Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e33312e302f32342d3234203d3e20383334.roa
File: 34362e3138332e33312e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: CNT9u1qspXUHUMQtK3BVPUDRw6Y36G0C9HKzeYctU04=
Subject key identifier: 61:B8:28:28:AD:9E:FC:84:C6:48:70:39:76:F5:44:D7:AD:DC:53:55
Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Certificate serial: 56D26F763ACA8F36EFEBB634D1EE3A62D82DA032
Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e33312e302f32342d3234203d3e20383334.roa
Signing time: Fri 02 Feb 2024 10:04:02 +0000
ROA not before: Fri 02 Feb 2024 09:59:02 +0000
ROA not after: Fri 31 Jan 2025 10:04:02 +0000
asID: 834
IP address blocks: 46.183.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Feb 2024 15:34:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:d2:6f:76:3a:ca:8f:36:ef:eb:b6:34:d1:ee:3a:62:d8:2d:a0:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00
Validity
Not Before: Feb 2 09:59:02 2024 GMT
Not After : Jan 31 10:04:02 2025 GMT
Subject: CN=61B82828AD9EFC84C648703976F544D7ADDC5355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f2:0b:a5:9b:48:dc:bc:f2:37:55:8f:49:69:
02:06:cc:d5:39:7c:d9:94:49:d8:05:0f:eb:9a:2c:
1d:d5:31:cc:60:05:9b:aa:95:d1:fa:25:4c:78:f8:
b9:b2:45:fe:8e:b8:52:91:07:22:5b:5e:06:15:08:
88:e6:97:26:be:03:ac:cc:ad:b0:51:19:42:c1:27:
1f:c4:33:4a:a2:d3:d7:dd:0e:c1:f7:85:31:4e:4e:
f2:ae:8e:5d:8e:c7:26:f9:9b:e4:3f:77:aa:5b:ed:
0e:4d:b0:37:ef:ae:27:5d:08:4b:98:8a:a3:ea:65:
b2:b5:b2:75:71:b6:34:45:b4:12:2a:f6:b7:43:45:
13:28:9d:5e:34:b3:01:f9:55:b3:6d:a2:11:2e:d6:
00:50:f2:87:f6:18:2a:4f:5d:f8:43:b6:0b:49:48:
3f:4c:98:0c:55:2d:d8:39:3e:20:38:01:3f:c0:c4:
0b:8f:c3:bf:49:25:75:93:8c:00:3b:fe:aa:84:c2:
ee:18:15:c4:f3:e1:bd:db:01:74:6e:33:d3:03:22:
9b:89:38:fd:d2:50:ee:aa:e1:a2:df:42:69:32:95:
f1:f7:6e:39:a8:60:f4:18:02:56:c0:e9:03:d9:39:
d1:2b:1c:42:4f:53:d3:55:e0:88:22:ea:42:a2:af:
e6:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B8:28:28:AD:9E:FC:84:C6:48:70:39:76:F5:44:D7:AD:DC:53:55
X509v3 Authority Key Identifier:
keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/34362e3138332e33312e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.31.0/24
Signature Algorithm: sha256WithRSAEncryption
29:8d:27:03:8f:c7:8c:03:d3:5b:54:d8:e4:53:03:48:c6:fa:
07:3b:f0:df:4a:7a:3e:55:e3:10:ef:f1:de:cd:d5:f8:f0:08:
f2:50:33:08:63:e0:83:c3:86:50:e7:06:88:4c:c9:c8:52:75:
