Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3134362e31392e38362e302f32342d3234203d3e20383334.roa
File: 3134362e31392e38362e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: fdck1Ap4/hX1l+v5V+WEV4MSJ6K80IAXPM1D8AgBHk4=
Subject key identifier: D2:E4:B0:FA:CF:C1:63:92:04:34:DD:F4:E2:30:34:20:6F:73:A9:13
Certificate issuer: /CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Certificate serial: 181D08B9A382690E2A55476272B5BD2815B35D1C
Authority key identifier: 70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3134362e31392e38362e302f32342d3234203d3e20383334.roa
Signing time: Thu 22 Feb 2024 00:01:24 +0000
ROA not before: Wed 21 Feb 2024 23:56:24 +0000
ROA not after: Thu 20 Feb 2025 00:01:24 +0000
asID: 834
IP address blocks: 146.19.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 13:22:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:1d:08:b9:a3:82:69:0e:2a:55:47:62:72:b5:bd:28:15:b3:5d:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbd7a9817e470009c0f40ea1e370aa79b5fd91
Validity
Not Before: Feb 21 23:56:24 2024 GMT
Not After : Feb 20 00:01:24 2025 GMT
Subject: CN=D2E4B0FACFC163920434DDF4E23034206F73A913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c1:db:71:0e:fc:8e:fa:50:1b:25:d2:45:5c:
c5:ee:91:f7:7a:09:d6:83:e5:ea:4c:46:55:1e:31:
e2:8d:a1:06:68:08:ed:a2:24:61:f6:02:2b:a9:53:
b6:c8:31:67:54:2d:90:db:6d:08:61:91:27:fc:c3:
15:b3:c3:a1:ce:13:a6:1d:1b:ab:66:8c:b8:ef:68:
e3:07:0e:c8:c6:0f:38:e0:c0:48:60:3d:d1:df:8d:
b0:8b:87:13:fd:36:e6:15:c1:46:ab:a2:b1:05:9a:
dc:52:8b:de:0e:da:bd:1d:88:e6:e7:6b:3e:2b:b5:
b7:8a:7f:f9:d2:df:62:a2:14:32:24:a9:73:07:83:
74:c5:1d:40:c7:0b:b1:d9:2b:b5:ad:87:98:5d:66:
6e:99:3a:00:02:e9:df:e9:c2:82:d3:bd:4b:ad:b4:
92:99:c5:ab:5e:60:89:56:93:61:6b:8e:f7:26:d3:
49:60:00:d3:e6:0f:d6:62:ae:be:db:15:40:45:3d:
3d:05:7a:03:e2:6d:d6:8a:8d:c7:0a:3c:71:48:66:
1e:c6:40:79:22:0b:19:64:f0:85:81:df:70:a7:bc:
4d:33:93:b4:70:30:08:7e:ea:6d:37:67:30:27:5a:
19:be:78:ac:f6:b6:e3:fe:13:0d:ab:da:28:19:28:
28:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:E4:B0:FA:CF:C1:63:92:04:34:DD:F4:E2:30:34:20:6F:73:A9:13
X509v3 Authority Key Identifier:
keyid:70:CB:D7:A9:81:7E:47:00:09:C0:F4:0E:A1:E3:70:AA:79:B5:FD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/70CBD7A9817E470009C0F40EA1E370AA79B5FD91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvXqYF-RwAJwPQOoeNwqnm1_ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7332af0-dd73-4755-9d20-693ea8289f8a/0/3134362e31392e38362e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.86.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:13:d8:4c:77:3e:6a:73:04:92:af:4d:f3:44:12:da:4e:e4:
8e:d4:d9:a3:d5:d7:64:99:f9:a1:55:07:78:50:8a:a3:ea:de:
1d:96:e1:c4:99:8e:22:50:52:a6:c6:5f:ec:9b:af:76:46:94:
91:04:12:f0:72:5c:01:6c:e8:19:cc:5a:e6:0e:63:b6:b4:72:
cc:9a:2e:35:9e:a7:d8:4c:40:0e:89:b6:10:30:5f:27:5a:9a:
b5:ef:33:8a:7a:a9:d7:29:ab:33:de:d7:85:10:21:86:7f:65:
4d:b0:54:12:4b:27:80:07:8c:47:99:fe:8c:e5:14:60:48:b8:
12:33:9b:84:d7:96:cd:42:26:3c:2d:28:85:cd:6d:0b:34:ad:
e7:bb:cd:1d:b0:38:d0:1c:c7:6c:7d:58:d3:8f:86:14:e7:a2:
51:c1:a4:a6:65:37:17:c5:5f:bb:09:8e:30:84:a5:54:03:64:
8e:22:c2:e1:40:7a:c8:87:27:79:ab:fb:a6:9d:40:78:e8:8a:
d6:a1:ff:fa:db:54:0e:d9:ef:c4:08:3d:a1:d8:34:30:76:02:
f2:9c:5d:1b:00:d2:ef:4c:16:c5:02:d0:b7:47:1e:9a:97:45:
ff:d2:5d:fc:21:81:e3:dc:93:88:5a:d7:b1:21:d1:48:2c:2d:
23:60:5c:d6
-----BEGIN CERTIFICATE-----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Generated at Mon Mar 11 17:54:53 2024 by rpki-client on console-fra.rpki-client.org