Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3231322e31382e3131342e302f32342d3234203d3e20323136343433.roa
File: 3231322e31382e3131342e302f32342d3234203d3e20323136343433.roa (raw, json)
Hash identifier: wjDqI5lY9zQfIJfB84W4pUWr/1AxFjDg5Hdiw4flSRg=
Subject key identifier: 49:6B:EA:02:D0:DA:7C:40:64:F7:60:FA:09:43:B6:9F:60:A3:19:FB
Certificate issuer: /CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Certificate serial: 5D5C8DCE0EC595C778C46B3044A7ABBD0D2D3EB2
Authority key identifier: A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3231322e31382e3131342e302f32342d3234203d3e20323136343433.roa
Signing time: Tue 12 Dec 2023 07:32:04 +0000
ROA not before: Tue 12 Dec 2023 07:27:04 +0000
ROA not after: Tue 10 Dec 2024 07:32:04 +0000
asID: 216443
IP address blocks: 212.18.114.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:5c:8d:ce:0e:c5:95:c7:78:c4:6b:30:44:a7:ab:bd:0d:2d:3e:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9420e6c6f24b0e422da7fe7e420ef50354f45c6
Validity
Not Before: Dec 12 07:27:04 2023 GMT
Not After : Dec 10 07:32:04 2024 GMT
Subject: CN=496BEA02D0DA7C4064F760FA0943B69F60A319FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2c:50:e5:c7:aa:62:a0:fd:d6:6e:72:e4:e9:
35:be:b7:21:9b:a9:78:97:9f:ac:07:b6:86:2d:12:
5a:15:2e:64:5a:ae:70:e1:50:6f:0f:30:d1:83:59:
a2:11:86:8d:3e:2c:b0:b8:63:3d:7a:af:84:0a:84:
8c:7e:e8:89:5b:4c:00:af:b5:06:f0:b3:fe:5e:33:
5a:ba:4f:a7:0b:12:80:15:00:1c:2d:1e:a2:03:a7:
34:25:1e:3a:14:a8:45:16:d5:2f:8b:51:97:2c:85:
85:c0:dc:11:8f:29:65:bb:25:5a:fb:70:0f:f2:9c:
54:6a:08:df:44:c6:c8:14:9c:0c:64:7a:55:12:ba:
aa:de:22:0f:44:81:e5:01:fa:20:a8:26:51:6c:96:
cd:e9:98:e8:c5:ae:c4:3b:ba:03:99:78:72:f3:bb:
28:e2:79:d4:39:4f:1f:3c:69:80:00:4a:ad:58:25:
03:fd:f2:2e:65:03:1e:4a:67:84:53:dd:53:66:44:
e6:8a:4c:53:3d:1b:98:0b:4b:5b:ff:e4:f4:3a:79:
b7:48:f2:11:b7:e7:3e:29:da:7e:c6:89:3e:16:bf:
a1:97:83:e9:96:47:d9:78:44:21:c1:40:93:d9:c3:
ac:b9:47:12:a3:c9:05:0c:c2:1a:89:b7:89:1e:40:
d9:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:6B:EA:02:D0:DA:7C:40:64:F7:60:FA:09:43:B6:9F:60:A3:19:FB
X509v3 Authority Key Identifier:
keyid:A9:42:0E:6C:6F:24:B0:E4:22:DA:7F:E7:E4:20:EF:50:35:4F:45:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/A9420E6C6F24B0E422DA7FE7E420EF50354F45C6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qUIObG8ksOQi2n_n5CDvUDVPRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1f9823d0-0855-41f2-ac46-59a2e98da736/1/3231322e31382e3131342e302f32342d3234203d3e20323136343433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.114.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:f4:e5:5b:f0:46:78:63:0e:f4:88:cd:e9:ea:8e:34:27:8d:
1d:71:dd:92:32:19:ba:2b:ce:d6:82:7a:3c:5d:86:79:d1:0d:
5c:c1:8c:a2:b7:0d:57:37:13:73:8d:32:a0:59:fa:ac:83:42:
41:21:49:69:77:42:70:9c:58:e0:45:6b:6c:e6:02:db:72:e0:
fd:ef:7d:f1:4b:5f:d8:5f:b2:4a:1e:54:9b:5c:dd:e6:7d:a5:
6c:ae:c4:ea:31:a3:d4:92:30:7a:91:46:27:75:76:75:6b:31:
67:fd:d6:2a:49:70:e4:49:3c:64:98:25:12:cf:2f:94:3e:db:
25:54:62:23:8e:60:5e:9e:60:14:7e:83:ec:cd:25:72:ed:64:
03:3f:74:13:18:29:ec:08:82:77:1b:ca:34:e4:01:34:ac:77:
85:ec:17:1b:15:75:be:71:09:bf:8e:ab:28:4d:0f:8d:ee:53:
98:00:20:c4:ff:96:fb:6f:a1:58:62:5a:ea:d3:b9:f6:6a:80:
d8:2f:68:32:1a:53:27:bd:79:52:4d:b1:33:51:18:f6:8b:76:
7d:85:ce:59:80:fe:da:d4:8d:9c:87:f7:b9:7c:47:9a:b8:39:
9b:6a:fd:7b:16:c0:5d:a9:d1:4d:61:2c:13:75:4f:31:92:3a:
10:22:db:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 12:50:44 2023 by rpki-client on console-fra.rpki-client.org