ca:c9:b0:76:4a:a4:83:4c:50:8b:5a:7b:d2:bf:c4:65:bd:99:
bc:79:ab:5d:1a:d7:fe:30:70:db:8f:b2:f4:67:ab:9a:87:0a:
79:de:bd:50:d8:1b:c3:69:be:e3:b2:2a:26:8d:bc:62:29:dc:
94:f3:e7:58:95:24:6a:f6:20:d3:55:2a:27:77:64:6d:6f:98:
3d:f9:f2:24:3d:70:d3:14:31:3b:20:e1:06:0e:ca:96:0b:d9:
20:14:68:36:ea:00:ef:1b:1b:59:33:ee:e0:c2:b9:99:74:d2:
0f:5c:fd:2b:eb:fe:8a:de:2c:30:60:1e:24:be:3b:d2:43:0e:
bf:52:08:f3:d9:bb:b8:79:c7:ba:6f:20:10:88:1d:02:f9:fd:
5f:4e:d6:bf:66:c2:fc:fc:8e:04:b9:0e:0e:a1:91:f5:61:08:
a2:20:6c:54:51:58:91:b7:3c:94:55:d2:73:4f:fe:db:23:95:
80:6e:de:df:61:04:e4:1f:d8:09:ea:90:bd:da:cf:98:49:4d:
c9:a1:ee:c2
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgIUVtJvdjrKjzbv67Y00e46YtgtoDIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjRlNTM3ODhiZDRlZmEyM2IxYTgyMDdiN2U3NGE4ZTFj
YzY3N2IwMDAeFw0yNDAyMDIwOTU5MDJaFw0yNTAxMzExMDA0MDJaMDMxMTAvBgNV
BAMTKDYxQjgyODI4QUQ5RUZDODRDNjQ4NzAzOTc2RjU0NEQ3QUREQzUzNTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy8gulm0jcvPI3VY9JaQIGzNU5
fNmUSdgFD+uaLB3VMcxgBZuqldH6JUx4+LmyRf6OuFKRByJbXgYVCIjmlya+A6zM
rbBRGULBJx/EM0qi09fdDsH3hTFOTvKujl2Oxyb5m+Q/d6pb7Q5NsDfvriddCEuY
iqPqZbK1snVxtjRFtBIq9rdDRRMonV40swH5VbNtohEu1gBQ8of2GCpPXfhDtgtJ
SD9MmAxVLdg5PiA4AT/AxAuPw79JJXWTjAA7/qqEwu4YFcTz4b3bAXRuM9MDIpuJ
OP3SUO6q4aLfQmkylfH3bjmoYPQYAlbA6QPZOdErHEJPU9NV4Igi6kKir+azAgMB
AAGjggI3MIICMzAdBgNVHQ4EFgQUYbgoKK2e/ITGSHA5dvVE163cU1UwHwYDVR0j
BBgwFoAUJOU3iL1O+iOxqCB7fnSo4cxnewAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMTZhY2I5YTAtNmQxZS00YWU0LTkxNzctZDkzOGU5ODA0
Mzk1LzAvMjRFNTM3ODhCRDRFRkEyM0IxQTgyMDdCN0U3NEE4RTFDQzY3N0IwMC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0pPVTNpTDFPLWlPeHFDQjdmblNvNGN4
bmV3QS5jZXIwgacGCCsGAQUFBwELBIGaMIGXMIGUBggrBgEFBQcwC4aBh3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMTZhY2I5YTAt
NmQxZS00YWU0LTkxNzctZDkzOGU5ODA0Mzk1LzAvMzQzNjJlMzEzODMzMmUzMzMx
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALrcfMA0G
CSqGSIb3DQEBCwUAA4IBAQApjScDj8eMA9NbVNjkUwNIxvoHO/DfSno+VeMQ7/He
zdX48AjyUDMIY+CDw4ZQ5waITMnIUnXKybB2SqSDTFCLWnvSv8RlvZm8eatdGtf+
MHDbj7L0Z6uahwp53r1Q2BvDab7jsiomjbxiKdyU8+dYlSRq9iDTVSond2Rtb5g9
+fIkPXDTFDE7IOEGDsqWC9kgFGg26gDvGxtZM+7gwrmZdNIPXP0r6/6K3iwwYB4k
vjvSQw6/Ugjz2bu4ece6byAQiB0C+f1fTta/ZsL8/I4EuQ4OoZH1YQiiIGxUUViR
tzyUVdJzT/7bI5WAbt7fYQTkH9gJ6pC92s+YSU3Joe7C
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:09 2024 by rpki-client on console-fra.rpki-client.org