Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3139332e3130392e3139332e302f32342d3234203d3e203534323532.roa
File: 3139332e3130392e3139332e302f32342d3234203d3e203534323532.roa (raw, json)
Hash identifier: 554Sg6RThO7G2iZFW4SbUlregI0K6z21ABPCqgaZqeE=
Subject key identifier: 04:4F:3A:47:69:1E:E5:38:3C:D9:EB:CB:F1:E8:EF:76:E3:78:FD:67
Certificate issuer: /CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Certificate serial: 3B90C14417043D6811F3FA8E8D9EB13E6B9F9091
Authority key identifier: DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3139332e3130392e3139332e302f32342d3234203d3e203534323532.roa
Signing time: Wed 09 Oct 2024 09:43:23 +0000
ROA not before: Wed 09 Oct 2024 09:38:23 +0000
ROA not after: Wed 08 Oct 2025 09:43:23 +0000
asID: 54252
IP address blocks: 193.109.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Nov 2024 00:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:90:c1:44:17:04:3d:68:11:f3:fa:8e:8d:9e:b1:3e:6b:9f:90:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc943cc2a7cdc378a37702573bb4f821170b530d
Validity
Not Before: Oct 9 09:38:23 2024 GMT
Not After : Oct 8 09:43:23 2025 GMT
Subject: CN=044F3A47691EE5383CD9EBCBF1E8EF76E378FD67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9a:5a:a8:78:4c:62:c4:42:9f:d3:23:6b:a3:
87:85:46:3b:ad:2f:c9:74:b9:fd:e9:76:f2:dc:4c:
a1:54:23:9b:24:9f:d3:92:05:5b:1e:c8:5e:50:59:
83:6a:96:a2:70:9c:cf:87:9d:29:85:a4:a1:72:fb:
98:22:59:81:21:72:a8:85:82:0a:98:2f:fa:34:33:
57:0c:31:e5:d1:3b:6b:66:34:eb:1f:1f:91:d2:aa:
9f:be:a0:88:3c:75:73:ce:ab:39:d5:7e:e1:78:c9:
a9:83:f7:5e:25:64:b9:40:61:4d:01:c8:d3:39:5b:
6d:10:c7:ec:ee:ae:fb:6b:c7:92:b7:a2:a2:46:ca:
2c:0c:a3:54:31:66:50:8f:63:b4:64:07:e9:17:a1:
4e:02:55:b8:ee:4c:68:6d:97:0a:87:29:41:8a:79:
20:d3:17:42:29:db:b9:93:84:68:6d:ae:3f:24:74:
b0:6f:f8:4e:a8:b5:24:82:03:77:0e:de:35:43:b0:
c9:e6:f9:60:e2:42:fc:d3:4b:90:f4:61:08:97:31:
7b:71:8c:0d:76:a0:b9:06:2d:95:47:6e:6d:0f:d9:
f0:f8:9b:a8:53:22:a6:ac:44:e7:2c:d4:d7:70:4d:
13:17:2f:b1:33:5c:21:d8:db:49:82:62:83:c5:e0:
f1:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:4F:3A:47:69:1E:E5:38:3C:D9:EB:CB:F1:E8:EF:76:E3:78:FD:67
X509v3 Authority Key Identifier:
keyid:DC:94:3C:C2:A7:CD:C3:78:A3:77:02:57:3B:B4:F8:21:17:0B:53:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/DC943CC2A7CDC378A37702573BB4F821170B530D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JQ8wqfNw3ijdwJXO7T4IRcLUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6ab0722f-64d8-4ca9-9267-4e5154434101/0/3139332e3130392e3139332e302f32342d3234203d3e203534323532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.193.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:2e:4f:c6:29:84:d2:b5:a6:31:d7:0f:c9:f8:0c:dc:07:84:
b1:b2:0c:b7:b3:47:85:02:1a:45:b8:fe:48:42:fa:80:f7:cd:
cb:47:81:31:47:ae:b2:08:06:a9:de:81:85:d2:58:ea:f2:e3:
a1:b8:dc:af:e0:60:2c:8c:ca:57:72:c5:4a:2e:c0:99:a5:f7:
a6:14:cb:b0:5a:92:c2:43:dd:9d:07:cf:64:7e:92:42:3a:1e:
3a:64:64:bb:8a:58:17:2c:0e:ae:ac:1e:e5:d7:7c:ae:b7:fd:
07:f1:b1:d0:b6:8b:87:43:ed:61:5c:30:db:ec:95:89:fd:51:
bc:82:a1:d1:6f:e9:8e:d8:1d:00:6c:69:3d:f3:b5:07:d4:d1:
0a:5c:e7:3d:1a:f3:25:e3:b2:4b:46:3a:30:6a:48:52:fb:b2:
83:23:45:d6:95:5c:87:7d:c0:0e:9f:03:07:7d:da:2b:eb:89:
a1:19:08:7b:9a:73:7a:4f:0a:30:cc:3a:c2:41:8e:61:69:f3:
3e:70:d7:21:61:0c:60:b2:04:38:4d:3b:7c:dc:5e:b0:24:c3:
42:c9:95:6f:50:c2:ae:fd:5a:ee:95:84:26:83:ce:18:d6:5a:
da:84:7d:3b:22:6e:d1:50:2a:7b:64:e3:29:d3:3c:6e:ca:2f:
a4:d1:69:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 14 01:58:08 2024 by rpki-client on console-fra.rpki-client.org