Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3139342e33312e3139372e302f32342d3234203d3e20383334.roa
File: 3139342e33312e3139372e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: fgSGaG8aWi0ElFgotsF3w7gxv/UInBv128h13+dFMV0=
Subject key identifier: 62:6C:8A:F9:CD:BF:FD:C5:C7:B5:A6:12:84:04:B7:36:55:17:BC:E4
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 2D3D58366C81DAB7714C327E4ADEAA863EC40F76
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3139342e33312e3139372e302f32342d3234203d3e20383334.roa
Signing time: Tue 10 Sep 2024 00:03:23 +0000
ROA not before: Mon 09 Sep 2024 23:58:23 +0000
ROA not after: Tue 09 Sep 2025 00:03:23 +0000
asID: 834
IP address blocks: 194.31.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Sep 2024 11:42:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:3d:58:36:6c:81:da:b7:71:4c:32:7e:4a:de:aa:86:3e:c4:0f:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Sep 9 23:58:23 2024 GMT
Not After : Sep 9 00:03:23 2025 GMT
Subject: CN=626C8AF9CDBFFDC5C7B5A6128404B7365517BCE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:69:77:ed:7c:8b:a2:b5:b1:c1:93:5d:f0:5c:
09:4a:b5:6e:8b:69:b5:dd:63:25:b8:b5:e1:de:ad:
14:17:e6:9d:f5:c3:1d:48:1c:b2:97:14:fe:85:60:
f2:a2:7a:d0:8e:96:84:d7:1d:34:9d:22:66:9b:b6:
c4:7a:37:67:07:b3:5e:a3:92:43:5c:a0:de:58:2b:
5d:bf:c1:90:83:b5:fc:96:7e:d1:cd:24:69:7b:b8:
d3:3c:55:40:d8:35:b0:21:52:e9:da:0d:ff:84:dd:
9f:e2:ff:ba:3a:2a:c2:e7:63:a0:50:17:0e:a8:84:
02:dc:c5:86:7f:ea:16:ec:68:33:e8:53:19:8c:b1:
e4:38:a5:c4:ba:3c:35:d7:61:5a:96:52:86:89:48:
51:6a:57:d4:49:78:38:9b:60:fa:da:9b:f2:c2:3b:
a7:43:b0:0b:ca:a6:96:90:69:f5:1a:69:da:9e:d8:
56:d6:50:d5:b5:9e:79:5d:b9:bf:89:23:67:76:c5:
76:07:30:9b:aa:71:39:41:04:58:50:cf:d6:3d:0b:
1e:d4:32:5f:c9:fe:1f:58:9a:bc:82:75:db:91:9a:
b2:2e:25:cb:8c:86:61:be:cd:aa:ff:bf:77:34:d9:
a0:70:bc:df:99:7e:b0:da:fe:8e:d4:22:c0:85:9a:
28:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:6C:8A:F9:CD:BF:FD:C5:C7:B5:A6:12:84:04:B7:36:55:17:BC:E4
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3139342e33312e3139372e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.197.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:d4:85:04:f4:da:90:31:43:1f:fc:6e:32:76:ad:5f:88:ea:
98:89:61:8b:ed:32:89:9c:ac:56:38:9a:0d:e6:6b:80:75:1a:
c7:c2:59:88:96:4c:6c:47:bf:20:24:a5:22:9f:e0:cc:01:5f:
60:06:65:e9:bf:11:51:81:62:08:af:4b:0e:15:af:0b:69:85:
60:e4:31:c2:98:7f:dd:06:75:a8:0d:35:5f:e3:af:f8:54:ae:
05:5f:fb:68:93:b9:26:2e:37:5b:25:d0:57:0f:f8:35:44:fa:
5e:aa:8b:f6:55:dc:ea:9e:70:7e:b8:31:52:ed:62:c9:5f:e4:
43:d7:f6:e5:ba:05:99:02:68:7c:b6:da:b7:82:63:c6:e6:46:
a3:b9:47:93:ff:61:64:f9:b8:33:6d:28:8c:c4:23:b7:0e:87:
1e:73:07:0f:51:4b:38:08:4d:23:ba:1e:80:d3:2a:d9:3a:59:
ed:7c:b4:0d:10:f3:79:90:87:19:c2:b0:8b:95:7c:b7:eb:c6:
b6:d9:64:7e:d0:c4:c0:26:56:a8:f7:61:bf:8d:0f:3d:a5:23:
36:4d:e0:7c:79:41:13:57:f2:e5:38:a6:81:87:24:00:2a:42:
84:e4:7f:6f:c9:05:fe:5e:2b:9f:77:40:ea:40:43:bf:ac:17:
db:4d:d0:3a
-----BEGIN CERTIFICATE-----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Generated at Fri Sep 20 15:00:18 2024 by rpki-client on console-ams.rpki-client.org