Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135342e302f32342d3234203d3e20383334.roa
File: 3138382e3136342e3135342e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: j4WsgBl8DCTt446iLfMz3eIra3qVtoij88AVhmGBm/c=
Subject key identifier: C6:2D:CD:41:85:90:5E:28:6E:63:DC:40:17:ED:44:41:26:F7:DA:E3
Certificate issuer: /CN=8b9ba9adde9635777bf586fd493e14cd30f7c4ca
Certificate serial: 69EB08EF5197494192527C987C1E783C9638BBC5
Authority key identifier: 8B:9B:A9:AD:DE:96:35:77:7B:F5:86:FD:49:3E:14:CD:30:F7:C4:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135342e302f32342d3234203d3e20383334.roa
Signing time: Sun 28 Jan 2024 00:00:06 +0000
ROA not before: Sat 27 Jan 2024 23:55:06 +0000
ROA not after: Sun 26 Jan 2025 00:00:06 +0000
asID: 834
IP address blocks: 188.164.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Feb 2024 14:59:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:eb:08:ef:51:97:49:41:92:52:7c:98:7c:1e:78:3c:96:38:bb:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b9ba9adde9635777bf586fd493e14cd30f7c4ca
Validity
Not Before: Jan 27 23:55:06 2024 GMT
Not After : Jan 26 00:00:06 2025 GMT
Subject: CN=C62DCD4185905E286E63DC4017ED444126F7DAE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:60:fb:88:a3:08:53:ea:0a:09:66:a2:04:88:
28:41:e3:6b:3a:97:94:8a:3b:06:bc:53:48:6f:21:
93:1d:54:20:de:81:95:18:f8:e0:ef:f4:84:5e:ce:
64:44:f5:46:03:0c:ef:6a:dd:8a:9a:7f:32:f3:cd:
7d:2c:dc:ec:62:fc:d3:c9:3f:65:a2:ac:37:dc:02:
1d:20:b8:89:cf:a4:71:2f:dd:27:c0:1e:20:48:ca:
4a:3d:0f:4b:42:fd:51:94:86:c2:8c:82:20:fc:57:
ba:8e:6a:85:34:68:4f:98:2d:c0:f7:cb:cc:67:a7:
0b:e7:63:61:bf:01:f0:2f:5d:eb:7d:3b:f7:e1:51:
bb:d4:34:78:7e:0b:e0:3b:f9:82:ca:3a:f1:a4:63:
7e:74:58:cb:2b:7b:9f:0a:4a:71:91:5b:6a:78:3a:
5f:e7:e8:a2:62:85:ec:59:16:92:08:f8:99:99:da:
b3:db:b1:47:93:27:49:6e:f3:5e:a2:ac:73:ba:c9:
0d:40:52:cb:00:b9:92:c0:f3:f4:bf:73:50:b0:28:
55:85:e9:a8:b1:65:99:43:19:30:ae:a5:6d:2d:99:
30:59:77:55:69:9f:02:7f:c3:b7:78:8b:67:b0:ea:
86:ed:c7:65:01:34:f0:0c:36:3a:cf:02:52:eb:55:
68:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:2D:CD:41:85:90:5E:28:6E:63:DC:40:17:ED:44:41:26:F7:DA:E3
X509v3 Authority Key Identifier:
keyid:8B:9B:A9:AD:DE:96:35:77:7B:F5:86:FD:49:3E:14:CD:30:F7:C4:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/8B9BA9ADDE9635777BF586FD493E14CD30F7C4CA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5uprd6WNXd79Yb9ST4UzTD3xMo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6c030890-f6e0-410c-bc99-af0921d1c3a4/0/3138382e3136342e3135342e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.164.154.0/24
