Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e35362e302f32332d3234203d3e20383334.roa
File: 3134372e37392e35362e302f32332d3234203d3e20383334.roa (raw, json)
Hash identifier: ti3cJYqrM7uA1C3hojpQFPHKaQrwIubMVhK20BggKCM=
Subject key identifier: 32:AB:6F:1A:F4:F3:68:B3:7F:6E:5D:87:23:75:C9:0F:41:2A:C1:35
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 4145C690FE2361B422B2BE8049A7CAB0063FCE50
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e35362e302f32332d3234203d3e20383334.roa
Signing time: Fri 05 Apr 2024 18:17:35 +0000
ROA not before: Fri 05 Apr 2024 18:12:35 +0000
ROA not after: Fri 04 Apr 2025 18:17:35 +0000
asID: 834
IP address blocks: 147.79.56.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 Apr 2024 11:09:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:45:c6:90:fe:23:61:b4:22:b2:be:80:49:a7:ca:b0:06:3f:ce:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Apr 5 18:12:35 2024 GMT
Not After : Apr 4 18:17:35 2025 GMT
Subject: CN=32AB6F1AF4F368B37F6E5D872375C90F412AC135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:41:0f:0e:97:4e:af:6e:bb:b4:56:f8:16:97:
1f:e7:34:69:c4:c6:2f:5b:81:0a:d3:aa:36:d2:1d:
f7:b1:3e:ca:a6:69:6b:e7:53:f4:48:86:66:f1:e9:
a3:04:0a:1f:f9:a5:8b:a4:61:9c:21:74:12:de:88:
f8:04:7b:f8:d2:cf:18:11:84:ac:c7:70:08:f5:22:
89:58:55:9a:ec:06:57:46:e1:81:56:ff:5f:34:9b:
00:22:b1:79:20:fb:79:76:5f:5e:54:32:10:3f:d4:
f3:fe:73:f4:f7:68:ca:8a:d5:18:f0:b5:50:34:c9:
08:42:6d:17:21:f3:c9:b4:52:c5:25:ee:eb:ba:b0:
ee:a1:06:fe:32:a7:9d:0a:6d:68:a4:51:4e:4c:9f:
a7:1e:72:f7:53:9d:3e:c7:18:b4:71:c6:0d:3b:dc:
44:fc:4f:3c:09:0e:ef:79:5f:5e:7c:00:b6:4b:11:
fc:4e:ac:6a:e5:f3:80:69:31:8d:98:e0:d9:9e:97:
81:77:12:a1:04:d9:b3:52:4a:fe:7c:eb:c0:b8:5f:
9f:af:a9:fb:e1:0a:0f:47:ae:f2:1b:fb:68:26:77:
f2:ad:4a:13:b1:23:6c:63:63:66:d8:db:13:f6:ba:
4d:c6:a1:89:90:71:e3:bd:af:58:d1:6f:bf:34:bf:
15:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:AB:6F:1A:F4:F3:68:B3:7F:6E:5D:87:23:75:C9:0F:41:2A:C1:35
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e35362e302f32332d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.79.56.0/23
Signature Algorithm: sha256WithRSAEncryption
62:69:f0:47:5f:b9:1e:36:55:55:a3:02:0e:fe:1c:df:bd:87:
01:2b:52:51:2c:d5:b2:5a:3a:41:ce:23:a4:f7:04:94:8d:f1:
7b:a2:7c:e4:87:92:e3:99:33:70:58:5e:52:de:5c:3c:ea:b0:
5b:47:d4:ba:85:ae:55:a3:9d:73:f2:a4:93:02:9a:3c:39:e4:
26:d9:ea:0b:b3:14:58:52:f2:26:e2:1c:4b:e3:39:3d:7c:f6:
6e:06:d5:a2:bf:35:fb:a2:ad:44:18:e4:e6:41:1d:38:05:62:
84:42:bd:2b:0f:47:b6:0b:78:e9:fc:b4:2c:95:57:f7:4f:e8:
f2:02:06:5b:bd:b8:9a:7f:47:79:e2:9d:38:a9:c7:38:bc:96:
90:68:2d:39:55:f7:65:e2:4b:a7:0e:85:ae:d9:e0:1c:ac:e6:
87:db:04:88:7a:cf:74:56:7b:55:60:02:b2:08:62:79:8d:3e:
8c:6a:90:55:1a:7f:05:55:6c:d9:94:be:90:e7:b7:01:36:d7:
11:29:7e:34:c6:1e:32:35:72:46:32:25:2b:0b:c1:65:03:31:
2f:44:30:86:6e:bd:42:9f:c3:cc:c0:a4:88:e7:54:51:91:6d:
90:db:ac:81:b7:b6:c8:d2:94:4c:76:1e:64:00:d7:0f:5e:6e:
2c:72:17:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 6 11:51:07 2024 by rpki-client on console-ams.rpki-client.org