Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138332e302f32342d3234203d3e20383334.roa
File: 3130392e3131302e3138332e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: JyGFtVZfqyLf93LuMinwoNdQVNL4uZNY7UWKJZvPmrc=
Subject key identifier: C6:26:E8:D3:F8:4C:D4:E8:42:AB:3C:13:26:45:19:8D:B2:C7:4A:9B
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 1D4FE734E01C44B238AB0DDAE4C2FACE36E3C091
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138332e302f32342d3234203d3e20383334.roa
Signing time: Wed 11 Sep 2024 00:03:39 +0000
ROA not before: Tue 10 Sep 2024 23:58:39 +0000
ROA not after: Wed 10 Sep 2025 00:03:39 +0000
asID: 834
IP address blocks: 109.110.183.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Sep 2024 19:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:4f:e7:34:e0:1c:44:b2:38:ab:0d:da:e4:c2:fa:ce:36:e3:c0:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Sep 10 23:58:39 2024 GMT
Not After : Sep 10 00:03:39 2025 GMT
Subject: CN=C626E8D3F84CD4E842AB3C132645198DB2C74A9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b0:a3:c3:cf:1b:66:3a:c7:90:3a:09:46:0b:
17:fd:36:2c:49:25:23:b4:00:7e:b9:99:72:d5:bb:
97:62:03:c9:ad:3e:b7:d1:e6:01:67:18:5a:62:8a:
99:ba:2c:d4:70:43:db:5b:8b:c2:77:2c:aa:14:b8:
0b:cf:e1:89:bd:e7:f0:d2:22:13:20:2b:a0:36:d9:
a9:24:67:56:49:71:31:1e:0d:3d:ea:c4:d0:24:5f:
f1:a4:b7:e4:52:14:1a:7a:c3:b3:5a:bf:b1:0e:5c:
2d:56:99:bc:75:92:29:a9:5c:79:43:81:69:b3:8d:
68:45:14:63:33:2d:c4:a2:ad:4d:74:fa:87:da:d0:
95:de:a0:00:a0:fc:8e:cc:e8:16:bc:b3:27:b5:99:
a6:4b:a5:23:2b:c0:32:eb:a6:0b:fd:01:23:5c:49:
33:6d:7c:f6:80:0b:20:18:b5:e2:dc:6d:13:7d:03:
c8:3f:1d:f1:33:9f:58:5e:2c:f0:41:a1:8e:74:b8:
84:05:e6:3d:9b:5a:00:a5:f0:3b:33:d7:4c:ab:79:
64:6d:c5:96:2e:d9:c7:8c:98:bf:b2:23:7a:88:af:
f1:6d:de:b9:7b:ca:08:d8:5b:2f:a4:3e:9e:6b:de:
db:52:f6:fc:21:68:2d:da:e2:d0:b4:f7:ea:4e:d7:
94:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:26:E8:D3:F8:4C:D4:E8:42:AB:3C:13:26:45:19:8D:B2:C7:4A:9B
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3130392e3131302e3138332e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.183.0/24
Signature Algorithm: sha256WithRSAEncryption
20:87:3a:02:fe:f7:23:7d:a8:f0:00:fa:cc:4e:08:34:c9:5e:
f0:67:58:33:c5:b5:13:ed:72:b9:ce:4b:7d:75:f4:b2:93:07:
70:f1:b1:32:70:28:c9:95:59:41:c7:0a:1f:30:92:5c:9a:3a:
a5:5d:4e:90:62:55:4c:69:88:6e:61:7e:7c:6e:74:96:ff:a2:
