Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3139342e33312e3139372e302f32342d3234203d3e20323030303139.roa
File: 3139342e33312e3139372e302f32342d3234203d3e20323030303139.roa (raw, json)
Hash identifier: zXEVT57olqZpOsJKbpMNlMxxl7KLM78xjg7YWL6hpiI=
Subject key identifier: A1:C5:F5:47:AF:EE:0C:48:BD:D4:65:C0:C0:48:42:26:B1:78:E1:D2
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 27B922CEAB26CF940CEC7FDF66A57C46AB77EF25
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3139342e33312e3139372e302f32342d3234203d3e20323030303139.roa
Signing time: Mon 10 Jun 2024 09:28:51 +0000
ROA not before: Mon 10 Jun 2024 09:23:51 +0000
ROA not after: Mon 09 Jun 2025 09:28:51 +0000
asID: 200019
IP address blocks: 194.31.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jul 2024 00:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:b9:22:ce:ab:26:cf:94:0c:ec:7f:df:66:a5:7c:46:ab:77:ef:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Jun 10 09:23:51 2024 GMT
Not After : Jun 9 09:28:51 2025 GMT
Subject: CN=A1C5F547AFEE0C48BDD465C0C0484226B178E1D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:aa:59:62:5d:8a:23:4c:1e:8a:99:62:e7:de:
37:97:9d:eb:a0:db:35:d5:1d:e5:dd:f1:59:7a:ce:
58:99:ae:da:2a:ba:8b:d9:1d:f8:ae:31:31:39:f2:
8b:33:3b:a9:c7:d3:c6:54:c2:e4:2e:c5:9e:a3:53:
3e:9d:3b:18:91:a4:ed:12:13:c7:45:22:d2:b4:10:
3c:9d:c1:16:31:73:67:b5:38:81:c6:c8:ad:0e:37:
02:b3:c3:05:a2:27:ba:de:44:99:05:3a:3b:8c:1d:
6e:e5:c8:33:d5:83:a3:de:43:10:0b:33:e0:88:d6:
03:2b:a4:7d:3f:cc:d1:d4:e0:40:a9:d1:a1:4b:a1:
b1:27:56:b1:11:36:c8:e1:dc:19:ba:aa:02:21:40:
c3:fc:28:6f:1c:91:1d:fe:52:7f:fe:b6:57:a1:79:
a4:65:ab:74:df:77:f2:db:e5:98:fe:b7:16:d1:89:
91:5a:44:79:01:af:4a:38:fd:73:57:67:21:c1:85:
36:aa:51:15:cc:3b:d8:6b:e4:5a:b2:0a:d3:2f:d0:
d5:eb:1b:e2:cf:c2:56:d9:63:fd:24:d6:a7:05:23:
f4:6f:c0:5e:6f:ed:c7:3d:d7:26:f8:37:b6:52:ed:
75:d6:b7:d1:29:43:09:11:38:34:c4:bd:bb:57:0a:
5d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:C5:F5:47:AF:EE:0C:48:BD:D4:65:C0:C0:48:42:26:B1:78:E1:D2
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3139342e33312e3139372e302f32342d3234203d3e20323030303139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.197.0/24
Signature Algorithm: sha256WithRSAEncryption
65:69:c4:d3:47:2b:f5:44:ba:ed:9c:95:e3:36:84:6b:a6:96:
a4:6e:16:07:ec:51:76:8e:13:76:e7:3b:57:4f:3f:80:e7:0f:
0f:3f:b8:c4:2e:18:d6:70:0f:b5:ef:5a:49:8d:49:10:56:c1:
