Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3233332e3136302e302f31392d3234203d3e20383334.roa
File: 3134302e3233332e3136302e302f31392d3234203d3e20383334.roa (raw, json)
Hash identifier: cnUvwZjZpW46ycyyN5teBa19jQLkTwS7ayJAXrq24vc=
Subject key identifier: BA:07:76:A0:98:02:3F:27:6F:23:67:70:CB:1A:6A:A5:C5:E3:B1:E6
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 6309011089D49BF0F915F04F8C19F25B9B224A95
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3233332e3136302e302f31392d3234203d3e20383334.roa
Signing time: Mon 12 Feb 2024 05:23:43 +0000
ROA not before: Mon 12 Feb 2024 05:18:43 +0000
ROA not after: Mon 10 Feb 2025 05:23:43 +0000
asID: 834
IP address blocks: 140.233.160.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Feb 2024 11:11:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:09:01:10:89:d4:9b:f0:f9:15:f0:4f:8c:19:f2:5b:9b:22:4a:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Feb 12 05:18:43 2024 GMT
Not After : Feb 10 05:23:43 2025 GMT
Subject: CN=BA0776A098023F276F236770CB1A6AA5C5E3B1E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:78:68:f7:e0:92:18:2b:74:6d:b9:5c:f1:1c:
fe:b9:b0:c2:02:7e:8f:92:b5:84:bd:b9:1e:32:7f:
ee:9f:08:bc:cd:f9:30:85:98:fe:79:fe:19:a4:25:
3a:1f:4b:0e:a1:a1:d9:f0:16:1e:60:2e:00:da:15:
48:4b:ee:c1:03:2c:2e:3c:68:71:55:e1:99:29:fb:
ca:4f:ac:60:a6:06:b4:75:c2:e1:cf:31:4a:41:bf:
f4:a4:d2:f5:b7:b8:21:05:fe:11:8c:72:35:06:55:
64:21:6b:a0:ce:aa:19:1b:a2:3e:95:8c:42:4f:48:
21:a5:24:ec:26:c5:22:f2:df:c9:01:4a:b3:50:24:
5b:7e:e1:81:35:40:c4:c3:1f:e0:b5:8c:cc:81:70:
5f:2c:b7:ed:af:9d:51:5b:c3:af:01:9e:c7:5e:2f:
3a:dd:5a:96:3f:1c:38:d1:a9:c2:f8:59:aa:07:45:
30:a7:0c:3e:b4:5b:6d:23:42:3c:97:f8:7e:a0:0a:
58:6b:67:35:23:aa:46:42:e6:08:e5:3e:95:9e:de:
10:d2:e6:83:58:97:41:e6:6d:76:6c:c4:cd:24:8f:
f0:7e:36:37:f0:89:b7:11:b4:9b:64:38:fe:fa:a3:
14:42:e0:0c:16:71:0f:61:6b:a4:d5:da:38:ec:86:
1b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:07:76:A0:98:02:3F:27:6F:23:67:70:CB:1A:6A:A5:C5:E3:B1:E6
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3233332e3136302e302f31392d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.233.160.0/19
Signature Algorithm: sha256WithRSAEncryption
8a:37:b2:f4:cd:c1:20:97:a1:51:95:bd:d0:69:df:6d:a9:0d:
e1:c0:96:7f:1e:a4:23:8d:30:8c:2a:2c:cb:ba:52:59:53:26:
a9:83:21:51:d5:e5:bb:08:a6:6c:7f:c1:9c:b2:f8:43:45:d8:
ca:b5:34:4b:90:ca:96:00:4e:95:01:0c:2b:52:08:d9:4a:20:
91:ac:f9:f2:3a:f0:ce:df:60:67:37:45:8a:91:b3:21:d3:cc:
dc:9e:12:22:08:a7:85:ad:60:b4:e5:a9:97:a7:aa:cf:83:cf:
f7:01:77:99:70:07:cf:f0:c6:26:9a:de:57:ec:5c:44:73:67:
d1:dc:4f:c8:05:72:a2:e1:98:8a:4c:84:e1:6c:8d:27:d6:6c:
ba:4d:a9:b1:69:f3:bd:a8:50:ad:de:55:22:b5:55:66:37:b8:
5a:bc:f7:9e:e7:16:b7:88:69:17:c8:03:cf:d9:b9:b6:53:5b:
8e:f1:47:9c:68:58:d1:db:47:30:96:46:a1:67:3e:af:c9:0f:
5e:40:3e:7d:26:f5:28:6e:be:b4:9c:5c:6b:0d:c0:12:59:c6:
f6:98:18:e3:37:68:b7:cd:b1:2c:9b:33:6e:07:50:b3:6a:b1:
86:98:6c:18:ec:24:fe:ed:e5:a4:3a:c9:f1:a0:f7:68:65:a2:
f4:74:35:8e
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUYwkBEInUm/D5FfBPjBnyW5siSpUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi
MjQ2YmZjYzAeFw0yNDAyMTIwNTE4NDNaFw0yNTAyMTAwNTIzNDNaMDMxMTAvBgNV
BAMTKEJBMDc3NkEwOTgwMjNGMjc2RjIzNjc3MENCMUE2QUE1QzVFM0IxRTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgeGj34JIYK3RtuVzxHP65sMIC
fo+StYS9uR4yf+6fCLzN+TCFmP55/hmkJTofSw6hodnwFh5gLgDaFUhL7sEDLC48
aHFV4Zkp+8pPrGCmBrR1wuHPMUpBv/Sk0vW3uCEF/hGMcjUGVWQha6DOqhkboj6V
jEJPSCGlJOwmxSLy38kBSrNQJFt+4YE1QMTDH+C1jMyBcF8st+2vnVFbw68Bnsde
LzrdWpY/HDjRqcL4WaoHRTCnDD60W20jQjyX+H6gClhrZzUjqkZC5gjlPpWe3hDS
5oNYl0HmbXZsxM0kj/B+NjfwibcRtJtkOP76oxRC4AwWcQ9ha6TV2jjshhuNAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUugd2oJgCPydvI2dwyxpqpcXjseYwHwYDVR0j
BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy
NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK
R3Y4dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMDliZTNhYWUt
YWVhMS00MWRjLWIxYjktOTVhYzU5MTgyNDRkLzAvMzEzNDMwMmUzMjMzMzMyZTMx
MzYzMDJlMzAyZjMxMzkyZDMyMzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBYzp
oDANBgkqhkiG9w0BAQsFAAOCAQEAijey9M3BIJehUZW90GnfbakN4cCWfx6kI40w
jCosy7pSWVMmqYMhUdXluwimbH/BnLL4Q0XYyrU0S5DKlgBOlQEMK1II2Uogkaz5
8jrwzt9gZzdFipGzIdPM3J4SIginha1gtOWpl6eqz4PP9wF3mXAHz/DGJpreV+xc
RHNn0dxPyAVyouGYikyE4WyNJ9Zsuk2psWnzvahQrd5VIrVVZje4Wrz3nucWt4hp
F8gDz9m5tlNbjvFHnGhY0dtHMJZGoWc+r8kPXkA+fSb1KG6+tJxcaw3AElnG9pgY
4zdot82xLJszbgdQs2qxhphsGOwk/u3lpDrJ8aD3aGWi9HQ1jg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:54 2024 by rpki-client on console-ams.rpki-client.org