Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e302e302f32302d3234203d3e20383334.roa
File: 3134372e37392e302e302f32302d3234203d3e20383334.roa (raw, json)
Hash identifier: o47cqIRB/f/CpJ5be1iHq5YTuwVSPkevp6gKk3eCXbI=
Subject key identifier: 1E:D8:79:BF:38:07:36:76:A7:92:4B:BF:EA:BD:1F:56:6F:BF:69:5D
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 5901D89DF959B231661EB4DF98416DC358A1E9BD
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e302e302f32302d3234203d3e20383334.roa
Signing time: Sat 23 Mar 2024 00:03:02 +0000
ROA not before: Fri 22 Mar 2024 23:58:02 +0000
ROA not after: Sat 22 Mar 2025 00:03:02 +0000
asID: 834
IP address blocks: 147.79.0.0/20 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Apr 2024 11:01:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:01:d8:9d:f9:59:b2:31:66:1e:b4:df:98:41:6d:c3:58:a1:e9:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 22 23:58:02 2024 GMT
Not After : Mar 22 00:03:02 2025 GMT
Subject: CN=1ED879BF38073676A7924BBFEABD1F566FBF695D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c2:79:82:7b:61:25:67:1b:90:8c:30:a8:c5:
29:c6:eb:e4:0d:c8:94:a6:04:cc:0b:94:64:b0:b0:
ff:58:57:29:03:61:46:8e:90:16:1e:45:69:70:49:
f4:af:cc:53:ba:d8:83:f0:c2:b3:4f:2e:73:27:a0:
e5:47:fa:da:bb:16:4b:00:47:8d:45:e4:d1:62:86:
33:bc:ae:28:cf:22:35:e4:31:93:c9:15:5a:27:77:
b2:be:69:fa:c3:c7:0a:b5:20:4c:96:3a:ed:1e:00:
cd:70:e6:2a:02:78:9c:5f:d7:8e:7c:37:76:9a:ae:
c2:4b:39:be:bd:30:2a:14:98:59:80:68:8c:6d:fb:
ba:5a:e9:5a:23:57:ad:98:68:43:88:85:ce:5b:eb:
d6:47:b0:6a:f1:5e:d8:d4:6c:9b:0f:90:0a:ef:c0:
8d:3d:1d:1c:a8:31:30:1f:f6:03:69:6a:2c:2a:aa:
54:6a:be:03:18:02:b1:46:c6:57:cf:96:f5:c3:89:
8a:a9:b6:38:01:b6:b8:99:b9:f2:d6:f1:aa:e7:01:
d6:b2:01:62:d9:b5:92:ff:e8:ff:09:13:29:b0:80:
27:67:b7:d3:7d:95:77:ba:44:b6:dc:80:65:9d:40:
7b:ee:df:9c:49:a7:70:2e:24:9c:a5:02:fd:07:d4:
c2:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:D8:79:BF:38:07:36:76:A7:92:4B:BF:EA:BD:1F:56:6F:BF:69:5D
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e302e302f32302d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.79.0.0/20
Signature Algorithm: sha256WithRSAEncryption
90:b0:e2:c2:83:ec:86:04:f0:b9:39:68:30:9b:68:1f:47:40:
3d:3d:a1:5b:c7:65:d8:94:4c:71:53:14:fa:07:91:2e:eb:15:
2e:c2:40:1c:5f:12:1c:bd:a5:99:76:f8:e9:79:4a:21:91:f9:
1a:3d:16:fd:f6:5b:f0:05:5d:34:d4:7b:69:26:07:09:c5:dd:
a4:14:75:e8:8f:78:cf:25:86:a8:20:98:8f:36:74:ae:63:09:
b9:e4:1d:c2:2f:3d:c6:08:35:c1:f7:04:99:57:1e:d2:f1:7f:
16:88:f9:f8:fe:0d:40:d6:cc:4a:de:7b:5b:fa:1d:99:f4:ee:
b1:01:f2:10:fa:c8:65:dd:86:f6:0a:6e:7b:08:63:7e:da:3f:
bd:34:cc:8e:c5:25:94:ee:04:33:18:cc:17:73:42:c1:74:92:
19:6f:39:6e:25:0b:ac:07:9e:a1:26:24:54:3f:5e:04:43:3b:
6d:16:f9:c3:57:9b:89:fe:ad:df:73:9d:cb:03:cd:f2:8a:30:
af:a7:ce:14:21:1d:c2:29:84:71:d2:53:14:cf:c3:fa:ed:1a:
81:07:02:7f:8e:41:0b:69:c0:80:b5:17:7c:69:9e:58:bb:e7:
d4:cf:d9:fc:23:f2:4e:c4:79:87:48:df:e9:a5:9e:23:42:65:
d2:cb:db:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 5 15:45:33 2024 by rpki-client on console-fra.rpki-client.org