ea:8d:a8:32:5d:88:5e:47:
5f:c8:d0:3e:fa:90:c0:fe:98:79:37:5e:13:f1:4d:
06:51:99:47:2a:29:99:d2:b8:a5:8b:5b:e0:03:2b:
c1:1d:5d:20:fa:15:db:55:92:3c:19:2b:39:ab:e1:
83:0c:1a:bc:7d:7f:8d:b8:a7:02:f9:84:b7:09:62:
a9:3d:02:6a:bf:e7:04:c4:a0:e1:c7:80:06:ac:83:
97:5f:f3:3c:06:bc:55:0c:b6:6d:92:d7:fa:ce:31:
d5:18:1e:3f:6b:b5:61:98:d8:bf:f5:9c:c8:ef:84:
9e:9e:11:8e:c1:3e:64:f0:f7:49:94:83:15:6e:5a:
83:93:94:6e:d0:c2:3f:d6:b7:94:ac:70:6e:ed:a1:
81:9f:31:d8:af:7c:2b:b7:9a:24:15:ae:6a:7f:69:
06:2a:ba:b2:c7:40:8e:4c:66:9c:ae:e3:2f:87:e4:
ff:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:DF:E7:28:D7:40:D5:01:84:45:58:F1:B0:85:D2:51:2D:88:4E:B0
X509v3 Authority Key Identifier:
keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e33312e302f32342d3234203d3e203439393831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.31.0/24
Signature Algorithm: sha256WithRSAEncryption
15:52:98:f8:6a:24:72:ec:94:b2:65:c1:a7:2f:64:be:a2:64:
8b:23:6d:ce:1b:e6:f2:dd:b1:e9:5f:0d:d4:a7:19:d0:eb:e0:
50:7a:b2:f3:69:be:47:a0:12:8c:b6:ce:c0:ce:80:32:e6:8a:
4c:d2:32:2d:46:46:3b:f8:28:03:3d:68:46:b6:b0:59:81:f4:
66:2b:42:d4:60:c1:e8:37:e9:d3:d4:b3:f7:02:d3:ef:ab:7b:
53:c2:0b:16:40:44:f7:1e:28:8a:22:a8:9f:1c:e5:b6:0c:db:
e1:75:76:08:9c:49:62:99:a9:0f:50:93:85:90:33:8a:ec:e3:
d3:97:53:25:9c:1d:7f:55:d7:73:07:7c:0e:0a:8c:9a:bd:fe:
d4:11:a8:04:c2:05:b9:9f:cf:3d:fe:d1:66:17:47:6a:c5:9d:
99:c2:f6:f2:b5:50:d5:dc:8b:42:b3:43:58:b9:3a:30:e4:7d:
d2:d7:c5:36:e1:2b:f0:81:63:fa:03:31:a4:c9:dd:45:4f:82:
e2:93:92:ac:69:f5:3b:2c:3d:84:5d:ad:7d:45:a6:2b:21:e3:
10:6a:92:b4:06:77:c3:dd:1d:77:22:3f:22:b2:c2:50:ca:77:
bd:56:37:5c:aa:28:23:0c:40:89:40:11:e7:1f:a5:de:e1:dc:
cc:37:f0:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:41:07 2025 by rpki-client