Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3137362e302f32312d3231203d3e203236353438.roa
File: 3134302e3135302e3137362e302f32312d3231203d3e203236353438.roa (raw, json)
Hash identifier: 0pg/7OV+Mq/67epxkGUTbxpNbmtan1TgEHZ9Q63PMNU=
Subject key identifier: 1D:B8:43:D5:87:CD:E3:93:AA:1C:1C:B4:0E:92:70:A6:C8:35:F1:48
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 135A67C47200D65C6D10146FC953873B7305E002
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3137362e302f32312d3231203d3e203236353438.roa
Signing time: Thu 07 Mar 2024 17:51:48 +0000
ROA not before: Thu 07 Mar 2024 17:46:48 +0000
ROA not after: Thu 06 Mar 2025 17:51:48 +0000
asID: 26548
IP address blocks: 140.150.176.0/21 maxlen: 21
Validation: Failed, certificate revoked on Sat 06 Apr 2024 11:09:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:5a:67:c4:72:00:d6:5c:6d:10:14:6f:c9:53:87:3b:73:05:e0:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 7 17:46:48 2024 GMT
Not After : Mar 6 17:51:48 2025 GMT
Subject: CN=1DB843D587CDE393AA1C1CB40E9270A6C835F148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:51:00:61:9e:6d:4d:4c:9c:5f:4e:51:51:fd:
eb:99:b2:33:dc:36:78:a5:a0:77:32:36:f5:57:c7:
b3:82:b5:2e:0c:b7:97:9a:29:d3:3e:d4:78:06:2e:
a5:89:fb:27:fd:2d:81:16:9b:41:98:61:45:d5:52:
db:b0:b2:f9:d8:3a:c2:2f:08:39:90:62:a7:54:80:
ec:7f:72:a1:f1:7d:7e:ed:c4:45:c2:73:43:d6:f9:
6d:12:ad:05:df:2d:b5:b3:d8:57:f9:64:2e:b3:d3:
c1:6a:cf:5a:cd:63:16:db:78:f4:0e:25:32:76:06:
93:3f:a0:6e:85:d4:85:3c:49:f9:3e:ad:48:c6:cd:
dd:14:e7:40:04:5c:3d:0a:bb:ae:30:87:98:83:06:
9e:6a:b1:42:84:17:49:63:d8:d6:b4:b9:85:23:c3:
8c:1b:d6:44:6d:a9:ac:7a:16:b5:55:e9:d8:53:46:
ca:45:a1:a4:67:28:87:85:9b:d9:7f:0a:07:4d:31:
23:32:45:0f:ea:47:cf:25:14:20:8d:24:75:3b:45:
07:63:39:2b:1e:ab:21:a1:77:20:89:59:16:63:e9:
e4:3a:12:1d:5f:99:09:5f:ab:69:de:a0:0e:de:cc:
6e:86:24:35:5b:c1:3e:0e:80:44:5a:16:75:b1:f5:
55:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:B8:43:D5:87:CD:E3:93:AA:1C:1C:B4:0E:92:70:A6:C8:35:F1:48
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3137362e302f32312d3231203d3e203236353438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.176.0/21
Signature Algorithm: sha256WithRSAEncryption
78:fd:16:d0:5b:83:2e:d3:d9:46:05:98:0f:82:4f:6e:26:50:
4f:c7:47:7d:6f:bd:7c:a5:51:12:e4:1f:4a:1c:45:73:26:41:
2d:ed:fb:3f:80:5d:50:20:9c:b2:f1:39:6f:b5:f1:20:32:7f:
c4:b9:37:61:eb:03:93:87:f1:b5:ec:b4:21:78:1e:da:29:b7:
62:be:ef:79:dd:c4:6a:59:f4:ae:a7:01:6f:ef:82:08:14:f6:
bd:69:67:2f:4b:1e:62:f1:c9:bc:80:40:2b:00:bb:ba:17:9a:
09:b3:e0:ad:69:19:e6:c5:87:5d:41:c1:b7:4a:1a:ba:e6:b1:
c0:43:86:eb:cc:f6:0c:9b:19:8e:73:25:f2:87:99:92:58:7a:
3a:cf:2a:a7:8e:fd:2a:f9:be:7e:85:ab:f1:07:dd:93:c5:17:
54:24:d7:db:db:dd:9e:4b:3a:c4:fd:99:ce:07:38:2f:01:65:
71:65:d4:ab:b1:af:ec:c7:aa:5e:31:cd:94:55:4e:6b:6b:83:
7b:7b:00:1d:dd:65:18:6e:ad:f5:46:c4:16:31:6e:da:53:f3:
1b:f0:45:22:a4:0f:2e:8b:bd:cd:e5:d8:40:3c:29:71:98:83:
52:da:d0:27:02:44:d8:39:eb:76:a1:97:d8:58:ca:39:2b:7e:
33:8d:a4:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 6 11:51:06 2024 by rpki-client on console-ams.rpki-client.org