Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134382e3133352e3132382e302f31372d3234203d3e203134363138.roa
File: 3134382e3133352e3132382e302f31372d3234203d3e203134363138.roa (raw, json)
Hash identifier: DCF632M0g1nGNIlvbLpfwUDCKDvtf2xsO7h43+KUUOc=
Subject key identifier: 2B:06:49:33:78:43:5E:13:AB:8C:8F:A5:76:F9:96:12:DB:81:78:38
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 2B911717075FDFB201AB878B5949C50D98912776
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134382e3133352e3132382e302f31372d3234203d3e203134363138.roa
Signing time: Thu 04 Jan 2024 17:05:08 +0000
ROA not before: Thu 04 Jan 2024 17:00:08 +0000
ROA not after: Thu 02 Jan 2025 17:05:08 +0000
asID: 14618
IP address blocks: 148.135.128.0/17 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 Apr 2024 11:09:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:91:17:17:07:5f:df:b2:01:ab:87:8b:59:49:c5:0d:98:91:27:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Jan 4 17:00:08 2024 GMT
Not After : Jan 2 17:05:08 2025 GMT
Subject: CN=2B06493378435E13AB8C8FA576F99612DB817838
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9e:19:32:a9:98:f7:50:e6:08:d6:93:c9:ab:
57:91:79:04:bf:ee:27:d8:13:2d:d1:b8:e5:85:0a:
d2:78:cd:80:48:96:f7:74:bf:e3:a7:b7:c3:37:62:
ee:9e:0d:9a:ff:92:87:48:a0:a8:50:a1:b0:ce:50:
58:95:1d:6e:ee:e8:1f:a4:57:a8:d3:91:c7:fc:76:
4a:0b:3c:5c:f6:9e:c9:35:5f:a8:ce:57:c7:0e:14:
db:1f:fc:4d:47:9a:f9:78:e3:d7:4c:93:88:08:7b:
3b:d7:62:17:84:a2:8d:e8:5e:0d:7f:3e:38:0a:56:
ca:2c:73:2a:2f:80:57:b1:e3:3c:bc:99:a1:76:c0:
37:0e:46:5c:66:df:fe:f0:02:d2:70:5a:97:73:9e:
c9:3d:b5:da:c0:43:b0:aa:f9:e5:35:d0:a8:c6:a8:
f7:4b:29:72:4d:26:61:83:bc:d9:4d:22:7e:fd:b9:
3c:46:af:de:2f:d8:9e:73:39:a8:90:00:82:1b:b0:
a4:8b:5e:a5:e8:43:a8:9b:69:37:a1:dd:2a:9b:05:
0a:dd:84:93:83:92:b3:ad:42:bb:35:ae:29:91:1c:
0b:42:d0:d6:2a:c3:47:b0:64:16:aa:0f:0f:e4:87:
da:b9:65:10:d7:d7:08:da:2d:74:d6:2c:2c:a8:36:
4a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:06:49:33:78:43:5E:13:AB:8C:8F:A5:76:F9:96:12:DB:81:78:38
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134382e3133352e3132382e302f31372d3234203d3e203134363138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.135.128.0/17
Signature Algorithm: sha256WithRSAEncryption
19:89:98:9d:b4:bc:1c:bb:eb:24:04:fd:f5:09:1a:9b:92:77:
e5:a2:22:66:70:f9:3d:40:f5:3a:43:29:d7:3f:7a:35:c7:83:
61:96:a4:ab:8b:64:11:c1:7f:0e:51:86:5b:e1:d7:1d:4b:a9:
0a:40:72:b2:e4:2d:ea:61:ae:f2:41:4d:cd:8e:1c:db:3d:b9:
cf:88:ac:cc:b6:39:f7:09:ca:d4:8f:ac:6d:ce:1b:76:e5:b4:
a2:13:f7:c3:55:7e:06:f3:80:e4:e0:92:fa:01:fd:0a:16:12:
f0:63:0f:a7:7d:a1:09:e3:88:37:5c:22:8d:90:8d:74:93:c4:
a9:6f:64:0e:df:2e:86:56:5f:c2:66:68:56:f6:df:a8:65:4c:
15:1f:52:e4:00:a5:da:9f:84:82:38:eb:aa:77:82:fd:d5:1a:
ff:56:18:bb:59:ce:92:bd:bd:21:13:50:06:85:58:a8:e5:7d:
cf:f4:8f:4e:75:25:e9:19:ae:2c:da:d4:a9:4a:2c:0b:84:86:
e0:7f:56:d5:9a:a0:4f:b9:a4:8c:08:38:9b:94:d4:60:56:0f:
66:d5:85:b8:89:8d:7f:c5:e4:51:1e:83:91:c9:fa:dd:31:0d:
8c:7b:4c:ec:e8:be:cc:4d:33:20:fe:85:af:94:db:94:58:cf:
ec:4f:16:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:09 2024 by rpki-client on console-fra.rpki-client.org