Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3233332e3136342e302f32322d3234203d3e20383334.roa
File: 3134302e3233332e3136342e302f32322d3234203d3e20383334.roa (raw, json)
Hash identifier: sJGYOu0bY5BZdAqC3vgBH5fuUlKi1eFscaz2moOYStw=
Subject key identifier: F9:1D:20:3E:8A:71:DD:6D:46:71:80:B0:BD:AD:A4:CA:C4:02:1D:CC
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 3E95FB766D0BDAB9C2A637F572371D7418E8A1E3
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3233332e3136342e302f32322d3234203d3e20383334.roa
Signing time: Tue 20 Feb 2024 20:30:18 +0000
ROA not before: Tue 20 Feb 2024 20:25:18 +0000
ROA not after: Tue 18 Feb 2025 20:30:18 +0000
asID: 834
IP address blocks: 140.233.164.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 Apr 2024 11:07:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:95:fb:76:6d:0b:da:b9:c2:a6:37:f5:72:37:1d:74:18:e8:a1:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Feb 20 20:25:18 2024 GMT
Not After : Feb 18 20:30:18 2025 GMT
Subject: CN=F91D203E8A71DD6D467180B0BDADA4CAC4021DCC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:36:c8:57:90:b2:7f:2b:eb:55:f0:ef:03:e5:
02:e7:24:5e:99:d8:52:5c:30:7e:c2:42:52:31:59:
6b:17:e8:66:74:26:3d:2b:c3:c2:90:d6:46:40:c0:
a7:f9:9a:f6:0b:cc:1a:99:2b:4c:ca:2f:1c:6f:26:
5a:55:b7:de:4b:22:ca:0f:7b:63:c7:b5:31:8a:87:
fd:1a:cc:17:65:fd:da:60:7a:4c:7e:18:93:8c:5b:
57:2d:d0:f1:4c:b4:72:a0:f6:2a:e9:6c:00:95:87:
bb:b8:0d:99:0e:db:6a:72:a3:19:76:c9:a8:db:d4:
d2:91:fd:c8:b7:2d:e8:99:c6:f7:c9:d3:9a:b3:fa:
55:51:39:e5:3c:8e:17:2e:4d:70:b6:ee:12:e3:dd:
e1:75:1a:78:eb:5f:b7:c6:7c:65:e7:31:14:e0:47:
82:7f:1b:4c:ed:81:95:79:52:f3:cf:84:ab:c5:4f:
19:13:64:9f:f4:85:f2:53:d6:e4:00:64:ef:12:1a:
f0:52:fe:0f:fa:46:56:19:7b:5b:a1:06:82:f0:ba:
fe:94:88:39:a9:97:fb:22:b6:0f:65:7b:93:4b:19:
f9:00:89:df:f2:46:bf:22:12:fa:ec:ff:ee:ec:99:
63:12:e9:8e:24:d5:ba:d4:1e:5f:3e:85:6b:91:8b:
96:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:1D:20:3E:8A:71:DD:6D:46:71:80:B0:BD:AD:A4:CA:C4:02:1D:CC
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3233332e3136342e302f32322d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.233.164.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:6f:f9:2b:4a:f4:27:7a:49:13:f6:f0:b7:d1:99:3e:46:b8:
76:15:31:ac:17:4e:67:9c:41:52:ba:96:5c:55:bc:d0:35:0e:
6c:38:58:59:89:7a:a8:d9:43:4d:85:fc:14:c5:c9:ca:22:9c:
1a:b0:79:a3:33:83:93:3a:6a:ea:ed:be:cd:5f:13:c8:61:69:
bf:e7:76:62:e8:af:d8:86:3b:88:54:80:91:32:41:0c:03:91:
df:08:7e:26:30:ae:7a:9f:71:a8:14:3b:9e:1f:a2:c9:23:48:
db:00:6f:e7:67:61:55:19:f2:31:e7:1a:41:3e:f3:2b:f0:bf:
49:66:e9:9c:eb:90:0b:5f:a5:a0:b1:11:73:40:8b:63:7d:17:
9c:1f:33:cc:e0:91:b3:19:09:94:68:72:a0:41:d5:ce:cc:72:
3f:b2:9c:94:67:33:9f:84:20:bd:b6:79:82:60:72:e1:85:4c:
aa:3b:9a:70:73:27:c2:2a:06:36:72:39:f2:a4:e2:0f:2d:a1:
28:31:76:79:db:27:80:ee:f0:7c:19:11:98:42:c0:97:fe:f5:
9c:35:1a:f7:a4:7e:a5:48:22:ea:17:77:b4:c6:b8:cb:7e:21:
be:95:71:f6:09:69:23:30:c4:72:12:fc:a0:b0:b9:a8:9a:63:
d4:9b:bd:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 6 12:13:37 2024 by rpki-client on console-fra.rpki-client.org