Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3233332e3137362e302f32322d3232203d3e20313734.roa
File: 3134302e3233332e3137362e302f32322d3232203d3e20313734.roa (raw, json)
Hash identifier: d3NdoSDed8ymgr3bkIjb8EW9dEnodlHNLxi38N/Ltxo=
Subject key identifier: 46:C3:53:CE:E5:0A:7D:62:19:1F:FA:C3:22:8C:13:3B:5A:66:70:A7
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 140A2C1F6970F0B58CE5E506BE21734AB15D2E4B
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3233332e3137362e302f32322d3232203d3e20313734.roa
Signing time: Tue 20 Feb 2024 20:29:01 +0000
ROA not before: Tue 20 Feb 2024 20:24:01 +0000
ROA not after: Tue 18 Feb 2025 20:29:01 +0000
asID: 174
IP address blocks: 140.233.176.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sat 06 Apr 2024 11:09:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:0a:2c:1f:69:70:f0:b5:8c:e5:e5:06:be:21:73:4a:b1:5d:2e:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Feb 20 20:24:01 2024 GMT
Not After : Feb 18 20:29:01 2025 GMT
Subject: CN=46C353CEE50A7D62191FFAC3228C133B5A6670A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e2:79:a8:93:a7:65:16:d4:05:c1:f4:e0:a6:
32:ef:77:05:c4:28:7a:0e:7e:c7:14:15:c7:c8:9d:
6b:d9:84:94:29:d2:a4:0e:79:94:55:5c:90:81:aa:
78:f8:9c:34:d6:b2:5a:7e:67:60:67:10:31:77:f5:
83:50:c1:08:5e:f3:70:0d:ad:ca:ad:6b:e7:32:71:
83:0c:7e:2a:67:64:62:8a:8f:02:02:26:ca:cb:26:
29:81:6f:c2:97:c4:52:53:5d:96:85:94:56:58:5b:
e1:1c:3e:c3:ea:6e:80:58:4e:20:69:83:bb:61:c2:
a7:15:4c:92:f1:32:65:e2:1f:6f:e7:57:72:5b:29:
1b:ee:1f:86:ce:4e:ff:a0:05:8f:0f:75:7f:68:f8:
70:3b:ba:80:48:e8:dc:df:43:4c:37:40:79:8a:7e:
c0:0d:fc:0e:44:94:ad:5f:c0:4b:7e:d9:4a:ea:b8:
7d:a8:d5:2d:1e:9e:09:e3:bf:75:35:ba:47:2d:0a:
05:07:e7:92:d1:6c:74:4c:b9:16:22:04:a0:fb:0f:
02:8b:6f:5d:60:43:30:97:76:2a:13:72:c7:d2:fb:
b1:35:4b:38:cc:5f:58:a3:77:0a:1b:83:6d:d5:fa:
5b:11:ab:0f:fe:b7:2f:9d:81:e9:53:fb:c0:19:7d:
43:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:C3:53:CE:E5:0A:7D:62:19:1F:FA:C3:22:8C:13:3B:5A:66:70:A7
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3233332e3137362e302f32322d3232203d3e20313734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.233.176.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:44:dc:7e:f4:82:07:03:0a:2e:7a:25:fa:5d:e6:37:c6:c1:
12:38:27:d9:fe:10:6b:f7:6e:7c:29:f9:eb:c1:a2:f2:09:c4:
c7:04:30:e1:b4:66:81:1d:0a:b5:97:c1:27:0c:7b:63:98:3a:
a4:fd:13:85:70:87:df:50:e5:7f:35:45:c8:82:c3:ff:73:c4:
8f:b6:fd:94:73:de:70:ed:ed:ab:f2:19:8e:c6:fd:16:a6:62:
05:a1:fa:91:02:13:f8:5b:8c:ca:1d:51:ce:33:e9:6b:b3:9e:
2e:45:75:f0:e4:b5:05:20:c6:d3:b3:61:4e:bc:ae:61:07:56:
f1:76:78:d5:58:85:be:33:27:12:b8:37:ee:fe:48:d3:7c:ed:
be:c4:9a:70:e4:5f:0f:43:87:55:1b:6a:3e:33:2b:76:71:5d:
75:96:56:ac:13:fd:8e:e3:cf:b7:3b:75:24:ef:6f:64:d8:d2:
75:30:de:9c:4d:d1:6b:8b:f5:b1:dd:4f:3a:b0:9e:e7:cc:88:
0b:89:cf:7f:0f:68:93:d2:5f:12:aa:68:b3:1f:5b:f7:98:a6:
cd:cc:dd:41:ff:de:0a:39:46:dc:4d:33:0f:c7:03:5c:7a:bf:
29:79:7f:b5:78:60:e8:7d:5d:de:62:21:11:13:2e:24:8f:bc:
7f:37:3c:3b
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUFAosH2lw8LWM5eUGviFzSrFdLkswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi
MjQ2YmZjYzAeFw0yNDAyMjAyMDI0MDFaFw0yNTAyMTgyMDI5MDFaMDMxMTAvBgNV
BAMTKDQ2QzM1M0NFRTUwQTdENjIxOTFGRkFDMzIyOEMxMzNCNUE2NjcwQTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO4nmok6dlFtQFwfTgpjLvdwXE
KHoOfscUFcfInWvZhJQp0qQOeZRVXJCBqnj4nDTWslp+Z2BnEDF39YNQwQhe83AN
rcqta+cycYMMfipnZGKKjwICJsrLJimBb8KXxFJTXZaFlFZYW+EcPsPqboBYTiBp
g7thwqcVTJLxMmXiH2/nV3JbKRvuH4bOTv+gBY8PdX9o+HA7uoBI6NzfQ0w3QHmK
fsAN/A5ElK1fwEt+2UrquH2o1S0engnjv3U1ukctCgUH55LRbHRMuRYiBKD7DwKL
b11gQzCXdioTcsfS+7E1SzjMX1ijdwobg23V+lsRqw/+ty+dgelT+8AZfUOTAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQURsNTzuUKfWIZH/rDIowTO1pmcKcwHwYDVR0j
BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy
NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK
R3Y4dy5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMDliZTNhYWUt
YWVhMS00MWRjLWIxYjktOTVhYzU5MTgyNDRkLzAvMzEzNDMwMmUzMjMzMzMyZTMx
MzczNjJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzczNC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAozp
sDANBgkqhkiG9w0BAQsFAAOCAQEAPETcfvSCBwMKLnol+l3mN8bBEjgn2f4Qa/du
fCn568Gi8gnExwQw4bRmgR0KtZfBJwx7Y5g6pP0ThXCH31DlfzVFyILD/3PEj7b9
lHPecO3tq/IZjsb9FqZiBaH6kQIT+FuMyh1RzjPpa7OeLkV18OS1BSDG07NhTryu
YQdW8XZ41ViFvjMnErg37v5I03ztvsSacORfD0OHVRtqPjMrdnFddZZWrBP9juPP
tzt1JO9vZNjSdTDenE3Ra4v1sd1POrCe58yIC4nPfw9ok9JfEqposx9b95imzczd
Qf/eCjlG3E0zD8cDXHq/KXl/tXhg6H1d3mIhERMuJI+8fzc8Ow==
-----END CERTIFICATE-----
Generated at Sat Apr 6 11:51:06 2024 by rpki-client on console-ams.rpki-client.org