b5:73:a5:1d:0a:e1:57:37:99:ad:d1:c7:2b:c1:4a:be:f2:8c:
0e:92:2e:c1:86:86:2b:ee:87:61:be:5e:50:27:38:a5:cc:a7:
2d:b2:8a:f6:d7:5f:a7:18:03:0c:31:1f:65:a7:b6:32:0b:9e:
29:93:35:1e:2f:87:c5:f7:a4:52:c4:fc:9c:67:31:d5:2c:a9:
3f:70:37:8c:ea:d9:85:07:d3:d7:79:dc:74:65:c6:ad:95:12:
0e:e8:8b:f0:97:dc:04:be:d3:40:29:81:28:f1:dc:c6:9c:2f:
ab:2d:cf:be:4d:43:09:76:89:9d:d2:e2:0e:8f:29:1b:39:44:
9d:bb:cc:e6:36:93:ef:63:71:98:25:8a:67:a6:9c:63:ab:49:
a1:cc:04:fc:25:c7:cd:b0:a9:c3:96:fa:a4:70:fc:a1:c6:51:
98:ec:0e:fc:73:23:57:54:55:3a:d2:9a:46:4b:70:ec:ce:c4:
f8:4a:eb:3f:87:8d:8b:b6:e1:bc:0c:25:88:28:2f:c8:b6:b5:
55:20:8e:fe
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgIUJ7kizqsmz5QM7H/fZqV8Rqt37yUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTk0MjBlNmM2ZjI0YjBlNDIyZGE3ZmU3ZTQyMGVmNTAz
NTRmNDVjNjAeFw0yNDA2MTAwOTIzNTFaFw0yNTA2MDkwOTI4NTFaMDMxMTAvBgNV
BAMTKEExQzVGNTQ3QUZFRTBDNDhCREQ0NjVDMEMwNDg0MjI2QjE3OEUxRDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4qlliXYojTB6KmWLn3jeXneug
2zXVHeXd8Vl6zliZrtoquovZHfiuMTE58oszO6nH08ZUwuQuxZ6jUz6dOxiRpO0S
E8dFItK0EDydwRYxc2e1OIHGyK0ONwKzwwWiJ7reRJkFOjuMHW7lyDPVg6PeQxAL
M+CI1gMrpH0/zNHU4ECp0aFLobEnVrERNsjh3Bm6qgIhQMP8KG8ckR3+Un/+tleh
eaRlq3Tfd/Lb5Zj+txbRiZFaRHkBr0o4/XNXZyHBhTaqURXMO9hr5FqyCtMv0NXr
G+LPwlbZY/0k1qcFI/RvwF5v7cc91yb4N7ZS7XXWt9EpQwkRODTEvbtXCl0dAgMB
AAGjggI/MIICOzAdBgNVHQ4EFgQUocX1R6/uDEi91GXAwEhCJrF44dIwHwYDVR0j
BBgwFoAUqUIObG8ksOQi2n/n5CDvUDVPRcYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMWY5ODIzZDAtMDg1NS00MWYyLWFjNDYtNTlhMmU5OGRh
NzM2LzEvQTk0MjBFNkM2RjI0QjBFNDIyREE3RkU3RTQyMEVGNTAzNTRGNDVDNi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FVSU9iRzhrc09RaTJuX241Q0R2VURW
UFJjWS5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMWY5ODIzZDAt
MDg1NS00MWYyLWFjNDYtNTlhMmU5OGRhNzM2LzEvMzEzOTM0MmUzMzMxMmUzMTM5
MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzAzMDMxMzkucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BADCH8UwDQYJKoZIhvcNAQELBQADggEBAGVpxNNHK/VEuu2cleM2hGumlqRuFgfs
UXaOE3bnO1dPP4DnDw8/uMQuGNZwD7XvWkmNSRBWwbVzpR0K4Vc3ma3RxyvBSr7y
jA6SLsGGhivuh2G+XlAnOKXMpy2yivbXX6cYAwwxH2WntjILnimTNR4vh8X3pFLE
/JxnMdUsqT9wN4zq2YUH09d53HRlxq2VEg7oi/CX3AS+00ApgSjx3MacL6stz75N
Qwl2iZ3S4g6PKRs5RJ27zOY2k+9jcZglimemnGOrSaHMBPwlx82wqcOW+qRw/KHG
UZjsDvxzI1dUVTrSmkZLcOzOxPhK6z+HjYu24bwMJYgoL8i2tVUgjv4=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:26:27 2025 by rpki-client