Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e33362e302f32322d3234203d3e20383334.roa
File: 3134372e37392e33362e302f32322d3234203d3e20383334.roa (raw, json)
Hash identifier: +XGyl/VrIAJDwfc/ydjjjznBPoC2e7K4buR9jTff7BM=
Subject key identifier: B6:1B:CF:0F:F2:E5:2F:1E:8C:20:13:0F:D7:34:04:53:3F:96:C5:91
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 5C939D7A0C4BC5C9FEDC5D8DA8F79B1A39BBDA71
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e33362e302f32322d3234203d3e20383334.roa
Signing time: Tue 05 Mar 2024 10:22:13 +0000
ROA not before: Tue 05 Mar 2024 10:17:13 +0000
ROA not after: Tue 04 Mar 2025 10:22:13 +0000
asID: 834
IP address blocks: 147.79.36.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 23 Mar 2024 14:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:93:9d:7a:0c:4b:c5:c9:fe:dc:5d:8d:a8:f7:9b:1a:39:bb:da:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 5 10:17:13 2024 GMT
Not After : Mar 4 10:22:13 2025 GMT
Subject: CN=B61BCF0FF2E52F1E8C20130FD73404533F96C591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:74:b4:15:cd:01:27:1f:04:67:59:6b:35:ec:
7d:f4:bb:88:f6:1d:22:70:8b:b7:33:fc:04:9b:78:
bc:7e:5c:51:70:70:4f:11:7e:f5:e1:a4:99:31:b9:
5b:fd:77:52:92:ae:9e:fd:42:ae:3c:d1:66:35:ac:
07:a9:ac:e3:00:d1:d6:37:9d:3f:b0:df:98:b6:36:
ee:e1:42:9f:2a:d9:31:ad:23:35:e3:ae:5e:17:c2:
84:7d:79:a0:b7:0c:ee:d9:a0:ea:1c:3b:31:c1:28:
e9:19:8f:34:b7:48:47:b8:26:18:bb:58:1c:53:71:
3d:05:e8:fe:57:f3:48:c8:1b:79:fa:83:21:ad:19:
c4:7b:02:aa:1b:7d:58:d3:7f:d6:5b:9b:3a:5e:d6:
58:c0:48:69:c4:c1:ac:75:02:8a:e2:1f:c0:82:bd:
96:66:70:b4:86:e9:5f:c0:62:53:cb:ab:53:9b:db:
45:d3:84:79:80:76:0d:87:bb:d8:94:86:23:c1:67:
64:57:8a:58:6e:22:01:9d:24:f2:38:c9:39:96:89:
f8:3b:25:6b:d0:f8:a4:2a:9d:b5:b9:c0:77:fc:eb:
f4:20:15:cc:8a:e6:8c:f8:3d:0c:a0:c8:6d:2e:7b:
da:2d:99:1c:c4:df:d8:11:6d:1d:1b:45:6b:a7:c7:
a8:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:1B:CF:0F:F2:E5:2F:1E:8C:20:13:0F:D7:34:04:53:3F:96:C5:91
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e33362e302f32322d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.79.36.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:5b:f4:26:10:87:35:c4:42:82:07:e7:fd:79:28:17:8f:db:
04:a1:67:7a:7e:67:35:6b:ae:aa:cb:55:5c:b3:cf:c4:97:8c:
7c:0b:bc:09:fc:34:d7:2f:91:60:ef:51:99:f4:c1:a2:0d:d6:
fb:44:3e:28:f3:c3:fb:12:2c:6e:7e:d5:6d:f7:b3:57:d7:38:
2c:6e:74:50:cd:cb:58:5e:1c:90:ff:0f:b6:0b:85:de:6b:d3:
13:e9:92:8a:01:dd:c8:cf:0b:cd:96:fc:fa:f7:63:f6:ce:d9:
c5:15:76:8d:fd:87:9d:e8:ba:0f:bb:69:17:b9:d0:ec:66:8c:
bf:1c:36:3c:4f:f7:d2:67:06:ed:85:96:64:48:2a:5a:02:fc:
26:fa:f5:ad:8f:32:b9:83:7a:04:8d:54:42:a9:0b:70:6d:f9:
ff:29:0d:46:49:cf:fd:26:a4:bd:60:9b:5a:c9:5f:19:77:51:
d0:f4:4a:23:10:7d:98:df:46:a4:fa:a5:89:04:30:1c:c5:82:
51:e4:af:d1:99:7d:93:b9:c1:1f:d3:72:64:71:10:b3:51:8e:
6f:da:e9:cf:85:b6:8b:68:83:53:c9:ab:51:92:bb:b5:06:6b:
af:a4:82:7b:f4:42:c4:ec:9f:8d:5b:ae:01:0e:88:1f:4e:18:
7e:16:9c:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:54 2024 by rpki-client on console-ams.rpki-client.org