Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3136382e302f32312d3234203d3e20383334.roa
File: 3134302e3135302e3136382e302f32312d3234203d3e20383334.roa (raw, json)
Hash identifier: oTZ5z+EiGkUUcCDL5Kj6qRU5e9qRiluZhyqeiHYBTXo=
Subject key identifier: 72:42:26:2E:45:AE:1A:BD:4C:A3:11:AA:00:1B:56:1B:52:BD:9D:92
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 7949D820AD862D0BD16CBCEF0573D59B8155F64E
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3136382e302f32312d3234203d3e20383334.roa
Signing time: Sun 16 Jul 2023 00:00:10 +0000
ROA not before: Sat 15 Jul 2023 23:55:10 +0000
ROA not after: Sun 14 Jul 2024 00:00:10 +0000
asID: 834
IP address blocks: 140.150.168.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 Nov 2023 14:06:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:49:d8:20:ad:86:2d:0b:d1:6c:bc:ef:05:73:d5:9b:81:55:f6:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Jul 15 23:55:10 2023 GMT
Not After : Jul 14 00:00:10 2024 GMT
Subject: CN=7242262E45AE1ABD4CA311AA001B561B52BD9D92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:1b:e6:36:23:62:5a:c4:90:eb:56:c6:db:85:
9d:48:82:f3:51:f3:13:6f:e1:f5:63:97:44:45:84:
d5:08:0e:76:bb:46:9c:a6:d8:34:80:0f:01:5a:3c:
e8:e9:cd:63:65:a8:12:5f:72:a6:ec:ea:8a:8f:ad:
0c:08:32:4f:e9:06:3c:a6:ed:89:b7:d7:01:64:dc:
fb:ae:6d:65:f4:90:1f:b8:60:42:1a:56:2b:23:92:
c4:49:5d:2c:6d:a9:a7:4a:4f:94:b4:d1:d6:fa:5f:
a6:76:fe:71:f6:1b:34:c5:5c:18:4b:f5:70:07:44:
25:74:0b:f2:ea:8d:0d:f3:51:09:5d:74:a6:ff:eb:
eb:ee:d7:18:20:1e:11:e3:85:b4:ba:16:c4:f1:93:
df:48:38:ac:61:99:18:4f:c9:bc:1d:72:06:3e:8f:
73:6c:2e:93:66:77:ec:20:ea:6b:4f:b4:91:3b:3b:
72:d1:8e:44:c2:25:13:64:9c:2b:5c:dd:93:53:91:
b3:3d:d2:ff:45:29:ed:9c:e4:35:79:b8:93:23:9c:
8d:41:db:ac:c3:67:8b:f2:47:f5:51:66:a7:b2:ec:
01:70:aa:f8:0e:d7:86:35:1e:c3:21:cb:c1:e2:08:
e9:ad:de:4f:60:43:c2:59:dc:b4:3f:d5:8c:e7:3a:
27:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:42:26:2E:45:AE:1A:BD:4C:A3:11:AA:00:1B:56:1B:52:BD:9D:92
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3136382e302f32312d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.168.0/21
Signature Algorithm: sha256WithRSAEncryption
0b:a6:1d:7c:73:18:cd:8d:e4:e7:50:59:76:0f:24:2a:d5:0f:
e7:d0:7f:2a:fb:f5:a7:ca:ce:18:64:c8:2e:6d:b4:7a:71:2f:
0f:74:28:12:03:56:cf:06:34:b2:4f:6a:96:6b:eb:31:cf:26:
2d:13:f1:19:d1:4a:07:27:99:dc:37:60:e0:5f:4d:5d:e3:6a:
87:b1:db:ae:d5:03:12:62:29:f8:5a:23:c9:53:77:ee:46:29:
e2:d9:28:d5:2f:b8:ec:5f:ca:b5:57:fc:a1:9e:d1:81:4f:a5:
97:b1:d4:cb:b0:82:86:14:68:b8:b5:9a:c9:cb:f1:31:5a:f3:
73:f0:97:f2:32:43:01:09:95:95:d2:20:27:c9:c7:98:e7:92:
0b:32:e9:d5:2e:bf:62:22:e1:eb:80:a3:3c:65:92:4d:00:be:
07:3a:2a:82:40:08:9c:a2:8c:cf:36:d6:a1:9f:0c:30:0d:ff:
9f:16:fc:40:fc:31:44:fb:57:ed:42:ba:b1:23:3e:5b:cf:39:
5c:da:5c:cb:f2:e9:b3:5c:34:2d:8b:8d:b0:94:aa:37:aa:ac:
2f:23:81:47:79:57:bc:35:7d:ff:71:78:19:db:4f:42:e0:78:
24:f3:01:03:d7:c9:5d:fa:55:c0:93:3f:d4:10:27:ef:d1:fb:
3c:a6:f5:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org