Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3233332e3132382e302f31392d3234203d3e203136353039.roa
File: 3134302e3233332e3132382e302f31392d3234203d3e203136353039.roa (raw, json)
Hash identifier: mBk3jYIL50ZjCjfAr2YQN4AUq631JZrFGPlaghjKXWI=
Subject key identifier: 94:41:F0:1B:CC:BA:C2:67:08:11:CD:9E:49:44:D0:31:C1:AB:B7:EE
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 3C587C793B795066286085E51B069135FBEA69
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3233332e3132382e302f31392d3234203d3e203136353039.roa
Signing time: Wed 14 Feb 2024 11:23:33 +0000
ROA not before: Wed 14 Feb 2024 11:18:33 +0000
ROA not after: Wed 12 Feb 2025 11:23:33 +0000
asID: 16509
IP address blocks: 140.233.128.0/19 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 Apr 2024 11:09:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:58:7c:79:3b:79:50:66:28:60:85:e5:1b:06:91:35:fb:ea:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Feb 14 11:18:33 2024 GMT
Not After : Feb 12 11:23:33 2025 GMT
Subject: CN=9441F01BCCBAC2670811CD9E4944D031C1ABB7EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ce:8c:a2:1d:58:a4:09:b2:31:a6:e7:0c:41:
f3:a9:46:26:49:16:47:cc:38:d2:c8:80:50:9f:b1:
59:f2:1d:06:85:36:df:23:05:c2:75:bf:32:b3:b3:
d7:64:57:f8:9d:52:75:d0:fe:e3:4d:0b:d9:ed:65:
58:32:11:75:dc:16:af:5d:46:7b:21:ff:7a:11:29:
dd:b7:58:33:ee:ac:18:06:d3:99:8d:66:e0:18:a9:
57:8c:6f:6d:3c:f2:06:b2:9b:6e:20:ae:f3:78:26:
75:d0:1d:ef:af:7f:81:2e:02:38:91:00:ee:cd:28:
4b:be:61:8b:0e:48:51:84:ce:00:bf:0a:75:e9:bf:
ff:61:4d:3f:b0:e0:2f:03:50:53:df:fe:e0:d2:21:
8a:aa:70:70:1c:94:cd:c7:e0:62:28:bd:f7:31:0c:
9e:c0:68:b2:15:83:6b:c4:84:63:11:c9:98:e6:ab:
20:f6:6f:26:01:d0:d8:6d:0f:fb:05:4d:8f:b2:ce:
86:e1:91:b0:5c:31:41:75:00:8e:75:ea:fa:8c:3e:
a8:3a:56:44:55:14:66:90:dc:ef:b0:22:7e:7b:c2:
44:cc:50:13:68:57:f1:74:d9:b3:d0:b9:62:19:52:
5b:c2:40:47:da:2d:07:2d:94:cb:2b:e3:b9:4e:17:
45:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:41:F0:1B:CC:BA:C2:67:08:11:CD:9E:49:44:D0:31:C1:AB:B7:EE
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3233332e3132382e302f31392d3234203d3e203136353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.233.128.0/19
Signature Algorithm: sha256WithRSAEncryption
80:2a:7d:c7:05:5c:f4:37:dd:bd:31:0a:1d:33:27:23:da:c1:
d2:81:2b:00:95:ee:2e:38:9e:63:df:ae:7b:6d:56:56:2b:72:
9f:f4:cd:11:24:62:85:a6:3e:62:8d:8b:bf:0b:ba:eb:85:db:
cd:1f:4a:e3:9d:27:13:07:ad:a8:b6:e3:fc:46:5d:c2:a3:ea:
4c:61:04:f0:7c:bc:bd:bf:db:93:32:c7:06:c6:86:e5:fa:81:
09:8f:2d:92:d5:89:fe:22:8a:c2:80:e9:01:a0:20:e3:bf:2e:
51:91:b1:c6:2a:45:17:16:61:bd:5c:91:95:c3:e1:cf:91:e4:
8a:ab:16:cc:f4:2d:1c:12:c2:2f:ab:b5:ef:67:ec:4e:cd:f3:
ac:10:4e:96:6d:11:a8:5c:94:8e:d6:97:a7:92:c4:54:12:78:
ed:ce:38:ab:39:f3:4d:c5:6f:b3:76:6b:11:84:c2:df:eb:78:
20:27:ce:b2:4e:eb:4d:df:d6:00:3e:2d:62:2a:40:4f:bd:c4:
79:c6:49:ac:e3:2c:c5:4e:29:b1:18:df:09:c9:45:4b:20:72:
9f:df:3e:96:91:91:52:15:f8:31:4a:15:cf:f9:fe:83:6e:59:
1a:88:fe:a0:2b:3d:45:00:59:3d:bc:26:0d:68:46:cb:28:f7:
67:0b:2c:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:54 2024 by rpki-client on console-ams.rpki-client.org