Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e3134372e35392e302f32342d3234203d3e20323039383534.roa
File: 3139342e3134372e35392e302f32342d3234203d3e20323039383534.roa (raw, json)
Hash identifier: Et58yXE2n5/aM3Uvaj/nJqXgnK/MsRv8fzk4LyfzHbo=
Subject key identifier: 4D:B8:2B:39:F8:65:66:10:06:84:03:B1:25:2A:47:30:4A:5F:64:F1
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 6334EA83AC9E9CCB8A2924D413A8F0C2DF4A064B
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e3134372e35392e302f32342d3234203d3e20323039383534.roa
Signing time: Fri 27 Dec 2024 11:47:42 +0000
ROA not before: Fri 27 Dec 2024 11:42:42 +0000
ROA not after: Fri 26 Dec 2025 11:47:42 +0000
asID: 209854
IP address blocks: 194.147.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Mar 2025 10:53:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:34:ea:83:ac:9e:9c:cb:8a:29:24:d4:13:a8:f0:c2:df:4a:06:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:42 2024 GMT
Not After : Dec 26 11:47:42 2025 GMT
Subject: CN=4DB82B39F8656610068403B1252A47304A5F64F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:81:1c:b2:54:1e:e8:6c:e8:03:43:4c:a2:43:
2a:1e:1b:a0:65:65:c0:48:fe:eb:01:31:02:7e:ba:
b9:6e:19:f6:49:35:36:2c:02:68:bf:1a:75:d8:29:
de:6e:2d:f4:b9:14:15:be:5a:52:76:d3:df:c7:bd:
95:67:55:eb:89:b5:7b:c5:eb:2f:c8:a0:8d:ac:fe:
79:b1:e8:d0:4a:f1:62:9d:e4:72:a1:52:96:c9:07:
ea:90:4c:60:5c:7c:3c:c7:c4:03:6c:df:8b:fa:af:
74:bb:60:16:a0:01:99:3e:9e:83:a7:e7:12:8c:45:
83:32:00:f8:f4:15:6d:4f:f5:2d:72:05:96:33:e8:
b6:c0:e3:e7:12:3e:71:e8:08:2f:8b:c6:45:f0:e1:
c7:e1:c0:85:b3:c8:14:3d:fb:02:27:ba:73:79:ac:
5e:c3:e9:1e:51:98:8d:d3:70:07:dc:41:dd:9c:ab:
e5:63:c8:a9:cc:c9:ac:65:e7:52:c6:f1:34:cd:36:
0a:48:8b:63:1a:22:1a:be:55:ff:b2:75:d1:0e:ff:
29:1d:82:a6:ff:a7:f1:51:e2:b6:c9:d1:06:78:f2:
4f:4a:93:9e:89:dc:2c:c8:a2:51:67:77:8f:ef:53:
01:71:d5:e6:4c:ee:7c:76:4b:ba:96:3e:c6:0b:51:
c0:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:B8:2B:39:F8:65:66:10:06:84:03:B1:25:2A:47:30:4A:5F:64:F1
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e3134372e35392e302f32342d3234203d3e20323039383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.59.0/24
Signature Algorithm: sha256WithRSAEncryption
44:ab:bc:3e:7f:51:6e:4b:6f:b0:13:d4:3b:76:c7:40:c9:7f:
4a:43:d4:7d:4d:be:04:3f:28:e1:2e:4e:12:30:a4:44:59:36:
9c:09:f4:eb:44:b3:be:cb:39:88:b4:b1:98:cd:5e:4b:b0:7c:
73:af:1a:9a:f3:23:a5:55:9b:f6:b8:af:a0:62:18:cc:28:6b:
aa:9b:f5:69:24:71:bd:86:cd:a0:7f:79:cf:9d:0e:72:bc:fd:
14:41:cb:21:76:0a:b1:29:d2:2a:3e:0f:3f:8f:1e:ff:7b:24:
89:8f:24:08:a6:44:9f:23:81:c4:21:f0:2f:ec:f3:af:66:50:
9f:a0:12:0c:15:f3:bb:2c:72:03:19:53:fd:a0:bd:6d:d2:be:
e1:64:15:91:8a:0f:d8:8e:9e:b8:d4:d4:cf:ea:2f:b5:6b:5c:
b7:a4:4a:82:1e:8a:9b:3c:b5:90:82:be:b2:17:aa:88:44:e6:
e8:a8:84:6e:64:61:74:a2:ad:58:e3:02:48:63:a2:64:5a:6a:
9b:f1:39:bd:69:f3:11:78:e9:d4:f1:e2:f3:01:dd:46:c9:d6:
fe:21:78:26:d6:2d:d0:c0:0f:67:07:ba:f7:8e:98:4a:5e:63:
75:2c:3f:90:ae:38:c1:9f:ba:f9:1f:24:2b:d7:cc:05:3f:ab:
98:6e:51:0a
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 12 16:08:11 2025 by rpki-client