Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e3134372e302f32342d3234203d3e2036383439.roa
File: 33372e35322e3134372e302f32342d3234203d3e2036383439.roa (raw, json)
Hash identifier: cz99WcAuseI5zZE2XH4QPWtal7UyowomjQ1aBuGpcI0=
Subject key identifier: 7E:2F:09:63:A3:AA:AB:C2:D7:22:E4:0D:24:59:2E:A8:3A:59:D5:52
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 1E05418B894844BEBACB0EC70B7DC65D13E0A441
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e3134372e302f32342d3234203d3e2036383439.roa
Signing time: Tue 20 Feb 2024 14:39:21 +0000
ROA not before: Tue 20 Feb 2024 14:34:21 +0000
ROA not after: Tue 18 Feb 2025 14:39:21 +0000
asID: 6849
IP address blocks: 37.52.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Feb 2024 09:39:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:05:41:8b:89:48:44:be:ba:cb:0e:c7:0b:7d:c6:5d:13:e0:a4:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 20 14:34:21 2024 GMT
Not After : Feb 18 14:39:21 2025 GMT
Subject: CN=7E2F0963A3AAABC2D722E40D24592EA83A59D552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:34:67:3a:af:96:8f:ba:44:52:3d:d6:33:82:
29:ac:a3:7b:b3:3c:19:55:87:2c:58:d3:6f:36:d1:
78:c6:70:e1:3a:e7:3e:18:14:6f:61:d7:07:53:5c:
24:44:df:7c:4d:18:62:d9:4c:88:7d:6d:6d:75:70:
ae:72:d4:22:98:a2:57:78:6b:99:25:e6:6a:ed:85:
b7:78:29:50:1c:56:fa:e5:56:bc:66:2c:18:39:01:
ca:0b:48:a8:9c:c8:8f:f9:10:14:17:15:33:92:fc:
d2:f2:65:4b:bc:61:5c:02:65:c0:0b:8d:35:ba:ff:
cf:b3:35:4b:06:88:ed:fb:b8:dd:cb:08:8f:32:3c:
b8:9c:53:0d:3e:64:39:80:49:a8:38:4e:6e:c0:05:
c2:38:17:1f:c2:7b:d6:77:96:b9:0f:f7:47:95:23:
47:29:aa:ef:1f:09:5e:a3:0a:0d:3f:07:89:40:28:
37:00:0c:a7:ff:91:5e:c4:2e:2b:c5:b4:69:26:7b:
3c:c4:38:25:74:f8:2a:17:1b:20:82:cd:c9:c1:ee:
34:65:bb:e7:e2:71:2e:6c:ad:e7:f8:a2:fb:36:a4:
92:8e:b4:5f:60:bb:62:f9:ae:7c:27:e8:70:f8:66:
4a:7f:ab:04:0b:45:b6:4e:05:78:95:25:06:8f:22:
6d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:2F:09:63:A3:AA:AB:C2:D7:22:E4:0D:24:59:2E:A8:3A:59:D5:52
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e3134372e302f32342d3234203d3e2036383439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.52.147.0/24
Signature Algorithm: sha256WithRSAEncryption
86:a7:5e:0c:a2:29:f6:dd:14:3d:d9:b2:cd:5e:93:5e:22:0f:
a0:47:4b:56:dd:41:35:ab:62:de:2b:a1:58:00:4d:55:cb:c7:
dd:6d:6a:8f:5d:53:05:20:96:18:e7:bb:66:77:4e:f2:e0:f3:
77:3b:92:68:68:5b:43:d7:41:3d:4d:8b:89:fc:d4:d1:17:cf:
98:a8:ee:db:d0:a7:00:78:ff:1f:48:a8:b6:cd:4d:29:e1:da:
8f:8c:54:b4:26:54:79:3f:b4:c8:13:36:82:b5:34:dc:c0:f9:
ff:a3:e2:f7:8b:5e:64:a0:c2:a0:74:e0:4a:6f:94:0a:c9:e2:
27:c2:a9:50:26:76:a0:14:e2:2d:9f:df:1b:20:b5:c4:f2:4a:
8d:3c:ca:00:db:ef:e8:6c:32:4e:f1:5b:c4:e0:44:ff:b5:38:
b1:5e:aa:ad:5b:0e:ad:68:17:7c:09:ed:64:f4:0a:cc:a7:e5:
19:30:da:a1:b7:dc:b0:32:7c:2b:10:8d:0f:bf:27:1b:f9:7b:
fc:ff:05:43:02:f3:df:21:e2:f1:c9:90:3d:43:50:e3:55:73:
fd:bd:d2:ee:3d:3b:d6:5f:03:5b:e2:25:f0:97:c2:d6:69:b8:
8c:9f:cf:f8:d2:10:c4:84:01:f1:ee:88:79:a3:f0:d5:f4:23:
ce:1f:08:b0
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUHgVBi4lIRL66yw7HC33GXRPgpEEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk
NWMxM2I1ZjAeFw0yNDAyMjAxNDM0MjFaFw0yNTAyMTgxNDM5MjFaMDMxMTAvBgNV
BAMTKDdFMkYwOTYzQTNBQUFCQzJENzIyRTQwRDI0NTkyRUE4M0E1OUQ1NTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwNGc6r5aPukRSPdYzgimso3uz
PBlVhyxY02820XjGcOE65z4YFG9h1wdTXCRE33xNGGLZTIh9bW11cK5y1CKYold4
a5kl5mrthbd4KVAcVvrlVrxmLBg5AcoLSKicyI/5EBQXFTOS/NLyZUu8YVwCZcAL
jTW6/8+zNUsGiO37uN3LCI8yPLicUw0+ZDmASag4Tm7ABcI4Fx/Ce9Z3lrkP90eV
I0cpqu8fCV6jCg0/B4lAKDcADKf/kV7ELivFtGkmezzEOCV0+CoXGyCCzcnB7jRl
u+ficS5sref4ovs2pJKOtF9gu2L5rnwn6HD4Zkp/qwQLRbZOBXiVJQaPIm1ZAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUfi8JY6Oqq8LXIuQNJFkuqDpZ1VIwHwYDVR0j
BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm
NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y
Qk8xOC5jZXIwgakGCCsGAQUFBwELBIGcMIGZMIGWBggrBgEFBQcwC4aBiXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUt
NDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThmNmI0LzAvMzMzNzJlMzUzMjJlMzEzNDM3
MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzODM0Mzkucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAlNJMw
DQYJKoZIhvcNAQELBQADggEBAIanXgyiKfbdFD3Zss1ek14iD6BHS1bdQTWrYt4r
oVgATVXLx91tao9dUwUglhjnu2Z3TvLg83c7kmhoW0PXQT1Ni4n81NEXz5io7tvQ
pwB4/x9IqLbNTSnh2o+MVLQmVHk/tMgTNoK1NNzA+f+j4veLXmSgwqB04EpvlArJ
4ifCqVAmdqAU4i2f3xsgtcTySo08ygDb7+hsMk7xW8TgRP+1OLFeqq1bDq1oF3wJ
7WT0Csyn5Rkw2qG33LAyfCsQjQ+/Jxv5e/z/BUMC898h4vHJkD1DUONVc/290u49
O9ZfA1viJfCXwtZpuIyfz/jSEMSEAfHuiHmj8NX0I84fCLA=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:04:41 2025 by rpki-client