Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e33312e302f32342d3234203d3e203537303433.roa
File: 34362e3138332e33312e302f32342d3234203d3e203537303433.roa (raw, json)
Hash identifier: urDbQolUxF5aVDtWGu2mH59UmSzS7WpnvTro/6xbgIc=
Subject key identifier: 3A:0A:C4:AB:3A:E2:91:D8:44:ED:9B:4C:DE:D4:F9:6C:53:3E:DE:FD
Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Certificate serial: 16374F0120C3FEEBA99F2001006D8EF7EBB394EF
Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e33312e302f32342d3234203d3e203537303433.roa
Signing time: Wed 15 Jan 2025 19:53:51 +0000
ROA not before: Wed 15 Jan 2025 19:48:51 +0000
ROA not after: Wed 14 Jan 2026 19:53:51 +0000
asID: 57043
IP address blocks: 46.183.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Feb 2025 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:37:4f:01:20:c3:fe:eb:a9:9f:20:01:00:6d:8e:f7:eb:b3:94:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Validity
Not Before: Jan 15 19:48:51 2025 GMT
Not After : Jan 14 19:53:51 2026 GMT
Subject: CN=3A0AC4AB3AE291D844ED9B4CDED4F96C533EDEFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:67:76:91:77:cc:0a:f3:86:7c:50:8f:63:6a:
3c:98:2f:3b:27:51:a6:2a:88:a8:20:8a:61:ee:21:
0e:bc:f2:20:a5:14:43:4f:fe:41:41:2b:e8:3e:1a:
74:22:d9:51:33:20:f8:fc:bd:25:bc:65:7b:09:26:
68:8f:d9:fc:2e:3b:6e:a5:01:96:6b:96:0b:99:5b:
7a:59:95:ba:8c:86:1e:df:e0:6a:4c:7d:6a:a0:dd:
8c:6f:a1:25:11:5f:d3:a7:13:6c:b0:2e:96:ce:0a:
57:6b:54:c3:5e:d8:a7:42:44:56:6a:22:2b:04:18:
ab:20:9c:cb:a0:21:ea:c1:39:8b:b2:28:b5:1e:b8:
12:14:fe:a8:31:6f:49:10:dd:ba:cc:36:ff:b6:c4:
34:3f:23:28:7a:99:62:01:26:b1:3e:a4:6a:0a:71:
79:a0:98:dd:98:f1:03:0e:fe:ce:7f:c2:1a:bf:55:
63:86:80:76:52:c4:06:b7:14:57:1e:8a:19:23:67:
a4:89:bd:c6:8f:94:73:10:8c:84:6e:9e:a7:40:49:
2c:a0:f6:27:ce:62:4b:87:61:69:cf:a2:78:35:53:
55:98:f4:47:8b:d1:4b:c9:8e:cc:dd:d2:e0:bb:dc:
8e:fb:09:d8:a7:93:f6:3a:f0:1f:92:26:8e:a5:76:
1e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:0A:C4:AB:3A:E2:91:D8:44:ED:9B:4C:DE:D4:F9:6C:53:3E:DE:FD
X509v3 Authority Key Identifier:
keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e33312e302f32342d3234203d3e203537303433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.31.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:7c:dd:74:22:9a:7a:e3:b1:66:8d:79:46:1a:48:64:3c:26:
e2:5e:37:36:b7:a2:76:fa:ab:68:ef:c4:9b:ab:29:38:43:6b:
9b:ce:df:c9:d9:d4:e3:2d:80:78:fc:bc:8c:75:00:39:6c:fc:
