Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e382e302f32312d3234203d3e20383334.roa
File: 3134372e37392e382e302f32312d3234203d3e20383334.roa (raw, json)
Hash identifier: 1wYU+QSLyf47XYOYYhMkOn1n3IHyCz7kN2H3vL8va+o=
Subject key identifier: D6:16:D4:9F:6E:3E:1F:40:C1:76:3F:06:74:82:1D:7A:BD:C3:11:75
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 17F47DBA4073A4509FBD2FC4EA33DEE999C146D3
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e382e302f32312d3234203d3e20383334.roa
Signing time: Fri 05 Apr 2024 11:02:38 +0000
ROA not before: Fri 05 Apr 2024 10:57:38 +0000
ROA not after: Fri 04 Apr 2025 11:02:38 +0000
asID: 834
IP address blocks: 147.79.8.0/21 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 Apr 2024 11:09:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:f4:7d:ba:40:73:a4:50:9f:bd:2f:c4:ea:33:de:e9:99:c1:46:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Apr 5 10:57:38 2024 GMT
Not After : Apr 4 11:02:38 2025 GMT
Subject: CN=D616D49F6E3E1F40C1763F0674821D7ABDC31175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:da:40:3f:69:ac:c9:d3:4b:f8:51:01:09:ff:
48:c9:11:2c:f1:e8:62:9e:c4:05:45:9e:1f:c9:8e:
80:1c:83:f6:11:ee:68:35:64:31:af:de:f1:89:c8:
7e:25:2d:dc:1b:87:4f:ef:88:05:b1:29:01:a9:f1:
d9:b1:64:ec:e1:90:35:70:4f:e7:96:40:76:b9:2c:
09:47:12:fa:74:b0:0e:4a:9c:7c:77:5a:9a:2d:19:
5a:9a:fb:fc:68:9c:e4:87:c9:63:aa:7d:14:e6:d1:
6e:a6:9c:61:39:c2:c4:b5:6d:60:c2:09:e9:69:5f:
e6:2b:33:7b:fa:9a:b8:44:a4:75:80:24:76:94:3c:
81:41:6f:23:98:3d:5b:45:99:67:7d:fa:af:14:c2:
11:c7:ec:8c:a9:20:3e:4f:72:1c:92:f1:e4:1f:12:
00:e0:aa:fb:ec:ec:27:e7:c2:69:01:bd:4d:ba:b7:
c8:b1:65:76:ff:de:51:cb:1d:6c:b9:74:9f:f6:90:
de:fd:d8:86:79:ec:e5:cc:60:cd:e0:0a:50:af:b3:
28:a3:67:10:0b:68:3e:8a:d6:9d:62:3b:e6:ae:75:
cc:4a:b9:24:50:86:b4:7b:49:9e:96:28:7f:ee:27:
62:05:4f:d9:5e:8e:e7:f2:89:58:46:e1:fc:32:21:
f5:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:16:D4:9F:6E:3E:1F:40:C1:76:3F:06:74:82:1D:7A:BD:C3:11:75
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e382e302f32312d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.79.8.0/21
Signature Algorithm: sha256WithRSAEncryption
68:b8:04:31:d0:8c:61:8d:b3:9e:1a:b1:f6:91:8f:ed:4c:ce:
80:23:6c:71:55:d0:30:04:69:eb:ef:2a:85:33:58:46:71:f0:
df:ad:43:79:d9:92:f6:13:8c:78:29:74:ef:df:b6:21:ac:15:
50:b7:c5:01:ce:33:90:65:4d:24:db:61:b9:85:89:98:c4:2d:
2f:0b:77:dd:d1:bf:10:73:eb:3d:3c:fc:af:e9:da:81:9a:35:
20:81:3a:90:6d:7d:64:67:4f:53:88:99:fc:b7:95:50:f0:12:
4d:74:bb:de:96:7d:cf:b5:5f:b2:f3:71:b2:07:82:d2:95:30:
55:71:fa:5a:b6:b4:61:a5:02:eb:48:f6:ee:ac:ef:f8:b8:cc:
00:19:a7:20:da:e2:d3:f7:77:02:80:e3:24:f0:72:2d:e8:15:
b7:1d:98:19:67:e5:74:51:81:39:dc:e7:a8:23:5c:07:5d:bd:
23:f1:5d:c1:33:67:bc:31:60:d6:c7:89:f5:15:5d:05:a9:81:
d2:b3:63:c2:5e:3c:36:81:a9:6c:b2:94:65:1d:1a:17:c6:27:
a5:82:f8:11:7b:23:ca:05:65:fd:fc:68:6e:c0:29:6e:0e:26:
2a:2a:25:72:cc:87:ad:c5:49:77:b5:28:60:b3:77:e0:35:63:
d1:2f:34:73
-----BEGIN CERTIFICATE-----
MIIFKzCCBBOgAwIBAgIUF/R9ukBzpFCfvS/E6jPe6ZnBRtMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi
MjQ2YmZjYzAeFw0yNDA0MDUxMDU3MzhaFw0yNTA0MDQxMTAyMzhaMDMxMTAvBgNV
BAMTKEQ2MTZENDlGNkUzRTFGNDBDMTc2M0YwNjc0ODIxRDdBQkRDMzExNzUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCR2kA/aazJ00v4UQEJ/0jJESzx
6GKexAVFnh/JjoAcg/YR7mg1ZDGv3vGJyH4lLdwbh0/viAWxKQGp8dmxZOzhkDVw
T+eWQHa5LAlHEvp0sA5KnHx3WpotGVqa+/xonOSHyWOqfRTm0W6mnGE5wsS1bWDC
CelpX+YrM3v6mrhEpHWAJHaUPIFBbyOYPVtFmWd9+q8UwhHH7IypID5PchyS8eQf
EgDgqvvs7CfnwmkBvU26t8ixZXb/3lHLHWy5dJ/2kN792IZ57OXMYM3gClCvsyij
ZxALaD6K1p1iO+audcxKuSRQhrR7SZ6WKH/uJ2IFT9lejufyiVhG4fwyIfWpAgMB
AAGjggI1MIICMTAdBgNVHQ4EFgQU1hbUn24+H0DBdj8GdIIder3DEXUwHwYDVR0j
BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy
NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK
R3Y4dy5jZXIwgaUGCCsGAQUFBwELBIGYMIGVMIGSBggrBgEFBQcwC4aBhXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMDliZTNhYWUt
YWVhMS00MWRjLWIxYjktOTVhYzU5MTgyNDRkLzAvMzEzNDM3MmUzNzM5MmUzODJl
MzAyZjMyMzEyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA5NPCDANBgkq
hkiG9w0BAQsFAAOCAQEAaLgEMdCMYY2znhqx9pGP7UzOgCNscVXQMARp6+8qhTNY
RnHw361DedmS9hOMeCl079+2IawVULfFAc4zkGVNJNthuYWJmMQtLwt33dG/EHPr
PTz8r+nagZo1IIE6kG19ZGdPU4iZ/LeVUPASTXS73pZ9z7VfsvNxsgeC0pUwVXH6
Wra0YaUC60j27qzv+LjMABmnINri0/d3AoDjJPByLegVtx2YGWfldFGBOdznqCNc
B129I/FdwTNnvDFg1seJ9RVdBamB0rNjwl48NoGpbLKUZR0aF8YnpYL4EXsjygVl
/fxobsApbg4mKiolcsyHrcVJd7UoYLN34DVj0S80cw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:09 2024 by rpki-client on console-fra.rpki-client.org