Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3133362e302f32312d3234203d3e203231383539.roa
File: 3134302e3135302e3133362e302f32312d3234203d3e203231383539.roa (raw, json)
Hash identifier: BdcCQ/I5HNFZDohlDNUZpK4Y0olO7eMEJPY0NLd5IlI=
Subject key identifier: 6C:99:78:5F:E3:AD:31:4A:21:01:4D:99:74:FE:3D:11:92:3A:9F:6D
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 457E1D8313D73993DAA2556DF41846102520B4B0
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3133362e302f32312d3234203d3e203231383539.roa
Signing time: Mon 08 Jan 2024 04:41:09 +0000
ROA not before: Mon 08 Jan 2024 04:36:09 +0000
ROA not after: Mon 06 Jan 2025 04:41:09 +0000
asID: 21859
IP address blocks: 140.150.136.0/21 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Feb 2024 00:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:7e:1d:83:13:d7:39:93:da:a2:55:6d:f4:18:46:10:25:20:b4:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Jan 8 04:36:09 2024 GMT
Not After : Jan 6 04:41:09 2025 GMT
Subject: CN=6C99785FE3AD314A21014D9974FE3D11923A9F6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7a:63:51:7c:72:ff:e5:0b:61:70:75:1c:27:
09:68:96:22:b1:0c:16:0b:d4:3e:30:4a:1c:8a:83:
c4:ec:9f:c9:91:6d:6f:97:d1:d0:1e:33:b0:3b:f3:
05:1e:9b:7a:98:63:44:2c:3b:e6:a3:af:a2:b4:e8:
5a:c8:6d:8f:0b:6c:ea:80:23:09:42:d6:0e:1b:e9:
4a:0d:b7:fa:21:3e:2b:93:42:bb:15:43:ed:ce:a1:
3a:6e:01:7f:7c:4d:b2:fe:94:4c:e1:3a:a1:b0:a9:
2c:41:a2:cd:c1:10:b1:a5:d6:d1:a8:04:15:94:ca:
17:82:f0:61:85:6c:d4:75:19:25:e6:03:3f:0e:13:
31:de:d1:0f:d3:5b:a7:e8:6a:9c:6e:2d:48:a8:50:
de:61:3d:4d:18:9e:95:80:fb:64:fd:a4:5a:62:ee:
15:ee:e3:8d:62:ef:cc:05:30:e0:c3:1e:25:eb:6d:
67:3a:1c:8c:4b:59:7d:88:23:fd:36:6f:82:a5:2f:
b5:0f:fc:cd:32:dc:b6:dd:74:d6:50:d8:86:63:1a:
9d:ff:d9:15:df:ac:02:71:da:44:fb:88:03:c1:2b:
bd:55:f8:63:70:a1:1e:15:12:71:05:ea:37:29:65:
ea:91:b9:5a:97:34:07:80:1b:68:a5:31:ac:86:35:
3e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:99:78:5F:E3:AD:31:4A:21:01:4D:99:74:FE:3D:11:92:3A:9F:6D
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3133362e302f32312d3234203d3e203231383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.136.0/21
Signature Algorithm: sha256WithRSAEncryption
39:9e:56:37:d9:b0:73:f2:3f:a9:2c:01:4f:c5:e5:b6:80:36:
3b:0c:ae:03:95:5e:c8:2e:df:54:c6:44:8f:77:22:5a:51:55:
4a:30:c6:50:16:7a:a1:64:9b:d1:73:e4:0e:a0:04:e7:24:9a:
bf:e3:fa:dc:d9:c5:a1:be:ec:2f:92:d9:49:a7:1e:c0:fb:d8:
d9:43:46:cb:2a:9d:b8:8f:04:24:a6:4f:45:a0:27:1a:34:96:
75:17:6a:fe:7f:0a:fd:0c:09:86:d8:5b:bf:da:a8:60:31:8a:
db:e5:2b:79:19:e7:44:0b:e1:1b:1e:32:8e:51:90:27:46:8b:
5b:f0:84:6a:9a:1c:1d:f1:f6:1d:09:52:08:d7:9c:69:39:d4:
9c:a1:24:31:a5:d5:9e:2e:08:35:6d:94:10:8e:0d:04:f6:4b:
62:c4:37:07:a0:5d:43:db:da:91:91:9e:04:9c:38:1d:ca:c8:
0b:b8:ed:16:ae:17:ad:81:55:aa:13:25:69:1b:82:60:87:e9:
47:a4:49:40:e3:c7:80:a7:f1:26:f4:ce:c3:cc:c4:a5:1b:4a:
b1:c1:42:da:f8:31:33:33:db:5c:fe:cc:22:f7:a2:83:3c:03:
28:30:0a:7b:bd:d1:6a:79:56:cf:42:13:a8:9d:80:51:dc:9a:
ff:55:a1:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:54 2024 by rpki-client on console-ams.rpki-client.org