Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3139342e33312e3139352e302f32342d3234203d3e20383334.roa
File: 3139342e33312e3139352e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: uL6z8e2OMVpo164h78IoTt24gtag1CW9JQtxZA7qS3c=
Subject key identifier: FD:03:B3:F0:BA:87:56:AB:71:C5:88:FE:F4:65:A2:24:91:50:AD:58
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 2D8C826F2444AA4773095496893DDDF15D637F70
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3139342e33312e3139352e302f32342d3234203d3e20383334.roa
Signing time: Fri 08 Mar 2024 10:05:59 +0000
ROA not before: Fri 08 Mar 2024 10:00:59 +0000
ROA not after: Fri 07 Mar 2025 10:05:59 +0000
asID: 834
IP address blocks: 194.31.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 21:54:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:8c:82:6f:24:44:aa:47:73:09:54:96:89:3d:dd:f1:5d:63:7f:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Mar 8 10:00:59 2024 GMT
Not After : Mar 7 10:05:59 2025 GMT
Subject: CN=FD03B3F0BA8756AB71C588FEF465A2249150AD58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c5:e2:9f:1d:07:1a:8b:1e:b2:bd:12:47:bd:
2d:96:94:be:5d:6d:15:8e:1a:5a:7c:ce:c2:a8:c6:
aa:0e:70:e8:3a:f5:6a:e5:d1:ec:c1:39:a0:a4:23:
74:bd:de:e4:f1:cb:81:91:ff:d7:50:8e:9c:65:da:
04:59:91:29:da:fd:91:b8:9a:ee:e3:3b:71:b6:13:
d2:b0:e5:0d:9b:81:c4:35:e8:42:ff:dc:5c:58:e6:
ee:d7:25:5d:35:28:1e:ad:08:eb:2f:55:99:0f:d7:
5a:1d:38:68:75:1a:14:5d:e2:f2:1c:e6:5b:07:b9:
f3:15:6f:42:59:81:51:f0:bc:5a:71:a5:6b:c1:47:
e9:64:97:cd:4d:29:8c:6a:d4:0c:f4:d6:de:07:a9:
f9:59:fb:7f:fa:ad:41:13:60:ed:74:f5:40:31:0b:
39:0b:89:01:69:09:ee:8e:71:f5:0a:f9:ad:57:a4:
09:d6:64:49:66:af:29:88:a5:ae:2b:c3:d6:6b:d8:
ae:cf:5a:89:c3:a2:52:94:cd:98:e3:63:e4:e3:84:
0f:a8:c5:b3:c0:9d:08:36:93:f3:e1:4d:f9:dd:1e:
da:fc:b9:b6:54:ea:29:59:00:f1:11:d5:2e:9e:1a:
d4:9c:ff:1e:77:db:f9:f2:21:0e:68:b9:ef:3a:e4:
b3:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:03:B3:F0:BA:87:56:AB:71:C5:88:FE:F4:65:A2:24:91:50:AD:58
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3139342e33312e3139352e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.195.0/24
Signature Algorithm: sha256WithRSAEncryption
37:57:06:7b:5d:39:bd:7f:ac:8c:55:0a:2e:47:bf:bc:65:e4:
e4:57:bd:1a:b5:7c:4b:49:01:ab:4d:be:d6:14:62:9b:06:96:
a2:5d:42:39:58:54:2e:db:dd:a4:a7:62:38:ed:b1:9f:05:36:
f8:a7:91:92:f6:5f:d0:e9:a8:0a:af:2c:45:a4:df:2c:f8:97:
c2:59:96:be:95:3f:2f:56:d2:ea:69:e6:87:ca:d5:77:a1:7a:
01:b3:46:0c:82:6e:cb:57:4d:70:ab:96:79:5a:1a:2c:2f:59:
a6:7b:1f:23:da:a6:7e:63:22:ae:3c:10:cd:64:d1:17:f0:4c:
64:c7:d0:ee:dd:40:5a:c0:31:e2:74:16:a6:fb:6b:a2:5c:bf:
57:d6:17:c1:36:04:c5:9d:2c:1f:a7:47:9e:fb:ff:81:6f:cd:
c5:86:69:9e:49:b0:57:28:a9:e0:99:63:db:7e:8e:bf:86:48:
b3:f4:b3:5a:2d:55:d4:dd:0a:76:78:3a:89:59:d9:b9:89:99:
2f:d8:8d:07:07:a6:36:f1:6b:0a:fa:11:dc:f0:a5:77:af:5a:
fb:5d:c6:81:a4:e8:7f:61:06:bd:e0:d9:74:3e:42:cb:09:47:
59:28:b3:f4:da:9e:e0:1e:b2:fa:8e:43:40:35:26:ae:78:77:
d4:a3:ba:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:20:47 2025 by rpki-client