Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e36342e302f32302d3234203d3e203134363138.roa
File: 3134372e37392e36342e302f32302d3234203d3e203134363138.roa (raw, json)
Hash identifier: PpQS9BqdwXK5gwsLadyUuX83YotVQ8pnrvTy8ilops8=
Subject key identifier: BD:CA:82:BB:DF:B1:6E:46:D7:37:9E:25:A3:32:68:91:9E:46:C0:23
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 2EEA8553A81630995F98878DAF9862EE030E99D9
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e36342e302f32302d3234203d3e203134363138.roa
Signing time: Sun 31 Mar 2024 16:43:57 +0000
ROA not before: Sun 31 Mar 2024 16:38:57 +0000
ROA not after: Sun 30 Mar 2025 16:43:57 +0000
asID: 14618
IP address blocks: 147.79.64.0/20 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 Apr 2024 11:09:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:ea:85:53:a8:16:30:99:5f:98:87:8d:af:98:62:ee:03:0e:99:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 31 16:38:57 2024 GMT
Not After : Mar 30 16:43:57 2025 GMT
Subject: CN=BDCA82BBDFB16E46D7379E25A33268919E46C023
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3c:62:53:92:57:7e:f4:e5:20:b9:0e:3e:8b:
46:e2:55:bd:39:54:c8:28:52:09:95:9b:3e:2c:b2:
9b:e8:ca:11:bc:3e:2d:30:3c:fe:5d:4f:f1:f9:3e:
c0:03:b4:f1:52:ad:fb:bf:9d:f1:47:5e:d5:d4:a9:
e5:7e:9d:60:1e:9d:26:28:ab:1a:a5:c7:24:1e:40:
84:cb:5a:2a:64:4b:ba:45:1e:e9:d7:21:cb:65:85:
22:ab:f6:1f:20:9d:14:1a:35:a5:40:eb:6a:95:d3:
47:83:e8:4e:f0:1b:6e:6c:75:5d:8e:87:d5:ca:13:
30:e3:7a:9a:eb:04:28:fd:4e:b3:4b:91:b3:3c:53:
d8:da:bc:74:e9:5d:e0:65:81:d6:df:87:54:0e:4f:
0d:fc:99:7d:e6:e4:5c:65:0f:60:0a:61:96:dd:82:
48:49:ec:bb:61:df:f0:48:4b:6d:25:f2:42:59:1c:
62:d5:4d:dc:48:2e:a9:60:c6:3d:03:d3:5d:3e:f9:
08:a4:79:6a:98:a0:1a:b7:86:2a:d1:ee:b3:e3:7c:
0d:21:2b:1a:87:7d:a1:63:d7:16:8a:d6:90:4a:2c:
09:43:41:82:f5:7f:6d:e6:43:ac:64:18:e3:38:cd:
cf:29:85:c5:7a:61:3e:69:04:d5:d9:46:25:74:d8:
a3:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:CA:82:BB:DF:B1:6E:46:D7:37:9E:25:A3:32:68:91:9E:46:C0:23
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e36342e302f32302d3234203d3e203134363138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.79.64.0/20
Signature Algorithm: sha256WithRSAEncryption
6e:6d:e8:4d:e8:09:c8:99:ae:e9:b4:65:a1:a3:c9:5a:30:cc:
c4:2f:22:46:16:ef:ed:b8:4b:51:0d:07:52:22:24:ed:08:25:
c1:9c:1c:08:cb:87:eb:bb:6e:ad:89:a7:fb:b3:22:50:24:ae:
70:e9:e6:56:49:dd:b1:ee:57:88:ef:fb:de:1e:21:27:9b:80:
a9:f0:47:d8:5c:5a:6d:77:75:3d:f2:ae:61:69:8f:b4:73:e0:
6c:b6:b7:a5:e9:f4:f2:88:53:76:c4:60:37:f1:e1:c1:51:72:
48:1f:16:9a:f2:8c:08:5e:a5:be:9b:8c:63:39:12:b5:f4:83:
81:63:66:74:74:8d:ca:dd:b0:d2:0e:3e:6e:54:92:3e:36:86:
72:a3:6b:56:0e:7b:f1:ba:3a:c3:2d:f4:6b:8c:8b:3c:46:ed:
08:b4:70:5d:9d:1d:9f:fd:72:4e:05:2c:74:1a:f2:8d:5a:e1:
9e:57:da:d1:27:7b:fc:8b:ce:25:01:a3:3d:85:9d:ee:49:87:
bf:5f:eb:49:79:b2:45:89:22:74:86:31:fe:90:01:fa:c4:f9:
91:d8:0e:e6:3c:7b:55:36:ff:29:35:95:b0:bd:7f:09:1c:90:
65:88:5b:dd:c6:99:80:5b:a0:ba:4e:8a:aa:95:f7:6d:1f:6d:
61:7b:1e:f9
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIULuqFU6gWMJlfmIeNr5hi7gMOmdkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi
MjQ2YmZjYzAeFw0yNDAzMzExNjM4NTdaFw0yNTAzMzAxNjQzNTdaMDMxMTAvBgNV
BAMTKEJEQ0E4MkJCREZCMTZFNDZENzM3OUUyNUEzMzI2ODkxOUU0NkMwMjMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoPGJTkld+9OUguQ4+i0biVb05
VMgoUgmVmz4sspvoyhG8Pi0wPP5dT/H5PsADtPFSrfu/nfFHXtXUqeV+nWAenSYo
qxqlxyQeQITLWipkS7pFHunXIctlhSKr9h8gnRQaNaVA62qV00eD6E7wG25sdV2O
h9XKEzDjeprrBCj9TrNLkbM8U9javHTpXeBlgdbfh1QOTw38mX3m5FxlD2AKYZbd
gkhJ7Lth3/BIS20l8kJZHGLVTdxILqlgxj0D010++QikeWqYoBq3hirR7rPjfA0h
KxqHfaFj1xaK1pBKLAlDQYL1f23mQ6xkGOM4zc8phcV6YT5pBNXZRiV02KOxAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUvcqCu9+xbkbXN54lozJokZ5GwCMwHwYDVR0j
BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy
NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK
R3Y4dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMDliZTNhYWUt
YWVhMS00MWRjLWIxYjktOTVhYzU5MTgyNDRkLzAvMzEzNDM3MmUzNzM5MmUzNjM0
MmUzMDJmMzIzMDJkMzIzNDIwM2QzZTIwMzEzNDM2MzEzOC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBJNP
QDANBgkqhkiG9w0BAQsFAAOCAQEAbm3oTegJyJmu6bRloaPJWjDMxC8iRhbv7bhL
UQ0HUiIk7QglwZwcCMuH67turYmn+7MiUCSucOnmVkndse5XiO/73h4hJ5uAqfBH
2FxabXd1PfKuYWmPtHPgbLa3pen08ohTdsRgN/HhwVFySB8WmvKMCF6lvpuMYzkS
tfSDgWNmdHSNyt2w0g4+blSSPjaGcqNrVg578bo6wy30a4yLPEbtCLRwXZ0dn/1y
TgUsdBryjVrhnlfa0Sd7/IvOJQGjPYWd7kmHv1/rSXmyRYkidIYx/pAB+sT5kdgO
5jx7VTb/KTWVsL1/CRyQZYhb3caZgFuguk6KqpX3bR9tYXse+Q==
-----END CERTIFICATE-----
Generated at Sat Apr 6 12:13:37 2024 by rpki-client on console-fra.rpki-client.org