Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3233362e302f32322d3234203d3e20383334.roa
File: 3134302e3135302e3233362e302f32322d3234203d3e20383334.roa (raw, json)
Hash identifier: A2xph2PT91dySbs3qebNpBEkv5ezTQxc8j9zpC+P41E=
Subject key identifier: 95:97:9D:38:54:4F:CE:EA:76:49:0E:8F:55:08:B0:FA:F4:88:23:E3
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 309D25F8E054B203EE1AC9EBE9D1A0DB00BBC853
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3233362e302f32322d3234203d3e20383334.roa
Signing time: Mon 06 Nov 2023 00:00:07 +0000
ROA not before: Sun 05 Nov 2023 23:55:07 +0000
ROA not after: Mon 04 Nov 2024 00:00:07 +0000
asID: 834
IP address blocks: 140.150.236.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:9d:25:f8:e0:54:b2:03:ee:1a:c9:eb:e9:d1:a0:db:00:bb:c8:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Nov 5 23:55:07 2023 GMT
Not After : Nov 4 00:00:07 2024 GMT
Subject: CN=95979D38544FCEEA76490E8F5508B0FAF48823E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:54:f1:e7:db:7f:b6:98:6a:b8:09:bc:e4:3e:
70:f8:a5:fc:4e:b5:60:95:11:6a:84:dd:26:a9:5a:
e4:66:f9:22:72:b6:b4:01:07:03:29:de:97:9c:ce:
ad:5d:aa:a5:22:b4:74:d3:fd:a2:64:8a:3f:d7:24:
42:12:af:24:a4:13:f6:3d:b5:6c:25:9e:69:68:ae:
63:85:73:40:35:f4:ee:06:55:7a:f5:7c:6b:69:cf:
93:b5:1c:c1:af:df:0f:b7:5b:82:9b:f0:c1:c6:0c:
13:4d:52:e2:b6:54:72:00:c5:1e:f5:b2:f9:a6:4a:
e8:38:98:e2:be:bd:49:84:e2:56:89:f7:af:2e:5e:
0d:02:ae:a2:cd:a9:72:b2:c0:e9:78:a1:09:aa:3f:
9f:29:2e:41:43:57:d2:96:b9:5e:fe:99:55:6d:06:
5a:91:c5:a6:3e:a4:18:09:6a:83:b3:15:c2:ed:e0:
91:e3:60:be:8c:91:1d:e4:8c:68:01:19:3c:3e:60:
5c:af:2f:8f:d7:3c:fa:a1:bb:d5:1d:25:0b:f7:0f:
e2:51:8f:d5:b6:dc:77:d0:48:2e:42:a2:2d:8d:6b:
d8:21:8c:0d:2f:67:3d:a5:87:a6:90:29:7a:cd:b9:
fa:ac:dc:e9:77:3e:fc:33:2f:b8:61:b1:66:b2:ed:
c3:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:97:9D:38:54:4F:CE:EA:76:49:0E:8F:55:08:B0:FA:F4:88:23:E3
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/3134302e3135302e3233362e302f32322d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.236.0/22
Signature Algorithm: sha256WithRSAEncryption
22:fe:8f:7f:1f:13:cc:05:65:37:55:c9:a3:07:42:d2:f8:ba:
66:64:e4:c4:56:ec:64:1a:82:40:6d:47:49:71:83:e0:6f:06:
0e:7a:f6:37:29:1c:b7:43:b8:15:f6:b6:e3:34:99:9d:ab:e9:
d1:a1:c5:d0:5f:6d:ee:86:10:92:7f:a4:d3:fc:58:b7:1e:fa:
d7:34:7c:b1:11:ee:16:1a:62:1a:c5:9a:61:5c:ea:18:c5:e7:
c2:aa:5d:e3:93:43:cb:cd:0f:68:8e:44:d0:44:0e:98:0d:82:
48:7b:72:ea:4d:bc:79:ba:23:d2:00:75:cc:f9:90:c3:20:61:
92:eb:2e:3f:7b:a6:1a:b4:7f:ca:e9:ac:0a:85:6a:5d:69:c2:
05:c0:6c:77:1b:99:53:b5:55:cc:fe:54:cd:80:44:9c:80:16:
dd:86:21:9d:fa:63:1f:af:32:55:48:5d:01:25:a7:39:bf:0c:
0b:c6:73:2b:e4:b5:bf:32:80:45:e6:8a:23:f4:b3:2c:69:6e:
b4:9f:3e:aa:d0:01:54:1c:b5:66:c2:1d:4a:a9:fe:b8:cd:88:
8e:07:8f:90:22:15:36:9d:ac:d0:b1:97:79:3b:00:b8:64:48:
5c:fb:44:45:80:a2:37:7b:00:bf:1b:c8:cc:d7:4b:97:a3:7e:
23:3b:61:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:10 2023 by rpki-client on console.sobornost.net