Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e33322e302f32302d3234203d3e20383334.roa
File: 3134372e37392e33322e302f32302d3234203d3e20383334.roa (raw, json)
Hash identifier: 0l+s+pRH/YzkGPVMrAbjKT7dif0D5MhtxSE9fIjjbRA=
Subject key identifier: F4:D5:E1:27:27:48:97:D7:8D:31:2C:E3:02:FA:1F:C3:61:91:63:F3
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 0A151CAC7F04F44210FCEAC3DCCCD8F1C64B63D8
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e33322e302f32302d3234203d3e20383334.roa
Signing time: Sat 23 Mar 2024 14:00:06 +0000
ROA not before: Sat 23 Mar 2024 13:55:06 +0000
ROA not after: Sat 22 Mar 2025 14:00:06 +0000
asID: 834
IP address blocks: 147.79.32.0/20 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Apr 2024 01:46:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:15:1c:ac:7f:04:f4:42:10:fc:ea:c3:dc:cc:d8:f1:c6:4b:63:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 23 13:55:06 2024 GMT
Not After : Mar 22 14:00:06 2025 GMT
Subject: CN=F4D5E127274897D78D312CE302FA1FC3619163F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:db:f2:db:01:52:cb:9d:23:c5:b0:c0:66:50:
ac:a3:50:9e:7e:f6:e0:d3:52:82:c6:a3:cc:ff:7f:
fd:16:1f:19:f0:7a:6a:6e:87:90:0b:6a:ed:1d:8b:
d2:70:bd:0e:a1:29:47:84:be:30:9c:b1:f2:16:30:
5e:f9:30:0f:fc:50:f5:d1:08:b9:6c:9a:72:b8:e3:
15:b5:f9:12:91:82:76:a7:73:72:a9:3e:78:a8:db:
78:b4:a5:ca:5f:57:f2:b0:0b:46:7b:ba:23:6e:85:
6c:75:e3:89:9d:1b:a3:fe:a2:7d:4a:b8:a9:87:dd:
40:e8:91:7c:38:b1:0b:e0:fe:df:9e:92:36:0e:0d:
97:ac:35:c8:62:88:ad:3c:29:e2:18:95:91:b0:60:
03:e5:8c:ec:7e:21:81:86:cb:d4:b3:f2:2d:5c:49:
cb:5e:a9:52:ca:9b:56:dd:2e:ef:e3:95:3c:71:8c:
27:c1:c1:90:28:f1:61:db:97:20:a9:23:d7:ee:b1:
1e:7f:f1:bc:de:9a:3e:d3:5a:68:e1:c4:31:ca:62:
c9:13:6b:19:ca:6f:cd:6e:60:db:c2:83:72:2c:74:
16:f1:91:6b:cf:f3:e7:8d:60:89:55:eb:37:35:a2:
02:9d:6e:60:a9:de:4b:df:3a:d3:6c:78:76:5c:25:
a5:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:D5:E1:27:27:48:97:D7:8D:31:2C:E3:02:FA:1F:C3:61:91:63:F3
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e33322e302f32302d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.79.32.0/20
Signature Algorithm: sha256WithRSAEncryption
16:12:6f:15:3b:b6:f8:e4:f6:84:a8:9e:fb:35:bb:37:63:18:
e3:1b:3a:30:47:fa:34:46:b0:c7:34:c9:c9:15:e8:96:4d:da:
10:21:4f:4a:b4:94:17:ae:29:c3:fc:13:75:a0:0e:df:a8:1e:
f5:75:f3:8f:b4:f0:ab:a4:1e:81:5f:ef:3b:45:ff:17:ae:52:
2f:46:67:f9:d9:c9:d4:f8:16:d9:58:ff:20:5e:df:c0:ab:40:
f5:78:da:b8:c0:ab:35:9e:2f:00:80:66:04:91:3b:55:c3:1a:
08:f1:cc:34:39:52:5e:0b:72:8c:a3:39:6f:12:26:35:be:73:
a6:45:87:c7:f9:f7:ba:eb:62:da:b6:38:b0:21:bd:02:36:07:
29:85:07:21:7b:26:df:03:ba:0b:49:2e:37:08:7d:f7:f2:a2:
c6:19:5a:3e:8b:ce:9c:36:d2:ed:82:32:af:32:c1:dd:12:a8:
23:09:9d:4f:d9:2f:1f:27:10:20:51:3e:26:6a:87:d3:7f:75:
cf:1a:b4:5e:5e:1f:a2:92:d6:4b:4a:cb:45:09:23:fd:19:b7:
13:c0:01:a1:19:20:ca:34:c0:4f:20:9f:ee:a8:0a:ff:47:73:
30:10:7c:50:87:51:77:48:bd:f8:c1:32:43:a7:61:05:70:78:
c7:72:30:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:09 2024 by rpki-client on console-fra.rpki-client.org