62:70:95:81:65:65:7e:64:92:53:73:7e:7d:2f:60:ce:a9:87:
a5:be:bc:27:94:ca:91:d7:66:a5:04:f6:dd:39:3b:43:03:d5:
53:ab:7a:9b:dd:ba:2c:5d:4a:ec:e7:a6:d4:02:2a:4b:35:99:
f8:2f:fe:a6:02:e9:22:bd:bf:e8:3e:40:ff:d9:6a:c5:31:77:
c5:3f:0c:d4:92:09:fe:a4:1d:10:75:68:e3:24:75:7e:f1:5b:
c5:2b:90:58:2e:e0:59:65:92:8e:ea:59:01:3c:e8:46:76:86:
68:0e:9b:ac:8a:ab:10:c2:f3:d3:84:41:f1:ec:29:09:2e:f4:
fa:54:64:69:9a:e8:f6:cd:fc:1d:22:28:29:4d:80:0a:d0:38:
6a:f9:15:9d:63:e0:b8:2f:6e:7c:fd:36:f2:28:91:e1:c4:ea:
a5:e4:a9:17:36:6f:c6:53:2f:e0:1e:8c:a6:29:2e:46:80:dc:
b8:68:ea:c6:bd:26:2b:32:d1:91:3f:44:cb:15:7a:b7:ec:e3:
00:4c:52:24
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUFjdPASDD/uupnyABAG2O9+uzlO8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjRlNTM3ODhiZDRlZmEyM2IxYTgyMDdiN2U3NGE4ZTFj
YzY3N2IwMDAeFw0yNTAxMTUxOTQ4NTFaFw0yNjAxMTQxOTUzNTFaMDMxMTAvBgNV
BAMTKDNBMEFDNEFCM0FFMjkxRDg0NEVEOUI0Q0RFRDRGOTZDNTMzRURFRkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSZ3aRd8wK84Z8UI9jajyYLzsn
UaYqiKggimHuIQ688iClFENP/kFBK+g+GnQi2VEzIPj8vSW8ZXsJJmiP2fwuO26l
AZZrlguZW3pZlbqMhh7f4GpMfWqg3YxvoSURX9OnE2ywLpbOCldrVMNe2KdCRFZq
IisEGKsgnMugIerBOYuyKLUeuBIU/qgxb0kQ3brMNv+2xDQ/Iyh6mWIBJrE+pGoK
cXmgmN2Y8QMO/s5/whq/VWOGgHZSxAa3FFceihkjZ6SJvcaPlHMQjIRunqdASSyg
9ifOYkuHYWnPong1U1WY9EeL0UvJjszd0uC73I77Cdink/Y68B+SJo6ldh4hAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUOgrEqzrikdhE7ZtM3tT5bFM+3v0wHwYDVR0j
BBgwFoAUJOU3iL1O+iOxqCB7fnSo4cxnewAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMTZhY2I5YTAtNmQxZS00YWU0LTkxNzctZDkzOGU5ODA0
Mzk1LzAvMjRFNTM3ODhCRDRFRkEyM0IxQTgyMDdCN0U3NEE4RTFDQzY3N0IwMC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0pPVTNpTDFPLWlPeHFDQjdmblNvNGN4
bmV3QS5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMTZhY2I5YTAt
NmQxZS00YWU0LTkxNzctZDkzOGU5ODA0Mzk1LzAvMzQzNjJlMzEzODMzMmUzMzMx
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNzMwMzQzMy5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC63
HzANBgkqhkiG9w0BAQsFAAOCAQEAHnzddCKaeuOxZo15RhpIZDwm4l43Nreidvqr
aO/Em6spOENrm87fydnU4y2AePy8jHUAOWz8YnCVgWVlfmSSU3N+fS9gzqmHpb68
J5TKkddmpQT23Tk7QwPVU6t6m926LF1K7Oem1AIqSzWZ+C/+pgLpIr2/6D5A/9lq
xTF3xT8M1JIJ/qQdEHVo4yR1fvFbxSuQWC7gWWWSjupZATzoRnaGaA6brIqrEMLz
04RB8ewpCS70+lRkaZro9s38HSIoKU2ACtA4avkVnWPguC9ufP028iiR4cTqpeSp
FzZvxlMv4B6MpikuRoDcuGjqxr0mKzLRkT9EyxV6t+zjAExSJA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:34:13 2025 by rpki-client