Signature Algorithm: sha256WithRSAEncryption
17:f5:ff:14:35:aa:12:ac:e9:d0:2b:30:69:d9:58:6d:58:76:
2f:6e:29:25:36:75:74:34:91:0b:39:79:5c:a6:99:62:5e:65:
b9:c4:7e:ba:ca:a2:82:7a:e7:45:1e:57:f3:b4:77:b1:0f:b2:
e6:3a:66:54:d5:f0:ca:1d:53:41:e4:a4:85:63:c4:23:88:e0:
95:0e:c7:7e:fc:36:fb:75:56:a6:fc:9d:34:32:2b:50:20:c2:
d3:2f:07:ed:f5:b8:15:1e:51:c6:29:18:ff:91:9d:e9:44:0a:
3e:cd:2f:61:07:34:95:39:f6:88:2e:44:12:08:d0:f9:67:ea:
af:39:06:c9:00:80:4e:26:35:e9:dc:d1:b1:64:f8:9d:90:30:
fc:ca:a8:54:84:bc:63:23:8e:f9:14:da:c0:6d:fa:30:3a:54:
53:03:0e:a8:f1:04:c1:f3:f5:22:2d:02:25:00:10:d8:13:d8:
dd:2d:69:69:39:c6:75:30:11:4f:05:d3:bb:4c:91:fc:2f:97:
26:26:21:f3:d5:78:98:a8:18:a0:1c:37:47:17:a0:25:cf:7c:
98:b4:2c:37:d2:f6:0d:1e:d7:6a:af:04:25:09:9b:30:a0:67:
dd:a4:81:29:83:d7:eb:8c:b8:5a:f3:87:be:01:be:3c:b1:78:
1a:be:ae:d6
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUaesI71GXSUGSUnyYfB54PJY4u8UwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI5YmE5YWRkZTk2MzU3NzdiZjU4NmZkNDkzZTE0Y2Qz
MGY3YzRjYTAeFw0yNDAxMjcyMzU1MDZaFw0yNTAxMjYwMDAwMDZaMDMxMTAvBgNV
BAMTKEM2MkRDRDQxODU5MDVFMjg2RTYzREM0MDE3RUQ0NDQxMjZGN0RBRTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyYPuIowhT6goJZqIEiChB42s6
l5SKOwa8U0hvIZMdVCDegZUY+ODv9IRezmRE9UYDDO9q3YqafzLzzX0s3Oxi/NPJ
P2WirDfcAh0guInPpHEv3SfAHiBIyko9D0tC/VGUhsKMgiD8V7qOaoU0aE+YLcD3
y8xnpwvnY2G/AfAvXet9O/fhUbvUNHh+C+A7+YLKOvGkY350WMsre58KSnGRW2p4
Ol/n6KJihexZFpII+JmZ2rPbsUeTJ0lu816irHO6yQ1AUssAuZLA8/S/c1CwKFWF
6aixZZlDGTCupW0tmTBZd1VpnwJ/w7d4i2ew6obtx2UBNPAMNjrPAlLrVWidAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUxi3NQYWQXihuY9xAF+1EQSb32uMwHwYDVR0j
BBgwFoAUi5uprd6WNXd79Yb9ST4UzTD3xMowDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNmMwMzA4OTAtZjZlMC00MTBjLWJjOTktYWYwOTIxZDFj
M2E0LzAvOEI5QkE5QURERTk2MzU3NzdCRjU4NkZENDkzRTE0Q0QzMEY3QzRDQS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2k1dXByZDZXTlhkNzlZYjlTVDRVelRE
M3hNby5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNmMwMzA4OTAt
ZjZlMC00MTBjLWJjOTktYWYwOTIxZDFjM2E0LzAvMzEzODM4MmUzMTM2MzQyZTMx
MzUzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALyk
mjANBgkqhkiG9w0BAQsFAAOCAQEAF/X/FDWqEqzp0CswadlYbVh2L24pJTZ1dDSR
Czl5XKaZYl5lucR+usqignrnRR5X87R3sQ+y5jpmVNXwyh1TQeSkhWPEI4jglQ7H
fvw2+3VWpvydNDIrUCDC0y8H7fW4FR5RxikY/5Gd6UQKPs0vYQc0lTn2iC5EEgjQ
+WfqrzkGyQCATiY16dzRsWT4nZAw/MqoVIS8YyOO+RTawG36MDpUUwMOqPEEwfP1
Ii0CJQAQ2BPY3S1paTnGdTARTwXTu0yR/C+XJiYh89V4mKgYoBw3RxegJc98mLQs
N9L2DR7Xaq8EJQmbMKBn3aSBKYPX64y4WvOHvgG+PLF4Gr6u1g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:17 2024 by rpki-client on console-fra.rpki-client.org