Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138322e302f32342d3234203d3e20333937363330.roa
File: 3137382e3230382e3138322e302f32342d3234203d3e20333937363330.roa (raw, json)
Hash identifier: lwYhvjSqb+mimbj8hlBOnzrmyJE4rwUUCSSNVNUXeDQ=
Subject key identifier: DB:3D:21:84:44:BF:7D:10:AF:08:F5:52:4D:92:3C:ED:38:CC:DE:D1
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 3D883994F9FEDC295D42909125BC97F3EE27D421
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138322e302f32342d3234203d3e20333937363330.roa
Signing time: Tue 15 Oct 2024 15:43:25 +0000
ROA not before: Tue 15 Oct 2024 15:38:25 +0000
ROA not after: Tue 14 Oct 2025 15:43:25 +0000
asID: 397630
IP address blocks: 178.208.182.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Nov 2024 00:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:88:39:94:f9:fe:dc:29:5d:42:90:91:25:bc:97:f3:ee:27:d4:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Oct 15 15:38:25 2024 GMT
Not After : Oct 14 15:43:25 2025 GMT
Subject: CN=DB3D218444BF7D10AF08F5524D923CED38CCDED1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e0:ab:e6:74:4f:54:1b:f7:b1:c2:58:c5:dd:
f1:ef:26:ca:a4:17:b4:e7:0e:8e:3f:fe:51:fd:50:
7a:a1:20:12:d9:24:49:14:c6:46:13:f8:fd:71:f5:
b4:40:ad:44:d4:73:3b:7d:4a:ee:a3:db:31:19:03:
d5:ac:78:d5:fd:46:1f:b9:9e:3a:30:fd:b4:49:cd:
02:a6:94:3f:a5:03:a5:34:e4:ad:c9:8b:e7:9d:00:
93:d0:01:7c:7c:a2:a6:01:32:2c:7d:9d:0f:db:49:
ef:3b:5d:66:86:19:20:c4:c7:8e:d1:e2:d3:81:73:
5f:9d:0c:4f:79:5a:c2:09:25:67:2f:9e:25:d0:dc:
e8:06:07:62:7b:98:88:7a:49:d5:a5:b1:10:e2:7f:
0a:8b:5d:6d:b5:cc:e1:40:b2:01:ff:3f:c9:26:7e:
a3:49:33:fb:e5:a3:b4:a5:e4:5f:30:35:41:d4:f9:
45:ed:61:44:25:e0:af:99:37:69:af:26:f0:b7:09:
b6:d6:cf:e6:1e:66:c0:c7:ff:e6:96:54:51:32:17:
3d:42:f6:40:30:7b:d2:64:a4:7e:ad:3e:23:e6:8f:
0f:20:2e:ca:55:da:d5:87:9d:d8:8d:49:d3:3c:14:
55:73:68:fa:e4:ae:5d:4f:c7:62:38:df:c4:d6:b4:
4e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:3D:21:84:44:BF:7D:10:AF:08:F5:52:4D:92:3C:ED:38:CC:DE:D1
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138322e302f32342d3234203d3e20333937363330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.208.182.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:6f:b4:b8:a2:14:e7:8b:a5:71:03:d1:c3:82:05:74:1e:71:
84:13:e7:d8:c7:87:94:68:e0:60:d6:3e:dc:92:2d:d4:a9:4a:
83:19:32:b4:1b:79:e1:72:67:fb:ca:db:47:c4:1e:13:4d:e5:
60:ed:8d:a4:93:5b:5e:07:68:80:ec:2c:1d:89:99:12:50:e2:
