Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3233362e302f32322d3234203d3e20383334.roa
File: 3134302e3135302e3233362e302f32322d3234203d3e20383334.roa (raw, json)
Hash identifier: uKddAua2cvL9UCSrraDUkwCz743tNC7r3Lp2j+lKAps=
Subject key identifier: 43:57:D4:84:58:62:E4:3D:84:0F:54:9B:EC:5B:2B:E3:87:EA:C0:DE
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 4D08CCFBDCF85649B261E4C43DE233BD46E5ADD4
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3233362e302f32322d3234203d3e20383334.roa
Signing time: Wed 07 Feb 2024 00:00:05 +0000
ROA not before: Tue 06 Feb 2024 23:55:05 +0000
ROA not after: Wed 05 Feb 2025 00:00:05 +0000
asID: 834
IP address blocks: 140.150.236.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Feb 2024 03:42:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:08:cc:fb:dc:f8:56:49:b2:61:e4:c4:3d:e2:33:bd:46:e5:ad:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Feb 6 23:55:05 2024 GMT
Not After : Feb 5 00:00:05 2025 GMT
Subject: CN=4357D4845862E43D840F549BEC5B2BE387EAC0DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:35:e6:56:7c:56:f8:d0:fc:28:7c:7a:14:8c:
e3:94:6c:1c:54:11:2b:7d:b8:a2:b6:67:fa:80:90:
51:7b:52:48:06:ae:6d:6f:a9:70:5e:b1:9b:7b:f0:
12:3c:50:73:ef:09:20:14:f0:e8:53:70:64:16:d4:
c9:9e:33:63:de:23:74:4e:a1:6b:0a:ff:eb:c0:a2:
16:3d:c0:62:04:60:8e:ca:c0:f3:23:27:ab:50:9a:
c6:76:9c:5e:d2:6f:98:c7:88:01:1f:fc:02:ed:28:
07:b0:fc:52:80:ee:dd:88:19:f4:63:4f:0e:98:03:
bf:43:69:eb:a6:d6:7b:65:cb:31:09:7a:c3:fb:7e:
86:a6:f1:b2:9a:95:c2:fe:f7:14:c0:09:96:a8:72:
4b:87:99:30:00:20:f7:5a:91:bd:88:95:c2:e9:1f:
cd:b6:35:1c:5d:38:08:fb:01:d8:9a:f7:87:1b:27:
09:23:e0:2b:4e:91:4b:6c:e0:1f:33:3c:a2:88:c0:
55:06:ae:f8:59:03:d1:07:be:00:15:10:be:23:7f:
8e:5b:32:03:9b:81:4e:61:ba:01:99:15:06:0b:a3:
16:8c:53:ea:7f:2a:a5:16:f8:61:81:9b:ad:b2:2c:
f4:9f:b5:a6:83:b1:46:50:91:db:ae:04:2b:f3:9b:
b8:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:57:D4:84:58:62:E4:3D:84:0F:54:9B:EC:5B:2B:E3:87:EA:C0:DE
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3233362e302f32322d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.236.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:1c:af:b6:36:71:b5:ae:cc:1b:10:83:16:51:d0:bc:d8:c2:
2c:5b:4f:31:9a:af:44:68:47:73:f2:2e:95:26:2d:5d:c8:85:
d2:26:21:79:02:ec:69:15:84:5c:a7:d9:27:3f:11:01:4b:fb:
a7:97:a3:b5:18:2b:ed:84:6b:f7:34:0f:e6:33:2d:82:0a:82:
52:37:56:dd:00:05:70:d4:96:35:c0:02:9b:c7:62:a3:5a:b2:
1c:45:c9:00:0b:74:03:68:e6:b1:46:00:d0:7d:9c:84:76:e1:
bf:f6:85:e4:72:75:50:c0:10:fa:46:7e:87:74:89:26:fe:0f:
bb:e2:d6:75:65:33:03:7a:c6:84:2f:c1:44:e6:12:d0:dd:ed:
7a:1e:00:ce:de:f2:ad:97:b0:20:fe:cf:96:50:1f:d9:72:6a:
25:ae:69:77:dc:2a:45:8e:14:f8:1c:88:16:8e:08:4e:26:cb:
7e:f2:cd:9d:a0:76:b7:9a:3e:7c:6a:c7:7f:6a:12:b8:26:a9:
08:d6:ce:36:80:15:eb:fd:85:ed:73:e3:da:83:64:14:8a:6d:
53:3e:79:09:1b:ea:33:57:34:fb:7d:5e:e0:12:3b:57:49:44:
37:82:4a:7d:b3:22:db:e5:0b:04:01:ca:3a:1c:75:70:fd:e5:
be:48:e0:89
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUTQjM+9z4VkmyYeTEPeIzvUblrdQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi
MjQ2YmZjYzAeFw0yNDAyMDYyMzU1MDVaFw0yNTAyMDUwMDAwMDVaMDMxMTAvBgNV
BAMTKDQzNTdENDg0NTg2MkU0M0Q4NDBGNTQ5QkVDNUIyQkUzODdFQUMwREUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyNeZWfFb40PwofHoUjOOUbBxU
ESt9uKK2Z/qAkFF7UkgGrm1vqXBesZt78BI8UHPvCSAU8OhTcGQW1MmeM2PeI3RO
oWsK/+vAohY9wGIEYI7KwPMjJ6tQmsZ2nF7Sb5jHiAEf/ALtKAew/FKA7t2IGfRj
Tw6YA79Daeum1ntlyzEJesP7foam8bKalcL+9xTACZaockuHmTAAIPdakb2IlcLp
H822NRxdOAj7Adia94cbJwkj4CtOkUts4B8zPKKIwFUGrvhZA9EHvgAVEL4jf45b
MgObgU5hugGZFQYLoxaMU+p/KqUW+GGBm62yLPSftaaDsUZQkduuBCvzm7jRAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUQ1fUhFhi5D2ED1Sb7Fsr44fqwN4wHwYDVR0j
BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy
NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK
R3Y4dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMDliZTNhYWUt
YWVhMS00MWRjLWIxYjktOTVhYzU5MTgyNDRkLzAvMzEzNDMwMmUzMTM1MzAyZTMy
MzMzNjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAoyW
7DANBgkqhkiG9w0BAQsFAAOCAQEAXRyvtjZxta7MGxCDFlHQvNjCLFtPMZqvRGhH
c/IulSYtXciF0iYheQLsaRWEXKfZJz8RAUv7p5ejtRgr7YRr9zQP5jMtggqCUjdW
3QAFcNSWNcACm8dio1qyHEXJAAt0A2jmsUYA0H2chHbhv/aF5HJ1UMAQ+kZ+h3SJ
Jv4Pu+LWdWUzA3rGhC/BROYS0N3teh4Azt7yrZewIP7PllAf2XJqJa5pd9wqRY4U
+ByIFo4ITibLfvLNnaB2t5o+fGrHf2oSuCapCNbONoAV6/2F7XPj2oNkFIptUz55
CRvqM1c0+31e4BI7V0lEN4JKfbMi2+ULBAHKOhx1cP3lvkjgiQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:54 2024 by rpki-client on console-ams.rpki-client.org