Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3134362e31392e33382e302f32342d3234203d3e203135333737.roa
File: 3134362e31392e33382e302f32342d3234203d3e203135333737.roa (raw, json)
Hash identifier: UbVDvhxdrSaKShG4JOlRwNqJP9bmvMT1AXjQzoL480A=
Subject key identifier: 5B:9C:A5:D6:1A:02:33:9B:B6:D1:F2:56:A5:6B:39:B2:35:96:7B:A4
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 31E8D5EFDB8AC10331A38F07E41DE5E1AECD6D55
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3134362e31392e33382e302f32342d3234203d3e203135333737.roa
Signing time: Tue 12 Nov 2024 11:43:27 +0000
ROA not before: Tue 12 Nov 2024 11:38:27 +0000
ROA not after: Tue 11 Nov 2025 11:43:27 +0000
asID: 15377
IP address blocks: 146.19.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 23 Nov 2024 00:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:e8:d5:ef:db:8a:c1:03:31:a3:8f:07:e4:1d:e5:e1:ae:cd:6d:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Nov 12 11:38:27 2024 GMT
Not After : Nov 11 11:43:27 2025 GMT
Subject: CN=5B9CA5D61A02339BB6D1F256A56B39B235967BA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6c:39:c6:a0:67:7b:57:25:4f:c4:ad:0b:7f:
81:8d:bb:d5:fe:32:52:d2:66:df:22:dd:d6:e0:a5:
f6:88:35:67:c8:cf:ab:d0:0e:c4:3a:cf:a6:30:98:
6f:10:0b:dd:12:be:77:d5:75:5b:35:b7:58:e0:c2:
33:4e:85:85:0d:8d:74:5e:bd:57:8e:f5:7c:cf:49:
d2:20:06:09:6e:38:e9:76:ec:21:ba:6e:a8:5b:2c:
04:fd:4e:84:26:5d:27:9a:4b:e6:9c:9f:c1:2f:68:
34:02:ba:6a:6d:6e:f5:61:e1:47:a8:b3:10:4f:15:
03:ba:a8:9e:57:5e:a0:4b:dc:c7:1a:7d:14:82:a0:
ab:63:b2:4c:4e:f5:ca:36:d8:01:1a:dc:ec:ac:1e:
6d:a7:cb:4a:b0:83:92:97:ea:d1:74:c3:61:a1:6b:
fd:96:e0:3f:da:2f:67:f4:4f:93:6a:83:f0:0a:96:
d4:9c:20:4c:85:6e:6a:aa:a3:1f:4e:98:b0:eb:ea:
7e:a6:44:f7:ee:10:f9:fe:6f:a9:f2:77:39:21:78:
90:69:4f:a5:b6:bb:ee:fd:96:1c:cd:92:05:2c:8c:
86:f5:e1:a4:bf:69:b5:1c:42:1e:65:44:a3:2e:c3:
19:1e:0d:43:5b:bd:ce:4a:6a:fe:02:32:8d:cb:5e:
18:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:9C:A5:D6:1A:02:33:9B:B6:D1:F2:56:A5:6B:39:B2:35:96:7B:A4
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3134362e31392e33382e302f32342d3234203d3e203135333737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.38.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:f0:60:a5:42:cf:7d:86:e5:22:1f:34:12:b9:7f:d3:e9:71:
0d:d3:8b:1b:29:31:58:58:fb:3e:9c:81:01:59:64:dd:c0:31:
46:af:e9:23:93:3d:40:55:94:86:0d:37:0d:b2:51:e2:c7:86:
c7:fe:ae:9d:69:ab:5f:14:44:bd:eb:a8:1a:47:a4:79:7d:b8:
e6:6a:dd:c7:29:e7:07:7f:1d:10:4f:f8:dd:e4:1a:65:aa:ff:
4c:9f:a0:0a:7a:fc:61:90:e9:29:65:9a:9e:48:db:a4:f9:4d:
94:d3:e1:fe:56:00:1c:2a:ba:f9:75:7c:2e:06:6c:8e:07:19:
80:3b:a7:34:21:f0:e3:a9:0c:b6:f2:71:64:cc:1c:b6:96:c3:
fb:c0:e0:b0:f8:1f:60:13:b2:0b:b6:80:22:de:f0:88:6c:d8:
8b:71:16:ca:e6:4b:d2:db:85:81:17:0b:54:e7:b5:92:51:25:
a4:05:15:3f:22:45:80:28:6d:68:bb:f5:aa:0a:c4:27:e6:90:
92:e0:91:35:81:51:7d:88:1e:f7:23:64:59:ca:cd:32:73:b1:
d1:bd:c5:99:b2:a4:77:ec:e4:03:c1:a2:5d:65:15:b7:e2:52:
91:fc:f2:15:cc:9a:d8:d8:8a:3e:26:03:93:1c:73:27:44:06:
03:f7:35:c5
-----BEGIN CERTIFICATE-----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Generated at Sat Nov 23 02:32:55 2024 by rpki-client on console-ams.rpki-client.org