Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e3131322e302f32302d3230203d3e203134363138.roa
File: 3134372e37392e3131322e302f32302d3230203d3e203134363138.roa (raw, json)
Hash identifier: wD1daiG4M3bU2YHxUMJtXpq/PGujK2m0vOaTbGsjbFE=
Subject key identifier: DC:13:4B:C5:B4:F4:B5:E7:37:AC:85:8B:6F:E8:79:80:64:14:64:F8
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 234317CEECDD4E192FDD2E647DB50643E99665AB
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e3131322e302f32302d3230203d3e203134363138.roa
Signing time: Sat 30 Mar 2024 23:47:39 +0000
ROA not before: Sat 30 Mar 2024 23:42:39 +0000
ROA not after: Sat 29 Mar 2025 23:47:39 +0000
asID: 14618
IP address blocks: 147.79.112.0/20 maxlen: 20
Validation: Failed, certificate revoked on Sat 06 Apr 2024 11:09:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:43:17:ce:ec:dd:4e:19:2f:dd:2e:64:7d:b5:06:43:e9:96:65:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 30 23:42:39 2024 GMT
Not After : Mar 29 23:47:39 2025 GMT
Subject: CN=DC134BC5B4F4B5E737AC858B6FE87980641464F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d2:2d:bd:30:76:8f:5c:63:fa:ad:10:b7:48:
6a:c7:ae:b1:5e:87:22:ad:8e:9c:01:ec:a7:ff:5f:
ae:1c:91:cf:8c:96:7a:73:e9:02:e3:66:48:38:4c:
3a:72:dd:74:b0:d9:4b:1e:22:45:22:fe:e1:1a:a9:
c6:7b:0a:95:da:39:da:c9:99:06:e7:af:a5:02:19:
03:e0:3b:c0:a4:71:af:9b:dd:74:86:7c:4c:d1:e0:
2b:a3:6e:6b:40:f5:fd:0a:ff:c0:11:2b:3f:e2:d1:
aa:dd:45:a9:c8:22:4b:3e:c3:c4:d2:24:9a:72:e2:
d7:66:64:0b:b0:d3:63:66:79:fd:56:0d:7f:ff:5f:
42:b6:9c:4e:cc:1e:c0:f3:18:e3:e7:98:6a:42:14:
34:08:67:11:f6:8e:75:0f:65:e5:7d:31:bb:f7:65:
ac:8c:e9:17:c3:ab:19:8d:17:25:6d:b8:f2:c1:c1:
4f:4d:31:b9:b0:b5:09:cd:45:72:df:5a:b5:38:2b:
a8:1f:c3:ef:b7:a4:85:bb:2a:8f:95:6a:e5:e0:ce:
32:d5:f0:47:cd:a2:14:85:ba:eb:72:9f:46:f1:8c:
63:d6:fa:91:82:b1:4c:34:f5:3c:a5:c3:60:21:dc:
e0:53:69:66:26:8c:aa:43:df:d2:52:6a:14:3f:03:
cb:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:13:4B:C5:B4:F4:B5:E7:37:AC:85:8B:6F:E8:79:80:64:14:64:F8
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e3131322e302f32302d3230203d3e203134363138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.79.112.0/20
Signature Algorithm: sha256WithRSAEncryption
0a:8b:d8:07:52:d5:75:4a:3f:9d:0e:9c:5c:c0:4d:ab:7e:3b:
7c:b5:9f:9a:d4:d4:01:9f:87:eb:96:07:12:9f:ca:6b:e5:2d:
28:f3:34:f9:73:73:5f:0a:05:b0:7b:e4:6b:1b:3f:a4:fe:43:
f3:cb:64:80:ba:3e:b8:5d:3a:09:ba:2b:5c:0d:32:29:bd:df:
49:3f:81:bd:c0:fd:f4:49:6b:be:06:9b:d9:80:ae:f0:af:5f:
93:c6:72:45:f7:80:ec:da:6e:b2:b8:33:45:fc:7a:d9:1a:ed:
e4:4b:a8:3a:09:a2:72:0c:c2:31:b7:f7:82:30:81:5f:ae:28:
ad:77:6e:08:81:74:5d:33:95:e1:dc:fc:e2:6b:15:da:76:bf:
fb:98:28:ad:50:54:00:47:7f:fb:6a:39:88:ad:72:05:c7:79:
db:56:80:12:85:8c:e3:08:a9:c6:98:b2:4e:07:bc:71:0e:bc:
e5:eb:6d:47:45:54:4f:9d:3f:3a:2c:7e:04:89:40:91:af:cf:
70:2b:d8:4d:e9:40:ea:ab:66:d5:a2:12:22:84:81:3d:3d:49:
81:b6:5b:d7:3b:cd:a3:ca:98:46:34:af:8e:e3:16:60:26:44:
fa:8d:56:86:7a:bd:5c:5e:e8:f3:d5:cd:72:5f:f9:2a:76:b6:
b1:af:a5:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:09 2024 by rpki-client on console-fra.rpki-client.org