83:ad:61:a3:be:52:71:1f:a1:c1:7e:2e:9f:d9:1c:cc:bc:71:
ec:4d:49:c9:b6:a5:5f:ef:11:12:86:12:06:f1:8a:cb:12:10:
56:58:a1:04:16:fa:4a:a4:85:c3:c5:1b:8f:2d:95:20:36:d0:
0d:79:87:98:6b:5a:27:63:17:a0:35:5a:aa:c6:89:fd:c9:3a:
04:14:e1:44:03:a4:fa:d7:7b:55:6f:db:91:d1:45:68:4b:dc:
9a:4c:09:8c:ed:e0:d2:77:be:60:e6:21:2b:d9:bf:3a:4e:4a:
0f:b4:2c:0d:a9:a9:c5:cf:cd:34:ea:19:f7:da:c9:31:e8:7e:
01:44:b6:ba:4b:35:ab:b5:89:f9:19:12:fc:c6:87:2f:4f:ff:
c1:43:8e:de:75:ee:48:b4:85:f0:40:88:48:4b:aa:a9:53:b0:
22:0e:6c:65:5a:8d:c8:68:23:d5:38:7f:53:a6:39:57:24:06:
fe:ff:72:62
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIUPYg5lPn+3CldQpCRJbyX8+4n1CEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDQ4YWY2NjViZjhiMTg2YjcwMjIwNzU5ZDI2YzU3OGY0
MGI1ZjNlMzAeFw0yNDEwMTUxNTM4MjVaFw0yNTEwMTQxNTQzMjVaMDMxMTAvBgNV
BAMTKERCM0QyMTg0NDRCRjdEMTBBRjA4RjU1MjREOTIzQ0VEMzhDQ0RFRDEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe4KvmdE9UG/exwljF3fHvJsqk
F7TnDo4//lH9UHqhIBLZJEkUxkYT+P1x9bRArUTUczt9Su6j2zEZA9WseNX9Rh+5
njow/bRJzQKmlD+lA6U05K3Ji+edAJPQAXx8oqYBMix9nQ/bSe87XWaGGSDEx47R
4tOBc1+dDE95WsIJJWcvniXQ3OgGB2J7mIh6SdWlsRDifwqLXW21zOFAsgH/P8km
fqNJM/vlo7Sl5F8wNUHU+UXtYUQl4K+ZN2mvJvC3CbbWz+YeZsDH/+aWVFEyFz1C
9kAwe9JkpH6tPiPmjw8gLspV2tWHndiNSdM8FFVzaPrkrl1Px2I438TWtE45AgMB
AAGjggJBMIICPTAdBgNVHQ4EFgQU2z0hhES/fRCvCPVSTZI87TjM3tEwHwYDVR0j
BBgwFoAUBIr2Zb+LGGtwIgdZ0mxXj0C18+MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODJhOWJmNWItMzljMS00MDUwLWIwNzMtNDgwNzViODYx
ZDg3LzAvMDQ4QUY2NjVCRjhCMTg2QjcwMjIwNzU5RDI2QzU3OEY0MEI1RjNFMy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0JJcjJaYi1MR0d0d0lnZFowbXhYajBD
MTgtTS5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODJhOWJmNWIt
MzljMS00MDUwLWIwNzMtNDgwNzViODYxZDg3LzAvMzEzNzM4MmUzMjMwMzgyZTMx
MzgzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMzMzkzNzM2MzMzMC5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEALLQtjANBgkqhkiG9w0BAQsFAAOCAQEAO2+0uKIU54ulcQPRw4IFdB5xhBPn
2MeHlGjgYNY+3JIt1KlKgxkytBt54XJn+8rbR8QeE03lYO2NpJNbXgdogOwsHYmZ
ElDig61ho75ScR+hwX4un9kczLxx7E1JybalX+8REoYSBvGKyxIQVlihBBb6SqSF
w8Ubjy2VIDbQDXmHmGtaJ2MXoDVaqsaJ/ck6BBThRAOk+td7VW/bkdFFaEvcmkwJ
jO3g0ne+YOYhK9m/Ok5KD7QsDampxc/NNOoZ99rJMeh+AUS2uks1q7WJ+RkS/MaH
L0//wUOO3nXuSLSF8ECISEuqqVOwIg5sZVqNyGgj1Th/U6Y5VyQG/v9yYg==
-----END CERTIFICATE-----
Generated at Thu Nov 14 01:58:08 2024 by rpki-client on console-fra.rpki-client.org