Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e34302e302f32312d3231203d3e2036383439.roa
File: 33372e35322e34302e302f32312d3231203d3e2036383439.roa (raw, json)
Hash identifier: 1V8kIKvrrERKtbdc+Iy/07sY3AkWHyP4SX4X/N7dDCU=
Subject key identifier: 0D:02:AD:02:37:91:50:33:3E:76:BF:E6:11:08:60:C0:79:40:9E:E3
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 30F72CF79A4FA72848538820D72FB6C970E4DAFF
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e34302e302f32312d3231203d3e2036383439.roa
Signing time: Tue 20 Feb 2024 14:36:50 +0000
ROA not before: Tue 20 Feb 2024 14:31:50 +0000
ROA not after: Tue 18 Feb 2025 14:36:50 +0000
asID: 6849
IP address blocks: 37.52.40.0/21 maxlen: 21
Validation: Failed, certificate revoked on Fri 23 Feb 2024 09:39:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:f7:2c:f7:9a:4f:a7:28:48:53:88:20:d7:2f:b6:c9:70:e4:da:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 20 14:31:50 2024 GMT
Not After : Feb 18 14:36:50 2025 GMT
Subject: CN=0D02AD02379150333E76BFE6110860C079409EE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:71:2b:d8:4f:c9:91:69:59:f1:27:ae:d7:af:
18:ff:8e:cb:59:26:8f:6f:ba:00:06:de:8d:38:13:
14:e4:2e:65:d5:53:6e:e9:3b:76:4a:70:e5:d6:37:
fd:9c:fd:fd:47:03:8d:49:6d:81:50:3f:8f:2a:8c:
8e:25:c7:ed:e5:39:c3:9f:d9:17:82:3b:32:2f:8d:
d4:03:00:41:f0:ab:22:2c:f5:3d:b5:8e:6e:f8:24:
ca:95:bb:45:ba:f1:2c:6a:95:2a:74:b5:d3:d3:51:
57:49:4d:ff:cd:f8:1c:34:d8:ab:a4:d7:c0:87:aa:
e2:da:5b:08:b2:8b:26:fe:5f:f5:ab:d1:c1:b5:42:
4c:57:74:9e:f6:52:72:5c:d0:40:57:90:da:7b:9c:
e3:30:a8:b5:fe:bf:4f:c2:db:38:27:54:20:ad:59:
e5:13:fd:76:cf:c4:7a:b5:6b:de:9a:e0:38:5e:27:
ea:8b:a8:a1:4c:d8:93:7c:c6:3f:92:2f:53:50:15:
31:11:f3:9d:8c:f9:0d:18:0f:e0:75:7f:a6:1c:12:
a9:48:40:51:a5:7b:6c:be:a7:a3:b1:5f:de:14:62:
68:9c:f5:aa:ac:64:5e:8e:5e:5d:7f:56:83:a2:51:
c0:bd:45:b9:28:38:d4:ae:26:93:aa:90:44:a3:5b:
69:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:02:AD:02:37:91:50:33:3E:76:BF:E6:11:08:60:C0:79:40:9E:E3
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/33372e35322e34302e302f32312d3231203d3e2036383439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.52.40.0/21
Signature Algorithm: sha256WithRSAEncryption
4e:5e:c7:e4:e9:eb:d7:73:cf:db:bf:cd:36:cf:27:88:3b:19:
a7:1b:24:6b:a9:1c:fd:30:bd:83:8c:b4:c3:9d:32:a2:f5:fd:
68:86:dc:dc:22:25:1d:24:27:13:1f:93:6a:d9:22:32:eb:38:
4c:0d:53:77:30:ab:43:d8:48:c9:01:f6:44:9b:e7:37:7a:ec:
d3:32:81:f9:03:73:83:6d:ce:82:4f:be:3b:48:83:26:8d:6d:
ea:e9:bb:83:b0:c6:24:82:cc:ab:86:06:10:90:9f:d5:3e:14:
b1:f9:4d:05:8f:34:a8:c6:38:51:b1:13:ca:46:3a:cc:c6:27:
bc:78:e7:ca:1f:f4:a5:99:c9:da:4a:7c:00:e5:03:43:5e:42:
eb:e0:c6:e7:d4:96:dd:c0:11:51:d1:27:e1:1d:c8:e2:b8:aa:
b9:2b:04:ed:df:c8:3d:ed:7d:87:94:2b:d0:2a:1f:2f:20:97:
27:39:9d:60:0c:07:57:21:b0:00:88:b2:14:b8:48:a4:9e:a3:
f8:8e:7b:80:39:12:5d:f0:4b:0f:25:ca:3a:e3:72:11:06:1d:
83:91:81:75:7e:92:d5:74:7c:87:2d:8f:48:18:dd:c0:77:0b:
33:d9:a4:e6:a7:36:50:7d:5f:5a:5e:a3:c8:a5:19:c8:49:80:
65:c5:93:fe
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgIUMPcs95pPpyhIU4gg1y+2yXDk2v8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk
NWMxM2I1ZjAeFw0yNDAyMjAxNDMxNTBaFw0yNTAyMTgxNDM2NTBaMDMxMTAvBgNV
BAMTKDBEMDJBRDAyMzc5MTUwMzMzRTc2QkZFNjExMDg2MEMwNzk0MDlFRTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChcSvYT8mRaVnxJ67Xrxj/jstZ
Jo9vugAG3o04ExTkLmXVU27pO3ZKcOXWN/2c/f1HA41JbYFQP48qjI4lx+3lOcOf
2ReCOzIvjdQDAEHwqyIs9T21jm74JMqVu0W68SxqlSp0tdPTUVdJTf/N+Bw02Kuk
18CHquLaWwiyiyb+X/Wr0cG1QkxXdJ72UnJc0EBXkNp7nOMwqLX+v0/C2zgnVCCt
WeUT/XbPxHq1a96a4DheJ+qLqKFM2JN8xj+SL1NQFTER852M+Q0YD+B1f6YcEqlI
QFGle2y+p6OxX94UYmic9aqsZF6OXl1/VoOiUcC9RbkoONSuJpOqkESjW2nRAgMB
AAGjggI3MIICMzAdBgNVHQ4EFgQUDQKtAjeRUDM+dr/mEQhgwHlAnuMwHwYDVR0j
BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm
NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y
Qk8xOC5jZXIwgacGCCsGAQUFBwELBIGaMIGXMIGUBggrBgEFBQcwC4aBh3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUt
NDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThmNmI0LzAvMzMzNzJlMzUzMjJlMzQzMDJl
MzAyZjMyMzEyZDMyMzEyMDNkM2UyMDM2MzgzNDM5LnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDJTQoMA0G
CSqGSIb3DQEBCwUAA4IBAQBOXsfk6evXc8/bv802zyeIOxmnGyRrqRz9ML2DjLTD
nTKi9f1ohtzcIiUdJCcTH5Nq2SIy6zhMDVN3MKtD2EjJAfZEm+c3euzTMoH5A3OD
bc6CT747SIMmjW3q6buDsMYkgsyrhgYQkJ/VPhSx+U0FjzSoxjhRsRPKRjrMxie8
eOfKH/SlmcnaSnwA5QNDXkLr4Mbn1JbdwBFR0SfhHcjiuKq5KwTt38g97X2HlCvQ
Kh8vIJcnOZ1gDAdXIbAAiLIUuEiknqP4jnuAORJd8EsPJco643IRBh2DkYF1fpLV
dHyHLY9IGN3Adwsz2aTmpzZQfV9aXqPIpRnISYBlxZP+
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:18 2024 by rpki-client on console-fra.rpki-client.org