Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3138342e302f32312d3234203d3e203339353231.roa
File: 3134302e3135302e3138342e302f32312d3234203d3e203339353231.roa (raw, json)
Hash identifier: x3+9B4xN2PlmmCmiKaVHpdk95mBDe3PVnIqijNbaTsU=
Subject key identifier: 71:FA:71:24:BA:C1:14:9E:56:77:F1:03:C7:32:80:B8:B1:2A:E6:95
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 55BA2B03DA9B5E7AB376AFEAFD22D329D35FB6AB
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3138342e302f32312d3234203d3e203339353231.roa
Signing time: Fri 16 Feb 2024 20:05:12 +0000
ROA not before: Fri 16 Feb 2024 20:00:12 +0000
ROA not after: Fri 14 Feb 2025 20:05:12 +0000
asID: 39521
IP address blocks: 140.150.184.0/21 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 Apr 2024 11:09:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:ba:2b:03:da:9b:5e:7a:b3:76:af:ea:fd:22:d3:29:d3:5f:b6:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Feb 16 20:00:12 2024 GMT
Not After : Feb 14 20:05:12 2025 GMT
Subject: CN=71FA7124BAC1149E5677F103C73280B8B12AE695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0a:8a:02:a3:26:99:8c:a1:be:c2:89:b0:50:
ac:4b:30:18:75:1f:f0:8a:02:5c:38:c2:24:e9:a9:
86:27:ba:df:a7:58:7e:d2:bc:4b:79:bd:ca:70:b5:
79:e9:08:52:22:15:13:51:b3:2f:8e:70:0d:e9:a1:
a3:a1:20:e6:a7:da:a2:52:ce:c5:be:e7:2a:27:d3:
48:5a:c4:e4:1d:9d:1c:1e:1e:dd:86:8c:ef:76:ea:
73:fb:85:dd:75:83:6a:7f:0e:ff:92:fa:5d:75:c5:
19:69:32:17:9b:2c:de:b0:86:bb:e3:f4:78:a8:eb:
a4:ad:02:3a:e4:5c:fb:44:55:80:93:72:42:8b:f7:
5b:6b:31:d0:fa:9f:b9:b6:f0:d6:7f:73:8c:10:b9:
a6:9c:2e:04:d0:4c:e8:d2:d6:a5:f8:e6:67:a9:90:
e2:77:b1:65:3e:d3:b0:75:49:13:22:46:75:a6:76:
7c:52:82:99:8f:7b:a9:ef:fc:fe:58:34:69:1f:a7:
49:9b:9f:21:d9:56:51:a5:5b:22:49:11:e0:ca:54:
0d:b1:97:67:66:c9:41:55:d4:cc:53:e8:3a:8d:c3:
c9:c0:b6:d5:94:52:1f:b9:fb:71:01:41:40:ad:a4:
ad:24:3d:ee:dc:29:78:7c:f1:89:72:ba:10:56:29:
44:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:FA:71:24:BA:C1:14:9E:56:77:F1:03:C7:32:80:B8:B1:2A:E6:95
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3138342e302f32312d3234203d3e203339353231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.184.0/21
Signature Algorithm: sha256WithRSAEncryption
90:ea:19:67:43:ab:8b:39:5b:a7:0b:28:2e:ec:04:95:0f:18:
e4:e3:15:73:a5:74:98:7f:3f:0e:a7:c7:83:5b:1a:e1:5b:eb:
88:6e:e9:fb:b2:97:30:fe:0e:f4:37:72:51:ce:e2:d0:17:09:
45:2b:42:c9:72:18:dc:49:3f:c8:35:93:a5:ea:c6:fc:3f:02:
7e:f2:90:0d:3d:a1:d8:ae:e3:cb:bf:f3:8b:16:19:f1:3b:ef:
f4:f8:6a:02:77:51:33:2b:4e:f4:af:95:3d:1d:1e:48:2e:e5:
23:7d:5c:f5:1b:91:43:2f:87:37:26:30:43:cb:77:fe:99:19:
5b:fe:45:ff:94:93:72:56:07:08:8a:19:ce:19:68:2b:2e:43:
34:a5:76:7d:9c:fd:7a:b6:e2:fb:39:90:8b:55:f8:3a:0f:8e:
24:c7:f5:7d:a2:e3:61:1e:48:9b:3a:e1:46:79:e0:09:92:14:
15:31:88:95:97:57:5f:91:67:7c:07:b4:ed:ac:77:e3:44:1c:
b4:7b:b6:73:06:08:f3:28:02:b7:87:bc:86:17:75:e4:93:0e:
33:bc:22:b5:48:31:90:e4:e2:83:02:24:8a:34:42:11:c1:e5:
35:09:2c:0a:72:da:59:ef:ef:e4:62:fa:3b:7e:32:52:2b:5a:
e5:d3:2c:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-fra.rpki-client.org