Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e322e302f32342d3234203d3e20383334.roa
File: 33312e362e322e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: W1rSX9X9RYXJGqjHTXTZQpWNCWsGD8epSNseSW8DJKg=
Subject key identifier: 8C:FD:84:02:04:33:B2:73:8D:99:9E:F5:D8:5D:CD:7A:14:36:D3:A5
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 6F10416D3DC825A68978428F3E2CBFA049A81DAD
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e322e302f32342d3234203d3e20383334.roa
Signing time: Mon 02 Oct 2023 05:20:51 +0000
ROA not before: Mon 02 Oct 2023 05:15:51 +0000
ROA not after: Mon 30 Sep 2024 05:20:51 +0000
asID: 834
IP address blocks: 31.6.2.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:10:41:6d:3d:c8:25:a6:89:78:42:8f:3e:2c:bf:a0:49:a8:1d:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Oct 2 05:15:51 2023 GMT
Not After : Sep 30 05:20:51 2024 GMT
Subject: CN=8CFD84020433B2738D999EF5D85DCD7A1436D3A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:02:62:7e:be:8b:32:81:18:99:f7:0c:53:ff:
43:16:ad:98:29:e0:b5:a1:43:ac:84:32:de:32:e4:
ee:1e:0e:b0:2b:dd:61:1a:50:25:ab:7f:b3:c9:77:
c7:54:74:f5:39:57:54:0a:af:12:c5:c7:34:b9:96:
76:12:b2:3b:95:ee:4d:c3:55:02:a0:c9:20:4d:97:
ba:94:83:09:02:54:d9:6a:2b:f0:54:6c:01:4a:7f:
9a:32:71:49:6b:bc:90:cd:f3:d8:fb:bd:b8:67:1c:
c1:20:12:cd:1e:86:ba:f3:de:6c:d4:d9:b6:32:6b:
6c:5a:88:06:af:ee:e2:07:4d:40:f7:5d:e8:3a:e6:
a1:06:78:94:a0:99:3d:9a:02:c1:33:53:b3:59:d6:
5f:ca:47:73:ec:d3:52:ed:0b:a8:e9:7a:c1:17:9e:
da:fa:99:e3:8a:e8:9b:76:8a:4d:4e:d2:ce:37:1e:
3c:17:09:71:73:c0:af:81:24:37:27:59:e4:23:1a:
71:a3:f8:4a:28:3b:82:22:be:f1:58:af:4c:71:d0:
ed:5b:4e:a0:74:88:39:70:8b:68:3d:b4:67:dd:a5:
3a:fd:33:4f:5d:d6:cd:58:26:4c:62:0f:1a:a9:9e:
d3:79:fe:77:09:f9:11:57:95:12:49:c5:46:22:93:
b1:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:FD:84:02:04:33:B2:73:8D:99:9E:F5:D8:5D:CD:7A:14:36:D3:A5
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e322e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.2.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:ce:96:97:1e:6e:46:32:28:c6:dd:9e:61:41:3e:9b:df:a0:
9a:48:03:0c:5b:af:bb:a5:7d:b3:ce:7e:78:7b:02:7c:15:81:
8d:4a:8f:9b:2e:91:cd:5e:31:d8:e5:f4:7e:12:d6:89:61:63:
37:f5:c4:d5:5d:80:6d:83:85:67:c8:63:79:43:8e:93:ad:39:
13:6e:4b:ac:b7:fc:1e:28:6b:00:2e:de:42:72:ed:02:52:78:
c1:78:28:b8:dc:3d:b3:4b:4b:49:cd:6b:aa:7e:0c:b8:63:dd:
d1:54:52:2e:c0:58:a0:a8:ff:16:b3:31:59:3c:00:09:0a:02:
0e:3b:97:09:bc:ad:9b:ee:d4:20:12:88:9e:60:a0:cb:03:72:
b0:77:b2:f6:e2:eb:03:29:e9:6c:ba:05:d2:e0:ff:31:f4:8e:
72:aa:54:a2:c4:63:5b:e6:82:d3:78:d1:2e:a2:a3:2a:85:7c:
cb:fd:08:43:62:f7:22:c2:88:17:74:25:d8:46:f5:f1:4d:ee:
a4:74:f1:8d:f0:7b:da:b7:8e:18:e0:ed:4e:7e:9b:fd:28:3c:
d8:d7:3e:9d:54:6b:24:0c:f6:81:28:13:8e:14:53:4e:65:d7:
d4:87:da:f6:4a:10:03:93:b9:ec:b1:2a:25:5c:03:c8:e2:07:
2f:dd:6a:21
-----BEGIN CERTIFICATE-----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Generated at Sun Dec 17 16:42:53 2023 by rpki-client on console-fra.rpki-client.org