Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e38302e302f32302d3234203d3e20383334.roa
File: 3134372e37392e38302e302f32302d3234203d3e20383334.roa (raw, json)
Hash identifier: RRWZTHtmc/BXkJPXDiMLxFmQqTtnRChqpm+Dxdzg1f4=
Subject key identifier: FB:68:D8:1B:28:C8:A1:96:24:93:C3:16:4C:8F:2F:CD:3D:C7:5B:CD
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 2A76D3D465EF435CD947016691B129164000B942
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e38302e302f32302d3234203d3e20383334.roa
Signing time: Thu 14 Mar 2024 15:29:06 +0000
ROA not before: Thu 14 Mar 2024 15:24:06 +0000
ROA not after: Thu 13 Mar 2025 15:29:06 +0000
asID: 834
IP address blocks: 147.79.80.0/20 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Mar 2024 16:50:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:76:d3:d4:65:ef:43:5c:d9:47:01:66:91:b1:29:16:40:00:b9:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 14 15:24:06 2024 GMT
Not After : Mar 13 15:29:06 2025 GMT
Subject: CN=FB68D81B28C8A1962493C3164C8F2FCD3DC75BCD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b6:63:cf:cd:39:1c:1c:32:c0:08:fb:91:30:
e2:f4:73:18:0d:1c:7e:bd:fb:f7:b2:68:57:e5:0f:
78:b0:ee:8d:18:80:22:0b:ad:8a:7e:bb:cb:b8:18:
c3:f0:15:6a:ec:0f:6c:9e:f3:d4:26:d8:66:f4:8e:
e7:5c:d0:57:00:2e:1b:1a:08:be:18:70:62:13:10:
b0:0b:11:d2:2e:67:84:90:00:6f:b6:0e:3e:6b:35:
42:6b:4c:a3:8e:ee:83:3b:7b:9d:76:c1:83:7f:e8:
83:bc:ef:a6:1b:ce:ce:db:ad:ab:92:b1:e0:4e:ab:
ff:35:84:6c:90:46:78:66:06:26:06:10:0e:3d:7b:
4c:bd:a6:c1:d1:d9:46:bb:8c:00:f4:c8:20:bc:38:
fb:53:d7:bd:48:c6:f6:8e:f4:12:d3:cb:f6:6a:93:
a5:49:e7:49:4e:cd:be:5d:93:6a:55:d6:48:28:d5:
dc:e6:99:ee:22:26:21:44:8a:77:9d:7a:5d:02:22:
ef:a6:80:f5:c4:22:73:b3:e4:02:ba:4a:fa:9d:2c:
a3:0f:c1:c5:7b:de:ea:cd:d7:50:d0:9f:41:fb:1f:
33:17:13:0d:f3:be:85:87:fa:e4:7c:76:9d:df:5c:
4f:de:91:30:62:43:98:37:cb:83:5c:31:b7:76:6a:
29:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:68:D8:1B:28:C8:A1:96:24:93:C3:16:4C:8F:2F:CD:3D:C7:5B:CD
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134372e37392e38302e302f32302d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.79.80.0/20
Signature Algorithm: sha256WithRSAEncryption
71:8d:07:7a:fd:95:ec:fe:58:12:2d:09:22:de:6c:03:51:d5:
ab:20:f0:be:e9:c6:e4:3d:49:b9:05:e1:33:43:a2:94:d3:6f:
1f:ee:a4:dd:be:28:dc:2a:7d:d1:bd:82:83:a2:43:87:5e:f2:
3a:ea:98:b9:13:ff:4c:de:f8:da:97:eb:40:74:cc:3c:4d:61:
9a:e7:15:42:d9:2c:bb:0d:4c:34:41:bf:2d:be:d6:d4:7a:0c:
ad:20:a3:e0:a4:81:77:e3:b6:36:a8:78:37:88:ad:51:88:9b:
1e:47:b3:19:aa:85:8a:16:a3:f2:41:15:e2:d1:04:31:63:0c:
01:c8:35:80:c2:6c:56:73:cc:8f:ef:70:da:49:b4:c0:59:66:
fd:27:09:22:40:ea:97:83:c8:64:51:3a:6d:b2:b5:49:1d:24:
53:2f:ec:91:eb:0c:71:c8:5a:6a:53:57:0b:0d:87:fd:0c:21:
df:0f:9a:69:3b:ae:d1:6e:56:81:1a:75:e3:f9:23:ef:6b:b6:
11:24:54:dd:21:d9:23:71:9e:11:23:7f:8d:05:ad:ad:94:31:
f5:65:9e:1d:9d:27:d2:01:b2:79:5b:01:be:7d:bc:1e:14:99:
5f:ad:c9:51:73:89:d5:92:3d:dc:c0:f3:94:0c:99:e7:86:b2:
10:d9:63:3b
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgIUKnbT1GXvQ1zZRwFmkbEpFkAAuUIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi
MjQ2YmZjYzAeFw0yNDAzMTQxNTI0MDZaFw0yNTAzMTMxNTI5MDZaMDMxMTAvBgNV
BAMTKEZCNjhEODFCMjhDOEExOTYyNDkzQzMxNjRDOEYyRkNEM0RDNzVCQ0QwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCltmPPzTkcHDLACPuRMOL0cxgN
HH69+/eyaFflD3iw7o0YgCILrYp+u8u4GMPwFWrsD2ye89Qm2Gb0judc0FcALhsa
CL4YcGITELALEdIuZ4SQAG+2Dj5rNUJrTKOO7oM7e512wYN/6IO876Ybzs7brauS
seBOq/81hGyQRnhmBiYGEA49e0y9psHR2Ua7jAD0yCC8OPtT171IxvaO9BLTy/Zq
k6VJ50lOzb5dk2pV1kgo1dzmme4iJiFEinedel0CIu+mgPXEInOz5AK6SvqdLKMP
wcV73urN11DQn0H7HzMXEw3zvoWH+uR8dp3fXE/ekTBiQ5g3y4NcMbd2aimFAgMB
AAGjggI3MIICMzAdBgNVHQ4EFgQU+2jYGyjIoZYkk8MWTI8vzT3HW80wHwYDVR0j
BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy
NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK
R3Y4dy5jZXIwgacGCCsGAQUFBwELBIGaMIGXMIGUBggrBgEFBQcwC4aBh3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMDliZTNhYWUt
YWVhMS00MWRjLWIxYjktOTVhYzU5MTgyNDRkLzAvMzEzNDM3MmUzNzM5MmUzODMw
MmUzMDJmMzIzMDJkMzIzNDIwM2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEk09QMA0G
CSqGSIb3DQEBCwUAA4IBAQBxjQd6/ZXs/lgSLQki3mwDUdWrIPC+6cbkPUm5BeEz
Q6KU028f7qTdvijcKn3RvYKDokOHXvI66pi5E/9M3vjal+tAdMw8TWGa5xVC2Sy7
DUw0Qb8tvtbUegytIKPgpIF347Y2qHg3iK1RiJseR7MZqoWKFqPyQRXi0QQxYwwB
yDWAwmxWc8yP73DaSbTAWWb9JwkiQOqXg8hkUTptsrVJHSRTL+yR6wxxyFpqU1cL
DYf9DCHfD5ppO67RblaBGnXj+SPva7YRJFTdIdkjcZ4RI3+NBa2tlDH1ZZ4dnSfS
AbJ5WwG+fbweFJlfrclRc4nVkj3cwPOUDJnnhrIQ2WM7
-----END CERTIFICATE-----
Generated at Thu Mar 14 22:22:49 2024 by rpki-client on console.sobornost.net