Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e3135302e3133392e302f32342d3234203d3e20383334.roa
File: 3138352e3135302e3133392e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: 2BN2wrr+a8LC4vw4DZ0u/U7Irsfz+ww02bCiMKuqay0=
Subject key identifier: 5A:63:53:01:B1:49:0B:95:B9:C2:63:43:D8:D9:1B:66:01:B3:CA:F8
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 3087323FD38B32D50EA768CC3626B401FD734765
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e3135302e3133392e302f32342d3234203d3e20383334.roa
Signing time: Mon 23 Dec 2024 04:06:50 +0000
ROA not before: Mon 23 Dec 2024 04:01:50 +0000
ROA not after: Mon 22 Dec 2025 04:06:50 +0000
asID: 834
IP address blocks: 185.150.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Dec 2024 02:25:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:87:32:3f:d3:8b:32:d5:0e:a7:68:cc:36:26:b4:01:fd:73:47:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Dec 23 04:01:50 2024 GMT
Not After : Dec 22 04:06:50 2025 GMT
Subject: CN=5A635301B1490B95B9C26343D8D91B6601B3CAF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ea:e5:3f:a9:5e:09:df:57:09:32:63:28:6e:
1e:d1:b4:da:b6:a8:d3:7d:89:11:4c:57:8d:06:c7:
ca:69:19:18:a2:52:74:1d:5c:09:a9:ec:9f:d1:83:
f5:6b:a3:29:b9:ff:41:39:2d:bb:67:e3:46:e5:08:
65:b2:f0:17:25:d2:7c:da:74:69:0b:ca:de:3e:44:
b3:3e:0f:86:bc:76:3f:d3:6b:6b:02:76:b1:28:f8:
8d:c9:13:f4:b5:19:fb:49:9e:86:cd:58:5d:c1:87:
09:ec:ea:75:7b:f7:e8:00:b8:24:e0:19:b3:25:10:
3f:4c:bd:fc:03:c1:53:56:31:0f:3e:87:53:fd:fb:
8b:4f:0c:b7:b4:01:d4:84:6a:a9:e6:28:11:20:f9:
02:cd:cd:c0:dc:a7:9b:ad:29:08:2c:ca:ad:a0:73:
df:22:54:c0:d8:05:7a:65:20:8e:bd:de:60:fc:4f:
17:02:6e:eb:b7:dc:9c:1c:c6:1d:0b:bb:2d:eb:34:
af:10:9b:ef:9d:24:4d:62:55:11:43:c3:60:78:22:
4a:dc:ff:0f:4f:ae:f4:43:63:88:8e:27:90:d9:1b:
e4:92:40:34:87:dc:78:60:b4:be:62:8c:7d:f6:c6:
9a:18:f7:27:e4:cc:99:39:e3:6e:01:ea:bf:e9:57:
ee:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:63:53:01:B1:49:0B:95:B9:C2:63:43:D8:D9:1B:66:01:B3:CA:F8
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3138352e3135302e3133392e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.139.0/24
Signature Algorithm: sha256WithRSAEncryption
82:21:5e:25:31:e3:4e:b7:66:6f:c7:bc:42:65:0e:6d:d6:18:
ab:6d:7f:c3:54:46:b4:84:2c:fd:1c:c6:8d:68:e3:a0:13:26:
c8:b9:f9:2b:d0:f9:c2:b6:17:41:4a:3d:50:62:f0:c5:ab:d5:
