Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e36342e302f32302d3234203d3e2037303239.roa
File: 3134372e37392e36342e302f32302d3234203d3e2037303239.roa (raw, json)
Hash identifier: gOcHj1kC8TyKeVnqejGdw4UkoxLUp/23uXXzXSszbng=
Subject key identifier: 3E:3B:FF:A1:21:B9:AF:F1:73:05:2A:61:56:55:69:81:DC:AE:94:54
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 060AA017F820C8F65B68AA15498FDDB3C76469DF
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e36342e302f32302d3234203d3e2037303239.roa
Signing time: Thu 14 Mar 2024 15:26:41 +0000
ROA not before: Thu 14 Mar 2024 15:21:41 +0000
ROA not after: Thu 13 Mar 2025 15:26:41 +0000
asID: 7029
IP address blocks: 147.79.64.0/20 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Mar 2024 16:50:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:0a:a0:17:f8:20:c8:f6:5b:68:aa:15:49:8f:dd:b3:c7:64:69:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 14 15:21:41 2024 GMT
Not After : Mar 13 15:26:41 2025 GMT
Subject: CN=3E3BFFA121B9AFF173052A6156556981DCAE9454
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f9:b5:d1:5d:8c:0a:7c:df:e6:7a:b6:5b:1c:
b1:30:13:f1:b6:a9:21:0c:a0:61:a2:75:0f:22:2f:
f6:13:71:00:e5:b5:3b:d9:82:e6:2c:96:85:f2:44:
a6:5b:ce:cf:71:bc:74:55:ca:5c:5f:84:6b:00:fc:
d7:e5:9d:10:17:5f:6a:65:53:0e:1a:45:71:0f:a6:
00:c4:7c:c2:83:73:c3:68:ea:87:ad:87:3a:30:13:
f1:73:7a:90:3a:58:67:68:6c:3c:4f:8b:7a:0d:5e:
1b:7d:fd:09:2b:8b:03:35:dd:50:ff:b6:f6:17:4a:
06:d8:52:c3:0e:54:6e:21:48:66:82:f2:61:86:65:
5a:fe:4f:60:36:3a:47:e7:5f:53:14:8f:8d:b4:5d:
a7:b2:39:db:58:bc:41:59:15:6b:44:ba:33:9f:4f:
07:5d:2e:68:7e:50:7a:ae:12:d0:8a:81:c9:da:0c:
d5:2b:ee:06:c6:c8:c0:23:27:e1:c3:b3:88:25:9e:
4c:bb:6f:ac:bf:bc:e0:2b:85:19:d0:64:02:51:43:
05:70:89:4c:83:e3:79:f2:4b:ca:9c:92:5d:9c:11:
d1:41:ae:45:62:fc:59:86:be:19:d8:1e:1a:6f:4c:
e4:6d:af:57:78:c2:c2:15:71:f5:54:60:66:97:c8:
32:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:3B:FF:A1:21:B9:AF:F1:73:05:2A:61:56:55:69:81:DC:AE:94:54
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e36342e302f32302d3234203d3e2037303239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.79.64.0/20
Signature Algorithm: sha256WithRSAEncryption
2d:75:9a:ee:14:a3:2a:df:08:56:44:1b:99:26:fd:5b:95:7f:
ca:b9:2f:f2:40:ac:7b:95:13:ce:fa:fc:47:57:ee:77:c0:a1:
ac:b3:12:45:19:0b:32:5e:e2:44:80:67:88:6a:f9:9a:57:fc:
1b:92:4e:df:13:5d:d9:9c:b8:ca:7e:7a:4d:a0:b9:d9:3f:b3:
79:00:2b:cb:ff:e9:0d:4e:69:1a:0d:07:d7:47:c8:c3:0c:d3:
3e:93:94:da:9d:88:4e:92:66:26:36:d7:9a:42:17:e7:33:6a:
c6:3e:ae:90:8e:ad:ad:0e:7b:89:d1:7b:d6:41:c5:8f:d2:0c:
78:e1:85:17:a7:a3:8a:7f:b0:84:b7:40:77:3b:57:fd:51:f3:
e4:f4:f8:ff:1c:6a:79:b8:f6:60:36:7b:49:ac:e5:e6:4f:b7:
c1:e7:28:47:06:4f:b3:12:49:2c:2d:8e:fe:9f:84:f2:b9:3c:
4c:cd:ce:c2:29:1b:88:3e:7d:69:41:4f:8b:24:e4:38:22:40:
e0:60:7f:ee:b2:77:47:d2:d8:27:f8:c3:92:0e:00:2c:c5:4c:
76:d8:e1:08:c3:d8:62:c4:a8:f2:7a:0d:12:07:d5:dd:a4:96:
b7:be:28:71:a7:85:0a:e3:d2:9d:6e:31:79:ad:c4:7f:a6:26:
f2:5a:ae:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 14 22:22:49 2024 by rpki-client on console.sobornost.net