Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3233332e3138302e302f32322d3232203d3e20313734.roa
File: 3134302e3233332e3138302e302f32322d3232203d3e20313734.roa (raw, json)
Hash identifier: D+YRFRhMkTDyPXgR7aB/W1X/RWC/k/FSUDOSurVuduc=
Subject key identifier: 71:05:CC:5F:B6:35:2D:A3:E2:1C:6C:AF:40:44:E1:AE:1F:89:1B:D8
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 29E85FB8C94137422A2716C0B863469CDB0134D5
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3233332e3138302e302f32322d3232203d3e20313734.roa
Signing time: Tue 20 Feb 2024 10:17:45 +0000
ROA not before: Tue 20 Feb 2024 10:12:45 +0000
ROA not after: Tue 18 Feb 2025 10:17:45 +0000
asID: 174
IP address blocks: 140.233.180.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sat 06 Apr 2024 11:09:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:e8:5f:b8:c9:41:37:42:2a:27:16:c0:b8:63:46:9c:db:01:34:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Feb 20 10:12:45 2024 GMT
Not After : Feb 18 10:17:45 2025 GMT
Subject: CN=7105CC5FB6352DA3E21C6CAF4044E1AE1F891BD8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:43:d0:65:58:d4:b9:d4:2b:dc:81:d6:82:b9:
79:10:f9:5e:32:10:9e:e5:64:2b:a0:c2:c4:13:b4:
55:c3:9a:25:15:17:a0:2a:28:0b:46:16:ed:ca:d4:
90:a6:25:76:be:4b:6a:6c:a7:cd:f5:00:f2:b9:e9:
78:52:62:3e:47:3e:a9:95:90:62:83:39:9a:d5:7f:
8c:de:f7:08:1f:11:8f:e0:e9:86:f2:9d:c2:ce:27:
bb:b9:cb:14:05:db:63:43:7b:f9:d5:57:8e:ee:72:
6a:be:86:68:f6:ad:49:0e:99:c8:f9:51:17:a6:ca:
e8:8d:5e:72:c8:51:82:69:eb:e3:91:9b:5e:3e:e3:
61:94:e9:81:5f:ae:20:77:d2:e5:52:02:dc:c6:5e:
bd:80:1e:a1:8f:fe:60:e7:05:00:81:c6:5f:c9:f4:
86:82:19:83:a5:1b:35:25:a9:25:b6:67:a2:50:eb:
63:c0:c9:65:7a:31:22:fe:d2:5c:2c:4a:3b:60:06:
07:f9:3f:7f:e1:45:c6:c5:73:b0:53:b7:9b:fd:58:
ca:ef:6c:2c:1d:85:ce:76:2c:32:ab:0a:64:f6:d5:
5c:24:d2:3f:0c:e4:70:f3:6b:66:f6:30:74:51:11:
7e:a2:1a:aa:6d:04:76:bc:d8:3c:ec:73:0c:9d:19:
e0:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:05:CC:5F:B6:35:2D:A3:E2:1C:6C:AF:40:44:E1:AE:1F:89:1B:D8
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3233332e3138302e302f32322d3232203d3e20313734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.233.180.0/22
Signature Algorithm: sha256WithRSAEncryption
23:a5:58:8c:2c:73:d5:0c:77:9d:6e:4b:4c:da:3a:1c:61:2f:
33:ab:ba:77:bd:c0:4a:4a:fa:a5:46:35:15:cd:05:53:0b:79:
07:c6:86:b1:1c:d0:98:e1:c0:fc:1b:92:1f:c9:9c:a2:75:a2:
3f:39:f3:a4:48:a2:97:fe:d8:8e:35:79:3c:d0:b2:2e:65:e3:
d9:a8:e5:56:9c:39:6d:01:27:97:ea:1c:41:f0:e0:c1:bb:04:
22:a4:5a:74:09:21:89:b8:b3:ff:b8:b8:02:1c:68:e8:24:69:
f8:32:50:36:82:82:f3:99:cb:3e:88:83:83:5a:fd:ee:1a:cb:
e4:32:1c:2e:90:3c:7b:1f:e5:3c:77:d6:9b:99:d0:9d:0e:55:
22:68:af:52:47:89:fd:c1:56:6a:c0:e8:4d:7f:a9:3a:80:55:
e4:f4:f9:84:d9:e4:84:2f:f8:5d:6c:4d:f0:a7:e2:a4:f8:ef:
26:61:45:68:b4:61:8b:4f:26:08:77:d9:d6:b2:f3:40:d0:3a:
6d:78:46:ab:9d:1a:f6:81:3b:e8:bd:a3:87:f1:e2:f1:77:39:
b5:e4:10:c3:bd:62:10:88:28:a7:f7:fb:47:da:d5:88:24:72:
7b:34:88:df:28:65:72:51:0d:5b:29:25:7a:0f:2d:09:cd:89:
46:90:4f:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 6 11:51:06 2024 by rpki-client on console-ams.rpki-client.org