72:fc:ef:f9:df:2e:2e:e8:eb:74:c4:c3:a6:18:51:21:42:c9:
0e:36:ff:dc:56:e8:26:5f:31:b2:bb:ce:a9:43:21:41:66:0d:
f0:f0:ea:f7:99:d8:54:f4:68:a3:43:8d:22:a2:06:f6:ff:ba:
52:59:c9:73:18:ae:c4:df:6a:4c:08:9d:dd:d8:22:aa:83:35:
5b:71:c9:43:20:05:99:48:06:c2:64:55:fe:f4:3f:f4:6a:af:
43:7c:c8:f9:5e:07:7f:eb:d0:90:c9:c1:64:3e:ba:6a:71:f7:
23:e2:d3:4a:7d:3c:f7:8e:5d:75:44:c5:b7:e2:ce:be:8f:92:
a3:b3:77:ff:34:ba:4e:f2:df:1a:22:e8:2c:6d:26:21:42:64:
8d:d4:b0:3c:82:a8:4c:b9:7a:23:9a:81:fd:50:a4:3e:f6:2e:
c8:ec:ba:d7:ee:a5:11:2a:db:7a:fb:c2:51:3c:12:93:c5:b3:
f2:eb:14:85:a5:8c:b3:03:cf:43:19:db:d0:78:fe:fe:0c:8d:
31:76:b5:fe
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUMIcyP9OLMtUOp2jMNia0Af1zR2UwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDQ4YWY2NjViZjhiMTg2YjcwMjIwNzU5ZDI2YzU3OGY0
MGI1ZjNlMzAeFw0yNDEyMjMwNDAxNTBaFw0yNTEyMjIwNDA2NTBaMDMxMTAvBgNV
BAMTKDVBNjM1MzAxQjE0OTBCOTVCOUMyNjM0M0Q4RDkxQjY2MDFCM0NBRjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC56uU/qV4J31cJMmMobh7RtNq2
qNN9iRFMV40Gx8ppGRiiUnQdXAmp7J/Rg/Vroym5/0E5Lbtn40blCGWy8Bcl0nza
dGkLyt4+RLM+D4a8dj/Ta2sCdrEo+I3JE/S1GftJnobNWF3Bhwns6nV79+gAuCTg
GbMlED9MvfwDwVNWMQ8+h1P9+4tPDLe0AdSEaqnmKBEg+QLNzcDcp5utKQgsyq2g
c98iVMDYBXplII693mD8TxcCbuu33Jwcxh0Luy3rNK8Qm++dJE1iVRFDw2B4Ikrc
/w9PrvRDY4iOJ5DZG+SSQDSH3HhgtL5ijH32xpoY9yfkzJk5424B6r/pV+4jAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUWmNTAbFJC5W5wmND2NkbZgGzyvgwHwYDVR0j
BBgwFoAUBIr2Zb+LGGtwIgdZ0mxXj0C18+MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODJhOWJmNWItMzljMS00MDUwLWIwNzMtNDgwNzViODYx
ZDg3LzAvMDQ4QUY2NjVCRjhCMTg2QjcwMjIwNzU5RDI2QzU3OEY0MEI1RjNFMy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0JJcjJaYi1MR0d0d0lnZFowbXhYajBD
MTgtTS5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODJhOWJmNWIt
MzljMS00MDUwLWIwNzMtNDgwNzViODYxZDg3LzAvMzEzODM1MmUzMTM1MzAyZTMx
MzMzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmW
izANBgkqhkiG9w0BAQsFAAOCAQEAgiFeJTHjTrdmb8e8QmUObdYYq21/w1RGtIQs
/RzGjWjjoBMmyLn5K9D5wrYXQUo9UGLwxavVcvzv+d8uLujrdMTDphhRIULJDjb/
3FboJl8xsrvOqUMhQWYN8PDq95nYVPRoo0ONIqIG9v+6UlnJcxiuxN9qTAid3dgi
qoM1W3HJQyAFmUgGwmRV/vQ/9GqvQ3zI+V4Hf+vQkMnBZD66anH3I+LTSn08945d
dUTFt+LOvo+So7N3/zS6TvLfGiLoLG0mIUJkjdSwPIKoTLl6I5qB/VCkPvYuyOy6
1+6lESrbevvCUTwSk8Wz8usUhaWMswPPQxnb0Hj+/gyNMXa1/g==
-----END CERTIFICATE-----
Generated at Sat Apr 5 05:02:22 2025 by rpki-client