Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS18779.roa
File: AS18779.roa (raw, json)
Hash identifier: J5g3JHC/kOJtbcWuSJdDovppiqznYkQY1qetP70091g=
Subject key identifier: 46:54:95:BA:02:92:FC:78:DD:BF:4F:F0:9E:37:DE:BF:6C:D5:08:42
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 124C00775560CE8AC7503AC2AD08438FF9CB420F
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS18779.roa
Signing time: Wed 31 Jul 2024 09:57:08 +0000
ROA not before: Wed 31 Jul 2024 09:52:08 +0000
ROA not after: Wed 30 Jul 2025 09:57:08 +0000
asID: 18779
IP address blocks: 140.233.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Aug 2024 00:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:4c:00:77:55:60:ce:8a:c7:50:3a:c2:ad:08:43:8f:f9:cb:42:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Jul 31 09:52:08 2024 GMT
Not After : Jul 30 09:57:08 2025 GMT
Subject: CN=465495BA0292FC78DDBF4FF09E37DEBF6CD50842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e6:be:e8:f0:3b:dd:39:15:88:e9:b1:5d:e2:
bc:f7:a0:d4:bd:5f:86:af:72:b3:06:67:82:a2:c7:
16:2d:e4:fe:72:51:bf:c3:e2:94:7a:05:c2:ba:d0:
df:c2:3e:a0:4a:cf:7c:1b:2a:82:23:57:99:cb:00:
a3:58:ed:c9:e1:72:14:03:71:e6:1a:ee:6c:07:c3:
bf:46:68:48:42:07:e9:c4:f2:09:30:36:8b:93:b9:
ce:62:ba:9d:37:af:12:62:cd:0a:23:2a:f4:1e:79:
c4:d2:09:dc:91:d9:37:65:19:ca:34:af:c1:f1:2a:
3f:d0:8c:07:04:91:f9:a6:f2:1b:e8:4b:6e:2b:a4:
7f:0e:8c:7b:36:c8:99:31:d4:6c:94:28:47:a3:9f:
7f:24:ab:d3:9b:d7:e4:2f:31:6f:8c:9c:9d:3c:2f:
ea:a5:75:16:62:fc:6d:eb:46:b3:06:19:b1:ed:94:
b1:bb:17:f4:fd:73:28:5f:e1:ef:5c:22:e1:5f:37:
19:16:e1:5b:64:61:2c:1c:bb:e2:28:a1:7e:f6:60:
96:a2:62:6e:0b:74:05:7b:c7:a9:32:d0:86:23:99:
b6:0a:1b:1b:0f:3c:ba:1c:41:f7:cf:af:66:13:d8:
13:e3:6e:33:ff:f8:2f:19:7c:b3:26:90:a8:20:36:
e4:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:54:95:BA:02:92:FC:78:DD:BF:4F:F0:9E:37:DE:BF:6C:D5:08:42
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS18779.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.233.186.0/24
Signature Algorithm: sha256WithRSAEncryption
69:70:b1:56:8a:0f:b5:31:c8:ed:e1:f1:e5:be:f6:18:d1:76:
54:d7:e3:dc:8e:a2:62:65:be:21:00:4c:3c:1c:de:0c:04:2f:
be:8f:58:6c:e7:7b:34:19:ef:ea:29:a4:d8:54:db:e0:1d:49:
f6:79:18:59:36:08:87:a7:4a:8d:b6:8c:35:63:10:96:66:81:
c9:2d:9f:05:86:02:38:f7:f5:3d:c1:46:ff:4f:bb:12:e7:c9:
ed:e8:02:02:77:64:bf:75:92:f8:d5:fd:64:85:26:30:6e:6a:
2c:be:bb:6b:3b:76:6b:1e:83:bc:4e:09:b3:ac:59:ac:2a:7a:
d0:bb:be:2c:b7:d0:52:23:2f:1e:28:dc:d4:cf:77:05:7e:37:
30:e7:f1:28:1a:4a:bc:0f:29:f8:61:28:eb:66:67:ef:6d:fa:
92:69:e7:b5:32:94:e1:47:35:0e:ee:92:ab:3c:dd:d4:f9:4f:
19:fc:c0:1d:cc:b6:3d:48:7b:de:cf:64:e4:cd:86:fa:fe:a4:
19:85:ee:3a:b2:c4:31:72:37:63:a9:3f:f0:d4:0b:31:87:c2:
76:9e:8a:17:b7:f1:a5:95:f6:37:ce:eb:e0:89:40:ba:d3:35:
82:99:53:94:d8:d8:e6:59:4f:3c:a9:65:07:84:a1:e5:ec:f4:
75:b3:88:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 29 01:57:07 2024 by rpki-client on console-ams.rpki-client.org