Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/39312e3132342e3231382e302f32332d3234203d3e20383334.roa
File: 39312e3132342e3231382e302f32332d3234203d3e20383334.roa (raw, json)
Hash identifier: lFnfb/Ytp7yvWErzJyIqFoWsvGE0kCEtcTgo59UX8o4=
Subject key identifier: B9:3B:02:7E:13:02:32:F9:19:6A:0D:65:45:64:44:D0:5F:5F:41:3D
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 7209F128E017DDA3BCBB6E0476D31653363C1E83
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/39312e3132342e3231382e302f32332d3234203d3e20383334.roa
Signing time: Thu 22 Feb 2024 06:40:40 +0000
ROA not before: Thu 22 Feb 2024 06:35:40 +0000
ROA not after: Thu 20 Feb 2025 06:40:40 +0000
asID: 834
IP address blocks: 91.124.218.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Feb 2024 09:39:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:09:f1:28:e0:17:dd:a3:bc:bb:6e:04:76:d3:16:53:36:3c:1e:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 22 06:35:40 2024 GMT
Not After : Feb 20 06:40:40 2025 GMT
Subject: CN=B93B027E130232F9196A0D65456444D05F5F413D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:79:29:88:b8:ab:7c:54:8f:df:f5:2a:19:82:
5c:60:25:b4:a3:f7:7b:cb:90:38:ea:cd:10:00:7f:
d7:4b:bf:b8:7c:43:1a:4d:ea:9f:3b:83:7b:7d:8b:
6f:4f:3c:43:65:c2:58:c6:38:58:09:7a:a9:88:2a:
94:70:cd:21:46:08:ef:73:35:04:8e:8c:a1:48:b1:
c7:de:86:be:5b:50:74:44:eb:fc:4b:03:e6:d2:2e:
3c:e6:96:fc:69:50:74:72:f9:8c:8c:d6:d1:cd:a9:
09:88:d2:a7:10:47:1c:45:6f:9e:0f:7b:11:9e:6d:
4b:fc:8d:24:89:ae:c2:4d:ea:c8:b0:d4:06:16:84:
16:3f:43:c9:bc:d0:16:5c:b1:a8:cf:78:ba:bb:45:
34:84:0c:6c:86:09:ae:31:b4:57:94:60:b1:a5:39:
24:a2:46:90:43:e7:8d:5e:d1:19:51:09:1d:45:14:
98:c8:ec:78:f6:f5:b0:9c:c0:df:16:64:e6:0d:ec:
30:ed:93:4b:6e:fe:f9:de:dd:bd:0f:ba:17:b0:1d:
34:a6:0b:41:47:4f:a0:b6:25:d9:a7:cc:a4:7d:80:
28:65:f7:64:5a:0d:ad:72:a7:01:d3:f3:0a:63:6c:
fb:50:e1:f4:e8:71:f8:ef:cf:09:e7:b7:af:6d:3b:
76:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:3B:02:7E:13:02:32:F9:19:6A:0D:65:45:64:44:D0:5F:5F:41:3D
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/39312e3132342e3231382e302f32332d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.218.0/23
Signature Algorithm: sha256WithRSAEncryption
79:92:08:ef:b8:9d:af:49:3f:5b:78:fd:fd:52:66:14:10:90:
2a:9b:c8:6d:fa:04:af:00:14:0b:f9:0e:75:ca:db:ba:0d:c0:
19:d0:28:6c:cd:6c:de:05:63:ec:9e:a9:d1:db:87:e9:67:b5:
cc:f5:b6:75:f8:9a:89:a0:c1:1b:ac:71:1b:eb:c7:5f:42:d4:
2b:26:43:94:b8:71:c8:f9:1f:25:21:4c:53:d5:c7:4a:61:54:
d4:cc:a1:15:2f:75:e1:e7:35:89:b3:5d:73:d1:c0:16:a8:5f:
bf:59:4f:66:2c:40:cc:45:94:e8:a0:60:f9:35:fd:c9:72:b8:
73:26:77:30:b1:8c:00:ec:87:2f:3d:3e:a2:28:0e:d9:ec:03:
ee:6a:84:f3:39:22:8c:e1:cd:20:e8:28:9c:be:da:ee:3f:d0:
7e:c9:18:04:a1:1a:7a:03:04:c6:3b:2e:a8:18:dc:cd:fa:e5:
97:22:0f:e5:00:b3:ab:76:51:41:c8:4e:fd:c5:29:96:b4:87:
85:e3:61:27:ab:07:27:95:f9:35:7b:9a:35:14:8c:65:0d:75:
f5:32:be:6a:f7:5b:ed:0f:c6:f4:94:52:a0:2f:9c:ac:0a:37:
c9:24:53:42:8b:9e:74:74:a1:53:28:0f:38:21:f1:51:fc:9b:
53:cf:ca:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:11:21 2025 by rpki-client