Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e32382e302f32322d3234203d3e20383334.roa
File: 3134372e37392e32382e302f32322d3234203d3e20383334.roa (raw, json)
Hash identifier: EkSPnfr9Hf1qK894RDtBy4EfEkE316/p4UDBaLZwYDA=
Subject key identifier: F7:67:7D:E8:63:8D:6B:5E:F1:B4:E4:91:76:AF:B9:AF:32:37:E9:F3
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 38B50543A5D2A67CF317A535E1C09435BA12C05A
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e32382e302f32322d3234203d3e20383334.roa
Signing time: Sat 23 Mar 2024 14:00:06 +0000
ROA not before: Sat 23 Mar 2024 13:55:06 +0000
ROA not after: Sat 22 Mar 2025 14:00:06 +0000
asID: 834
IP address blocks: 147.79.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Apr 2024 17:16:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:b5:05:43:a5:d2:a6:7c:f3:17:a5:35:e1:c0:94:35:ba:12:c0:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 23 13:55:06 2024 GMT
Not After : Mar 22 14:00:06 2025 GMT
Subject: CN=F7677DE8638D6B5EF1B4E49176AFB9AF3237E9F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8b:e3:3c:a4:21:05:ac:55:57:21:41:f7:03:
66:bd:bb:b3:f6:00:97:f9:05:86:98:0c:3d:03:cf:
13:ce:ed:4d:ff:d8:dd:c6:16:ef:e0:b0:4a:7e:46:
43:3d:6e:a7:58:f5:e1:f3:42:56:da:67:08:50:55:
b5:fb:f8:98:65:e2:bc:90:8a:3a:f8:0b:c4:bc:2a:
97:83:21:a0:90:04:7e:02:74:0f:de:ff:8b:a7:50:
ad:3f:fd:27:a7:07:8c:2f:36:04:22:7a:85:04:93:
5e:47:c1:b8:d3:8b:8a:0e:31:fe:29:fc:b8:37:ca:
68:fb:b8:23:dd:ee:3c:c3:43:1f:82:67:98:ad:21:
59:91:37:77:70:6d:e6:45:01:ce:07:2a:11:9c:97:
ee:a6:50:a8:b8:bd:98:bf:68:3d:5a:36:c0:0e:6c:
2d:9a:d3:0b:6d:5a:5f:0d:e4:94:3e:e8:00:74:b4:
18:84:b9:3b:a2:c2:68:c3:33:50:bd:24:55:35:9c:
19:1c:07:8b:92:49:98:af:32:2e:3c:96:7c:bb:b4:
8b:4b:46:82:c0:af:23:d0:98:8f:28:94:81:4e:ba:
bc:e6:55:54:31:bb:cd:1c:0f:82:58:d0:4e:fe:89:
2e:fa:eb:e6:64:98:a0:e6:70:74:0e:f9:09:1f:d9:
59:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:67:7D:E8:63:8D:6B:5E:F1:B4:E4:91:76:AF:B9:AF:32:37:E9:F3
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e32382e302f32322d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.79.28.0/22
Signature Algorithm: sha256WithRSAEncryption
74:95:64:70:3d:3a:d6:96:72:e4:b8:f3:20:60:e9:b0:c8:a0:
dc:c8:d7:c2:6b:e4:d5:81:3b:92:47:a4:fe:a8:7f:1a:28:5b:
47:a4:4f:ec:9e:f0:39:af:55:48:f3:a4:11:84:18:66:07:a4:
38:f7:76:d4:6f:89:a1:e5:82:dd:fc:5e:4d:7e:c2:24:2e:38:
99:c2:3c:bf:2d:d9:4c:62:83:11:f5:89:b3:35:1c:b3:b6:7f:
97:40:53:48:63:61:48:77:30:5a:24:62:c6:0a:29:b0:2a:ae:
06:24:00:6a:7c:f8:bd:80:52:f4:8a:67:9f:3b:75:46:7b:be:
d2:6d:b6:b2:b7:28:ab:e2:58:e4:ce:0a:fa:d4:5e:0f:1f:8d:
8e:a4:3b:05:d0:d8:e7:fc:c3:3b:64:9e:a9:de:ad:44:e0:16:
db:9d:33:5f:bb:c7:f7:10:4c:ee:0d:d3:21:cd:75:94:61:2a:
25:4d:aa:00:e0:67:86:6d:1d:77:4f:85:05:49:9d:39:ce:05:
1a:6c:97:e0:62:2c:9b:75:8e:17:fc:92:a9:f4:19:7a:03:be:
d9:ad:48:27:26:01:fa:d0:c3:87:47:d8:b4:92:eb:ef:78:14:
1d:b7:19:e6:e0:96:85:38:71:e4:94:f4:c3:26:29:ef:67:13:
2e:b7:81:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 3 22:21:55 2024 by rpki-client on console-ams.rpki-client.org