Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3138352e3234302e3130372e302f32342d3234203d3e20383334.roa
File: 3138352e3234302e3130372e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: 9YhV8LhHpYhtJa6MjbUIz5wEh29hsSk8YsW5DaL6b60=
Subject key identifier: 24:D1:BE:67:8F:B0:BA:04:F3:DA:7C:4C:F8:40:BD:43:54:B8:39:48
Certificate issuer: /CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b
Certificate serial: 1FD2C184F1313375634463F310C477B935282298
Authority key identifier: 8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3138352e3234302e3130372e302f32342d3234203d3e20383334.roa
Signing time: Mon 04 Nov 2024 00:02:18 +0000
ROA not before: Sun 03 Nov 2024 23:57:18 +0000
ROA not after: Mon 03 Nov 2025 00:02:18 +0000
asID: 834
IP address blocks: 185.240.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Nov 2024 06:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:d2:c1:84:f1:31:33:75:63:44:63:f3:10:c4:77:b9:35:28:22:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b
Validity
Not Before: Nov 3 23:57:18 2024 GMT
Not After : Nov 3 00:02:18 2025 GMT
Subject: CN=24D1BE678FB0BA04F3DA7C4CF840BD4354B83948
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:a2:6c:9c:86:0e:67:0a:b1:f8:c6:87:58:85:
c9:8c:6b:13:a5:3a:5b:c4:0b:43:c6:74:65:bb:45:
d8:85:e3:cb:d8:41:7b:7f:ec:4c:53:1a:2c:03:01:
62:37:05:b9:fe:60:76:ed:4d:02:91:81:eb:cd:d3:
1b:42:86:4d:c2:4f:d5:d6:fe:9a:0a:7f:54:03:6b:
9e:b1:62:cb:83:5e:b5:62:26:9f:55:27:ff:8a:65:
04:c2:2b:1f:31:33:2c:ba:41:6e:65:97:fb:85:70:
75:14:fe:fc:fa:f0:80:5f:ec:6a:f9:f3:e8:82:52:
cf:d5:2b:74:de:f5:02:28:64:f4:f5:e4:ec:e4:62:
c2:1f:6a:01:6f:aa:36:ac:61:f0:9c:10:4a:7d:81:
41:d2:29:1c:5b:e6:06:3d:f8:30:35:ec:bb:0b:5a:
7c:7e:01:d1:6f:1a:8f:0f:9b:a6:24:2f:0c:78:d5:
b1:5b:6c:a5:e9:cc:9e:93:eb:3c:fe:d0:9e:ce:12:
ef:99:2f:be:d9:ef:f6:02:15:50:1b:af:7f:8c:94:
48:03:7e:e7:3f:e2:58:25:f6:6b:f4:e9:4d:d5:76:
82:f7:02:82:87:04:5d:73:e2:52:ed:0c:3f:cf:99:
41:dd:2c:6f:14:94:c1:1c:26:cf:3d:60:ca:b0:44:
34:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:D1:BE:67:8F:B0:BA:04:F3:DA:7C:4C:F8:40:BD:43:54:B8:39:48
X509v3 Authority Key Identifier:
keyid:8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3138352e3234302e3130372e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.107.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:8e:ac:e0:0e:c7:e1:5d:29:18:09:7f:39:8a:a9:25:30:e1:
74:76:71:27:3b:37:b0:b0:ff:b6:b7:09:18:67:c9:02:15:d1:
