Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e32382e302f32322d3234203d3e20383334.roa
File: 3134362e3130332e32382e302f32322d3234203d3e20383334.roa (raw, json)
Hash identifier: FmQ03trDVdED1GMFxjcrrKH1sauABDeTyGukfzxuDME=
Subject key identifier: A1:AD:60:48:26:A2:6D:82:1C:0A:05:77:AC:AD:DD:1C:7C:32:7A:CF
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 1E5A032ADC6BB2AFE723F531C74096BD0E4EC3C4
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e32382e302f32322d3234203d3e20383334.roa
Signing time: Tue 26 Mar 2024 10:16:02 +0000
ROA not before: Tue 26 Mar 2024 10:11:02 +0000
ROA not after: Tue 25 Mar 2025 10:16:02 +0000
asID: 834
IP address blocks: 146.103.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 12:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:5a:03:2a:dc:6b:b2:af:e7:23:f5:31:c7:40:96:bd:0e:4e:c3:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 26 10:11:02 2024 GMT
Not After : Mar 25 10:16:02 2025 GMT
Subject: CN=A1AD604826A26D821C0A0577ACADDD1C7C327ACF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fa:c6:0c:59:a6:93:15:b4:a1:b1:29:79:34:
76:a6:fc:2c:8e:89:84:9a:5b:db:ab:ee:b4:c1:7f:
3d:33:62:d0:f7:a9:20:90:6b:53:b9:99:d6:33:10:
24:a5:95:df:89:28:0c:7e:d6:18:76:6e:51:5e:9f:
01:35:82:1c:70:5a:42:92:7d:a3:c7:14:33:09:09:
96:fc:00:00:26:a5:51:9a:7b:a3:cc:a4:4b:d8:6d:
62:cf:7b:99:49:27:0c:f5:db:ba:5e:36:a6:08:61:
cd:ca:7a:60:da:d5:d1:70:e3:dd:f7:8a:55:57:58:
01:f9:ea:6c:b0:f9:ce:03:56:c0:ff:7f:04:d8:59:
b9:2f:79:27:5d:ec:e8:69:ed:68:8d:7b:ee:ce:31:
99:ff:69:c4:90:5d:7e:41:b6:2c:22:31:5f:d2:46:
13:44:fe:99:56:5c:42:3d:bc:6f:d7:9b:81:ea:95:
f6:5d:2b:36:30:7f:38:ae:6e:ff:38:ae:ea:87:e8:
9a:fa:c1:a5:70:96:1a:63:66:b1:b4:ce:7b:6f:ee:
61:e7:36:fd:9e:15:1f:8c:1f:f4:dd:57:31:08:eb:
96:b1:c0:21:75:8a:a4:45:bc:a3:22:a7:42:62:74:
ce:b5:6c:d4:07:82:d2:fd:b9:ea:f5:f9:04:68:e9:
fe:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:AD:60:48:26:A2:6D:82:1C:0A:05:77:AC:AD:DD:1C:7C:32:7A:CF
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134362e3130332e32382e302f32322d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.103.28.0/22
Signature Algorithm: sha256WithRSAEncryption
01:78:6a:bc:4b:c6:0c:b4:4a:f6:14:d7:19:ab:4b:c8:ef:65:
49:21:c4:e5:5c:5c:8a:b7:c1:57:fb:25:de:96:48:3d:98:21:
ea:55:99:0c:fb:60:29:8b:4e:98:b8:4d:d0:36:75:84:63:53:
5a:69:e3:d2:a4:e3:a1:69:c8:70:15:ed:90:99:83:84:fd:0c:
4c:81:81:cc:ca:31:de:09:c3:12:36:51:4d:aa:72:1a:ce:62:
8c:7e:6d:34:83:76:d5:53:39:bd:73:3e:7c:46:19:e0:56:98:
08:eb:b5:b0:9a:5f:30:65:01:22:02:48:70:fa:28:34:7c:54:
72:c4:7e:a6:8a:74:8d:18:10:71:0c:ed:73:de:df:ef:22:e3:
7e:60:d9:ee:5b:f1:a2:68:ba:52:e3:9a:86:f0:e3:d0:f8:4c:
f0:96:c2:60:5b:ec:d5:e6:20:c0:82:7d:b4:a4:61:f2:c3:da:
a0:b7:fd:3b:41:de:64:7b:1f:37:14:15:a5:a8:65:1f:dc:16:
ab:6c:92:25:30:49:18:53:10:14:77:44:83:cb:6c:db:f8:db:
47:ee:e6:8b:65:88:de:2a:de:5b:ac:63:d1:11:c1:f8:d9:66:
bd:65:36:7e:f5:df:31:2a:d8:72:8d:32:60:b5:61:01:3e:42:
f0:14:4f:35
-----BEGIN CERTIFICATE-----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Generated at Tue Mar 26 17:48:07 2024 by rpki-client on console.sobornost.net