Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3233322e302f32322d3234203d3e20333939393736.roa
File: 3134302e3135302e3233322e302f32322d3234203d3e20333939393736.roa (raw, json)
Hash identifier: QginPlI4C8ZoOIZdobm2GP8IMCaB+wxmkW3+ceOHAGs=
Subject key identifier: 22:B3:7E:6C:85:B8:7B:A1:FF:1B:F1:BA:FC:93:59:38:73:FB:AF:80
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 14CF8A1FAAD67CCE4365956F296ED879C8FEECB4
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3233322e302f32322d3234203d3e20333939393736.roa
Signing time: Sat 01 Apr 2023 23:33:30 +0000
ROA not before: Sat 01 Apr 2023 23:28:30 +0000
ROA not after: Sat 30 Mar 2024 23:33:30 +0000
asID: 399976
IP address blocks: 140.150.232.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:cf:8a:1f:aa:d6:7c:ce:43:65:95:6f:29:6e:d8:79:c8:fe:ec:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Apr 1 23:28:30 2023 GMT
Not After : Mar 30 23:33:30 2024 GMT
Subject: CN=22B37E6C85B87BA1FF1BF1BAFC93593873FBAF80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a8:6e:cf:21:c2:81:9c:d9:82:45:a8:c8:4e:
b2:db:49:17:1a:66:91:e2:bd:58:43:f3:4d:92:19:
f7:f1:9c:aa:82:bc:64:67:2b:dd:d0:18:e7:e5:62:
c9:34:e4:09:1a:a1:6e:53:07:28:6e:0a:27:5d:3d:
d1:54:f3:f8:d1:ee:1a:df:3b:9f:06:98:16:8c:00:
3b:28:df:4a:32:1a:d2:95:fc:a5:4b:fb:e0:fc:5f:
c7:4e:b3:35:a1:25:fe:a5:65:57:b9:1a:a2:e8:a8:
f7:06:5c:00:49:3f:11:7e:ab:b8:ab:f8:2a:d5:eb:
70:d3:54:68:de:23:49:a8:96:2b:14:77:fd:30:6a:
04:a9:23:f1:83:77:08:65:da:90:53:8c:58:45:be:
71:36:be:26:a9:39:15:2a:0a:0d:45:c0:52:aa:14:
1b:83:18:2c:84:cd:a3:b9:eb:11:6f:47:67:56:a9:
52:95:4f:d6:7c:d1:9f:ea:32:eb:c4:ce:91:c3:ba:
01:5a:48:e2:4a:c3:d1:4a:d5:80:3b:36:4c:b8:69:
24:8c:2e:2c:18:fe:d5:87:f8:ee:18:d7:5a:03:07:
1f:b1:0c:fa:c7:87:99:c2:27:41:aa:03:87:23:c1:
84:d4:93:52:26:8f:e9:55:33:51:77:32:9f:76:93:
f1:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:B3:7E:6C:85:B8:7B:A1:FF:1B:F1:BA:FC:93:59:38:73:FB:AF:80
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3233322e302f32322d3234203d3e20333939393736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.232.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:32:22:98:1c:8b:b3:63:1e:64:e9:ea:9c:5d:9c:ad:ee:9e:
f2:ac:aa:9f:00:67:41:15:e5:d3:22:d5:6e:24:75:a7:5d:95:
40:68:c5:bf:6a:fb:09:6c:09:7d:42:d8:9f:53:69:03:6c:0a:
90:68:cf:b1:9e:e2:a1:e5:5a:31:d6:55:42:59:ac:b5:3d:3c:
2a:8d:06:d0:7b:26:8b:0b:a6:6e:b1:db:47:a9:03:9a:48:d9:
eb:4a:61:a2:a0:24:5f:39:19:1f:9e:90:dd:79:94:7c:af:94:
b3:60:bc:d0:c3:d2:fe:f8:3e:bb:5f:80:b3:02:ab:fa:57:8c:
f2:99:3c:ce:37:9f:93:4e:99:3f:46:a8:6c:ae:8b:1a:e3:8f:
3e:22:7a:d7:ff:95:3c:2c:03:95:80:c1:7c:28:d9:36:ea:8a:
b6:74:60:aa:e2:92:33:8a:15:0e:b1:ca:ac:fc:37:bf:2f:b6:
8a:6c:e6:b3:76:1b:95:76:0f:79:06:9c:c9:a7:87:1a:b4:89:
c0:9f:41:c9:65:7e:fa:60:69:72:0c:09:69:56:13:16:13:ef:
d8:11:67:7a:16:6c:f9:2f:77:83:2a:15:d3:14:01:e7:99:01:
c4:20:82:ab:50:af:e2:4d:35:68:52:5e:66:4e:4f:e4:28:e4:
ae:45:73:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:55 2023 by rpki-client on console-fra.rpki-client.org