41:9b:a8:7a:89:45:97:27:86:29:69:31:7e:6c:d3:8c:04:6f:
18:c1:a6:a1:ca:50:8a:59:82:ce:05:f1:da:07:43:81:9d:1b:
f7:f6:d7:89:38:4b:49:0f:73:47:63:01:c6:b7:ec:73:90:0c:
86:65:1f:74:9b:fc:d0:8d:e8:a4:6c:09:49:bd:e9:c2:50:5c:
98:ac:03:6d:f1:ea:4d:27:93:16:7d:f0:74:8c:31:a1:78:cd:
58:16:f7:b0:ee:9b:76:7c:4a:ec:92:30:4d:10:65:a9:bd:38:
79:19:4a:e0:15:7a:42:15:6d:8d:dd:3d:77:e2:91:8e:9f:45:
e5:81:84:ee:26:d7:e6:c4:53:d3:e7:53:87:1d:2b:1a:2d:19:
ad:cd:30:4c:6e:75:b9:34:15:29:fa:6d:36:78:37:0f:bc:f1:
91:4c:2a:3c:4c:90:c9:a2:c5:86:47:dc:08:06:49:28:2a:d0:
5b:38:a7:76:1d:7f:40:6b:c3:69:92:de:d2:ae:45:ba:47:cb:
48:d7:df:67:8f:12:2a:30:db:a1:ed:18:1d:38:c7:4c:6a:3c:
49:84:a0:d0
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUH9LBhPExM3VjRGPzEMR3uTUoIpgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGMxMmI0MjczODMyYjQxNTZmZTAwOTJmNmFlN2U1YjNj
ZTIzYWQ4YjAeFw0yNDExMDMyMzU3MThaFw0yNTExMDMwMDAyMThaMDMxMTAvBgNV
BAMTKDI0RDFCRTY3OEZCMEJBMDRGM0RBN0M0Q0Y4NDBCRDQzNTRCODM5NDgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDromychg5nCrH4xodYhcmMaxOl
OlvEC0PGdGW7RdiF48vYQXt/7ExTGiwDAWI3Bbn+YHbtTQKRgevN0xtChk3CT9XW
/poKf1QDa56xYsuDXrViJp9VJ/+KZQTCKx8xMyy6QW5ll/uFcHUU/vz68IBf7Gr5
8+iCUs/VK3Te9QIoZPT15OzkYsIfagFvqjasYfCcEEp9gUHSKRxb5gY9+DA17LsL
Wnx+AdFvGo8Pm6YkLwx41bFbbKXpzJ6T6zz+0J7OEu+ZL77Z7/YCFVAbr3+MlEgD
fuc/4lgl9mv06U3VdoL3AoKHBF1z4lLtDD/PmUHdLG8UlMEcJs89YMqwRDTdAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUJNG+Z4+wugTz2nxM+EC9Q1S4OUgwHwYDVR0j
BBgwFoAUjBK0JzgytBVv4Akvaufls84jrYswDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvOGJmZDY4ODItZDZiMy00YWE4LWJjMGEtNzExZDY4YmQx
OThiLzAvOEMxMkI0MjczODMyQjQxNTZGRTAwOTJGNkFFN0U1QjNDRTIzQUQ4Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2pCSzBKemd5dEJWdjRBa3ZhdWZsczg0
anJZcy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGJmZDY4ODIt
ZDZiMy00YWE4LWJjMGEtNzExZDY4YmQxOThiLzAvMzEzODM1MmUzMjM0MzAyZTMx
MzAzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnw
azANBgkqhkiG9w0BAQsFAAOCAQEAp46s4A7H4V0pGAl/OYqpJTDhdHZxJzs3sLD/
trcJGGfJAhXRQZuoeolFlyeGKWkxfmzTjARvGMGmocpQilmCzgXx2gdDgZ0b9/bX
iThLSQ9zR2MBxrfsc5AMhmUfdJv80I3opGwJSb3pwlBcmKwDbfHqTSeTFn3wdIwx
oXjNWBb3sO6bdnxK7JIwTRBlqb04eRlK4BV6QhVtjd09d+KRjp9F5YGE7ibX5sRT
0+dThx0rGi0Zrc0wTG51uTQVKfptNng3D7zxkUwqPEyQyaLFhkfcCAZJKCrQWzin
dh1/QGvDaZLe0q5FukfLSNffZ48SKjDboe0YHTjHTGo8SYSg0A==
Generated at Mon Nov 4 08:26:38 2024 by rpki-client on console-fra.rpki-client.org