Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e38302e302f32322d3234203d3e203432333636.roa
File: 3135362e36372e38302e302f32322d3234203d3e203432333636.roa (raw, json)
Hash identifier: LSIUJ5OXOduQ/ELXEiK1tiJmEBRakjK1fld2dZYZfa8=
Subject key identifier: F4:7B:FC:F6:B2:8D:A4:24:1A:9D:46:43:17:5B:24:5E:0B:37:C4:07
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 19C4B32FD756617ABC84D99AC6F3CA5C24288BF9
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e38302e302f32322d3234203d3e203432333636.roa
Signing time: Tue 26 Mar 2024 18:03:16 +0000
ROA not before: Tue 26 Mar 2024 17:58:16 +0000
ROA not after: Tue 25 Mar 2025 18:03:16 +0000
asID: 42366
IP address blocks: 156.67.80.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 07:26:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:c4:b3:2f:d7:56:61:7a:bc:84:d9:9a:c6:f3:ca:5c:24:28:8b:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Mar 26 17:58:16 2024 GMT
Not After : Mar 25 18:03:16 2025 GMT
Subject: CN=F47BFCF6B28DA4241A9D4643175B245E0B37C407
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:83:7e:ce:f2:a6:31:e2:33:0b:9d:30:a3:93:
be:68:57:17:aa:39:2b:0e:da:10:a5:f3:13:a8:a7:
a0:d5:16:4f:49:18:4a:14:26:3f:57:62:ff:41:0a:
58:91:00:1f:b6:8b:e6:aa:32:c9:a8:5d:3e:31:86:
ef:e1:d5:50:3c:56:f3:fb:63:71:40:26:1b:03:f5:
9f:8b:03:e6:01:2a:10:eb:81:7b:67:ed:89:9b:c6:
d6:b6:5f:d6:65:26:8a:05:ed:7a:d7:d3:f8:ec:25:
2b:53:6c:4b:a5:78:9a:21:b9:c9:22:b0:c2:12:e1:
45:06:67:48:c3:90:b9:54:8e:b0:a0:3a:b1:1a:35:
af:5a:f9:ea:0a:5e:02:ae:e9:86:05:02:b5:86:da:
b1:cf:c6:dd:1b:80:64:7c:21:1c:9d:26:48:5c:0a:
42:6f:32:f8:5c:b4:cf:80:7b:01:85:37:65:53:75:
2b:e4:0a:db:cc:0b:2a:36:25:d6:cd:e0:1d:bd:c6:
4c:20:11:b4:bd:e7:e3:ba:4c:12:e0:82:be:c5:32:
1e:8c:6e:1a:5c:04:46:99:75:2e:cd:ab:e0:f8:c1:
d3:f4:e7:21:17:9b:cb:6e:34:92:cd:53:fd:7d:d5:
5c:43:3f:11:b8:2b:10:4f:b5:f8:27:53:b5:9f:bc:
3c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:7B:FC:F6:B2:8D:A4:24:1A:9D:46:43:17:5B:24:5E:0B:37:C4:07
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/3135362e36372e38302e302f32322d3234203d3e203432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.67.80.0/22
Signature Algorithm: sha256WithRSAEncryption
45:6c:c9:19:e3:31:cf:97:30:b3:a6:0b:ae:6e:54:57:e7:3c:
4c:db:b8:70:17:33:af:c0:d2:f1:e6:62:ec:a6:11:3c:6f:f0:
60:11:4a:7f:9f:16:67:a0:44:77:0d:e2:bd:5d:c0:d7:b6:d6:
e3:2f:28:d8:68:1a:ed:66:c6:b0:16:16:58:29:5e:8f:cf:83:
13:1e:df:83:d4:be:e0:cd:10:97:c5:43:a0:ca:dd:60:53:6e:
22:f8:e8:c9:0e:d2:a9:f1:fb:ed:a6:9a:57:32:46:1f:08:e6:
ad:a9:51:9b:e9:f0:b2:44:93:d9:af:7d:a5:18:05:c5:4e:a7:
6b:a2:3f:d0:e1:44:e7:60:fc:3b:84:0f:29:3f:49:59:08:24:
ff:c0:7b:4c:dd:c0:a5:11:ac:a7:5d:5a:72:6b:8c:c7:97:58:
3e:6c:b8:f5:53:61:49:bd:e9:59:2c:dc:fa:2e:3d:87:84:69:
c7:c3:6c:aa:62:5f:50:52:6d:a0:41:5b:13:10:bb:47:01:8e:
7a:a8:c0:80:1d:4f:fb:59:37:84:45:7c:73:96:9f:41:50:75:
b7:81:6a:ad:b8:2c:4b:9c:89:f8:d3:2e:e5:f1:f2:56:62:29:
8d:1c:e0:a8:c7:b6:b4:3d:4f:05:0a:00:dd:17:01:ad:9f:ad:
32:c8:c1:43
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUGcSzL9dWYXq8hNmaxvPKXCQoi/kwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0
ZWE3Nzc5YzAeFw0yNDAzMjYxNzU4MTZaFw0yNTAzMjUxODAzMTZaMDMxMTAvBgNV
BAMTKEY0N0JGQ0Y2QjI4REE0MjQxQTlENDY0MzE3NUIyNDVFMEIzN0M0MDcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGg37O8qYx4jMLnTCjk75oVxeq
OSsO2hCl8xOop6DVFk9JGEoUJj9XYv9BCliRAB+2i+aqMsmoXT4xhu/h1VA8VvP7
Y3FAJhsD9Z+LA+YBKhDrgXtn7Ymbxta2X9ZlJooF7XrX0/jsJStTbEuleJohucki
sMIS4UUGZ0jDkLlUjrCgOrEaNa9a+eoKXgKu6YYFArWG2rHPxt0bgGR8IRydJkhc
CkJvMvhctM+AewGFN2VTdSvkCtvMCyo2JdbN4B29xkwgEbS95+O6TBLggr7FMh6M
bhpcBEaZdS7Nq+D4wdP05yEXm8tuNJLNU/191VxDPxG4KxBPtfgnU7WfvDzTAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQU9Hv89rKNpCQanUZDF1skXgs3xAcwHwYDVR0j
BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5
OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2
bmQ1dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt
NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzEzNTM2MmUzNjM3MmUzODMw
MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzQzMjMzMzYzNi5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEApxD
UDANBgkqhkiG9w0BAQsFAAOCAQEARWzJGeMxz5cws6YLrm5UV+c8TNu4cBczr8DS
8eZi7KYRPG/wYBFKf58WZ6BEdw3ivV3A17bW4y8o2Gga7WbGsBYWWClej8+DEx7f
g9S+4M0Ql8VDoMrdYFNuIvjoyQ7SqfH77aaaVzJGHwjmralRm+nwskST2a99pRgF
xU6na6I/0OFE52D8O4QPKT9JWQgk/8B7TN3ApRGsp11acmuMx5dYPmy49VNhSb3p
WSzc+i49h4Rpx8NsqmJfUFJtoEFbExC7RwGOeqjAgB1P+1k3hEV8c5afQVB1t4Fq
rbgsS5yJ+NMu5fHyVmIpjRzgqMe2tD1PBQoA3RcBrZ+tMsjBQw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:23 2024 by rpki-client on console-fra.rpki-client.org