Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e32362e302f32342d3234203d3e20333937363330.roa
File: 33312e362e32362e302f32342d3234203d3e20333937363330.roa (raw, json)
Hash identifier: A4d9R6JyJ+DjJaNJGR62kcSovQ0R3MqUiKLckD0DLro=
Subject key identifier: 87:26:B9:60:96:4C:83:0D:7F:B5:6E:BC:99:9F:50:3B:E6:A1:3B:EB
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 334379F3B3D62D1F4B6456E4C0AB3672E1808C39
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e32362e302f32342d3234203d3e20333937363330.roa
Signing time: Tue 15 Oct 2024 15:43:25 +0000
ROA not before: Tue 15 Oct 2024 15:38:25 +0000
ROA not after: Tue 14 Oct 2025 15:43:25 +0000
asID: 397630
IP address blocks: 31.6.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Nov 2024 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:43:79:f3:b3:d6:2d:1f:4b:64:56:e4:c0:ab:36:72:e1:80:8c:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Oct 15 15:38:25 2024 GMT
Not After : Oct 14 15:43:25 2025 GMT
Subject: CN=8726B960964C830D7FB56EBC999F503BE6A13BEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fe:70:f3:c5:b5:a5:6d:17:30:1b:d4:d8:37:
02:78:a7:a5:ba:a0:92:56:6d:8e:d5:c6:8c:47:be:
8c:d2:d5:8e:29:61:bc:ba:3c:d3:b7:ce:1f:1a:4f:
5d:a3:f5:2f:22:36:3c:a9:54:49:d0:3d:3f:8d:b7:
9e:c2:0c:78:e0:47:19:be:e9:9a:01:6f:42:86:2c:
0e:b9:44:11:93:32:c9:8c:52:8c:fd:c1:cd:b9:34:
aa:44:59:23:3c:af:9f:0f:4b:ea:e2:ed:b4:2e:19:
4c:18:3a:4a:bb:f0:33:48:fe:30:12:ab:e2:46:3b:
2a:36:35:63:71:40:d0:4b:6d:d5:d7:47:1d:cd:fe:
19:80:8c:e1:2f:b6:05:29:0f:72:b9:5e:8d:73:80:
d1:f9:98:58:61:a0:31:b4:5e:6d:d1:0b:4f:52:8b:
33:65:dc:0a:42:29:50:c6:35:25:38:0a:61:17:4f:
31:1f:ce:d8:24:fd:81:53:ed:68:ea:96:94:ae:bc:
c5:2f:a8:9f:bb:f7:5a:69:22:d1:51:19:1c:4a:6a:
11:2b:16:08:3e:21:44:20:9c:47:42:62:b8:08:99:
ca:bd:17:71:31:98:9f:3c:7d:fc:07:72:4b:a6:6a:
02:21:9d:a6:38:32:4f:fa:67:9c:5c:03:a0:43:40:
21:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:26:B9:60:96:4C:83:0D:7F:B5:6E:BC:99:9F:50:3B:E6:A1:3B:EB
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e32362e302f32342d3234203d3e20333937363330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.26.0/24
Signature Algorithm: sha256WithRSAEncryption
45:60:16:b7:54:9a:35:63:74:d6:f4:2a:d1:4f:7f:61:96:db:
a7:78:71:56:e4:7a:f0:f8:20:45:d3:b4:de:4c:f2:ab:04:cf:
12:69:40:05:e9:d6:0f:af:79:95:54:43:e4:a4:36:99:3b:dd:
e3:cf:61:f4:9a:32:0e:95:fc:fe:dd:1c:40:60:a6:e5:fa:a2:
25:29:dc:6d:16:07:95:8f:8e:c4:aa:90:6d:d9:0e:98:d0:04:
22:0e:d4:2e:61:df:7b:7c:cb:c2:69:ce:b2:81:24:2b:2c:1b:
b9:28:71:d3:7f:a3:9b:69:88:41:6b:87:c4:8e:b3:bb:c5:ea:
4f:34:0f:5d:78:c5:46:ba:e0:78:5a:b0:41:b0:11:ef:55:0e:
e3:61:84:01:50:c8:c3:8e:cb:4e:62:10:9d:a5:6c:07:4d:ad:
8d:09:00:78:6a:48:52:de:5b:78:50:03:c0:cb:00:c5:db:f1:
7b:d1:b4:27:4b:e5:49:bd:eb:b1:3f:09:e4:c2:7a:95:ff:ac:
ed:c2:dd:0a:82:c5:d2:b1:48:77:eb:05:4d:62:bf:6a:a0:df:
32:25:5b:c5:86:e0:02:31:f6:11:13:c7:66:83:c6:0b:e8:b3:
02:87:7f:9b:1b:64:7d:b8:37:8e:20:0c:5f:2a:09:9b:49:a6:
db:07:7b:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 14 01:58:08 2024 by rpki-client on console-fra.rpki-client.org