Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3233332e3136302e302f32322d3232203d3e20313734.roa
File: 3134302e3233332e3136302e302f32322d3232203d3e20313734.roa (raw, json)
Hash identifier: E7y9ZqvW2NDw76rYIpWEtrqgflVM2Z941AgNulIkVIY=
Subject key identifier: 06:3E:17:7B:04:A2:18:CF:1A:36:9C:FA:64:91:69:D5:F5:D6:E6:1A
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 2ADB8C659B57A949E9B0BAB327A4FC712629FEA7
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3233332e3136302e302f32322d3232203d3e20313734.roa
Signing time: Tue 20 Feb 2024 20:29:01 +0000
ROA not before: Tue 20 Feb 2024 20:24:01 +0000
ROA not after: Tue 18 Feb 2025 20:29:01 +0000
asID: 174
IP address blocks: 140.233.160.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sat 06 Apr 2024 11:09:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:db:8c:65:9b:57:a9:49:e9:b0:ba:b3:27:a4:fc:71:26:29:fe:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Feb 20 20:24:01 2024 GMT
Not After : Feb 18 20:29:01 2025 GMT
Subject: CN=063E177B04A218CF1A369CFA649169D5F5D6E61A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:7d:1e:84:2f:e1:2f:3e:94:23:ed:83:d9:fe:
92:b8:a5:3c:4c:e6:db:09:7c:ab:28:3a:f2:e6:ee:
8b:c2:b5:da:9a:26:08:e3:f4:c4:a4:0c:9d:a8:d8:
5e:f4:5b:96:e5:f1:0c:01:e0:7f:07:ab:b9:81:5c:
5f:06:84:66:98:6b:8b:2b:a0:65:fc:20:38:25:64:
f2:43:c8:2a:3d:b7:59:4d:83:b4:05:8b:c4:b5:83:
98:e2:d6:b3:63:fc:ac:94:c8:43:a7:d6:ef:6a:56:
58:4c:58:ab:c7:88:fb:8d:f5:41:48:97:35:aa:a2:
01:8f:76:62:50:1d:4a:2e:d4:a0:14:06:31:53:ca:
1b:f0:2d:8f:85:59:6b:13:71:60:cd:a3:20:d5:27:
31:07:7b:dd:d7:cc:25:08:0d:94:de:a9:56:7b:77:
b9:12:5b:0a:ad:b9:fa:90:b0:05:46:e2:22:90:38:
a9:b3:0f:8e:a7:cc:fd:6c:12:16:23:40:79:6c:fb:
34:fc:4d:8a:df:f7:82:28:fe:4e:a1:d6:a6:b4:18:
8d:30:51:03:e5:38:83:50:4a:90:56:aa:f9:7b:54:
3d:3f:9b:9b:d2:4e:c7:eb:bd:21:65:51:2d:ba:1c:
54:51:d8:ce:22:55:be:c2:9b:d9:fb:7d:ed:bc:91:
f4:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:3E:17:7B:04:A2:18:CF:1A:36:9C:FA:64:91:69:D5:F5:D6:E6:1A
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3233332e3136302e302f32322d3232203d3e20313734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.233.160.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:b7:0b:2b:b3:56:f5:f0:d3:ba:94:6f:cd:f4:00:03:35:86:
6b:ec:71:ff:84:e5:73:f4:06:ae:fe:99:81:83:82:8e:25:9a:
c6:fa:61:26:ec:8e:41:29:b2:1e:57:be:54:3c:3e:68:43:7f:
9c:d5:3a:f1:42:cc:b9:c2:70:d0:6c:15:d9:8e:85:08:fb:c3:
ad:47:d6:07:f8:d6:1e:26:4a:c2:7f:f6:69:41:92:f2:95:68:
f4:04:84:e9:b5:6f:63:b5:81:7a:3a:7c:21:22:b7:e2:31:de:
fc:42:db:64:5a:fc:bf:d2:86:ae:39:2b:71:da:17:94:5c:3c:
a6:1f:c2:8b:4e:4e:48:24:63:b8:a2:99:3d:74:ba:cb:ac:92:
35:ee:54:2e:10:57:e0:67:c8:c4:1f:9b:ae:0f:27:12:ef:d1:
86:cc:63:99:a9:b7:d5:0a:a5:b9:57:3e:58:62:70:2a:ab:aa:
8f:38:9b:82:c1:78:5d:51:f6:38:bd:07:5e:33:04:67:ca:ff:
5b:d0:16:60:b2:bb:d0:e5:4a:e4:3a:86:bd:18:b8:22:9a:a2:
dc:45:e9:a8:34:5d:6b:b7:8c:31:57:f5:04:f3:73:12:1a:a2:
d7:74:e4:82:32:c6:60:f2:da:b7:33:89:21:db:77:d4:82:42:
cf:74:a8:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 6 11:51:06 2024 by rpki-client on console-ams.rpki-client.org