9e:ab:a4:f6:b3:40:18:d0:20:bc:9d:1a:2b:7d:21:04:1d:6f:
c2:1b:87:f0:ac:39:71:28:6f:db:b1:b6:8e:c7:32:3a:f3:b6:
99:ae:89:78:ff:7c:ad:7b:f6:6c:71:db:11:fc:59:7e:04:98:
6a:e2:0e:9c:c5:70:9d:56:a4:b8:b3:c9:48:3d:25:3f:ae:3c:
b9:50:9e:67:f5:64:4b:9a:d9:f6:0f:7b:4a:2d:08:28:41:88:
7a:0c:6a:de:1e:b3:21:fe:cf:2c:cc:ca:54:44:ed:21:35:9f:
be:af:b2:69:2e:fb:c9:5a:bc:6a:5e:fb:f1:48:42:a6:47:09:
18:5d:58:4b:32:44:08:c9:81:e6:ba:46:5a:c7:fe:32:85:41:
42:d1:c0:92:f8:92:aa:4c:03:1f:09:3e:25:fd:d2:e5:a2:d5:
87:2a:3c:a1:8d:24:24:b7:3a:a6:26:05:95:c8:7f:72:47:03:
52:a5:28:71
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUHU/nNOAcRLI4qw3a5ML6zjbjwJEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN2FkZjYzZTM3NWIwYjc4NTA4MWI1OTQ1YjFkMThkOWRl
ODZlMGVmYzAeFw0yNDA5MTAyMzU4MzlaFw0yNTA5MTAwMDAzMzlaMDMxMTAvBgNV
BAMTKEM2MjZFOEQzRjg0Q0Q0RTg0MkFCM0MxMzI2NDUxOThEQjJDNzRBOUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrsKPDzxtmOseQOglGCxf9NixJ
JSO0AH65mXLVu5diA8mtPrfR5gFnGFpiipm6LNRwQ9tbi8J3LKoUuAvP4Ym95/DS
IhMgK6A22akkZ1ZJcTEeDT3qxNAkX/Gkt+RSFBp6w7Nav7EOXC1Wmbx1kimpXHlD
gWmzjWhFFGMzLcSirU10+ofa0JXeoACg/I7M6Ba8sye1maZLpSMrwDLrpgv9ASNc
STNtfPaACyAYteLcbRN9A8g/HfEzn1heLPBBoY50uIQF5j2bWgCl8Dsz10yreWRt
xZYu2ceMmL+yI3qIr/Ft3rl7ygjYWy+kPp5r3ttS9vwhaC3a4tC09+pO15QzAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUxibo0/hM1OhCqzwTJkUZjbLHSpswHwYDVR0j
BBgwFoAUet9j43Wwt4UIG1lFsdGNnehuDvwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQtOTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2Fi
MDAyLzAvN0FERjYzRTM3NUIwQjc4NTA4MUI1OTQ1QjFEMThEOURFODZFMEVGQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2V0OWo0M1d3dDRVSUcxbEZzZEdObmVo
dUR2dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWVlM2Q1OGQt
OTA0YS00Mzc1LWJmOTMtOGI1ZjM4Y2FiMDAyLzAvMzEzMDM5MmUzMTMxMzAyZTMx
MzgzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG1u
tzANBgkqhkiG9w0BAQsFAAOCAQEAIIc6Av73I32o8AD6zE4INMle8GdYM8W1E+1y
uc5LfXX0spMHcPGxMnAoyZVZQccKHzCSXJo6pV1OkGJVTGmIbmF+fG50lv+inquk
9rNAGNAgvJ0aK30hBB1vwhuH8Kw5cShv27G2jscyOvO2ma6JeP98rXv2bHHbEfxZ
fgSYauIOnMVwnVakuLPJSD0lP648uVCeZ/VkS5rZ9g97Si0IKEGIegxq3h6zIf7P
LMzKVETtITWfvq+yaS77yVq8al778UhCpkcJGF1YSzJECMmB5rpGWsf+MoVBQtHA
kviSqkwDHwk+Jf3S5aLVhyo8oY0kJLc6piYFlch/ckcDUqUocQ==
-----END CERTIFICATE-----
Generated at Thu Sep 12 20:32:24 2024 by rpki-client on console-fra.rpki-client.org