Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e33362e302f32342d3234203d3e20383334.roa
File: 33312e362e33362e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: IGUui2gzgX8ZhK14xMYd53ghyYE0B2jGeSoCqoN3iwc=
Subject key identifier: 5B:75:23:39:80:82:B4:01:FC:A0:12:4E:CD:10:0F:B2:0B:AE:8F:E8
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 3C9F701CC95C5EE492514A1DD983AB1EC3BDF801
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e33362e302f32342d3234203d3e20383334.roa
Signing time: Mon 03 Jun 2024 00:02:11 +0000
ROA not before: Sun 02 Jun 2024 23:57:11 +0000
ROA not after: Mon 02 Jun 2025 00:02:11 +0000
asID: 834
IP address blocks: 31.6.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 18:42:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:9f:70:1c:c9:5c:5e:e4:92:51:4a:1d:d9:83:ab:1e:c3:bd:f8:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Jun 2 23:57:11 2024 GMT
Not After : Jun 2 00:02:11 2025 GMT
Subject: CN=5B7523398082B401FCA0124ECD100FB20BAE8FE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:97:9e:98:a8:49:df:49:5e:d2:33:b8:93:9f:
2c:ef:c2:01:ce:7d:a4:a6:b9:1c:ca:a3:98:e3:61:
8f:fe:18:ae:e3:c6:6d:2e:24:26:e7:bb:b1:3b:f7:
6d:65:92:49:2d:16:ab:46:fa:db:3a:d3:68:4c:61:
d7:f1:eb:9a:1c:e7:b5:21:40:65:9d:9e:bd:34:83:
ca:7a:3d:fc:d4:1a:81:e2:80:1c:3d:b2:c5:46:c2:
d0:5e:c7:89:2e:82:67:a2:c5:b3:4e:0a:6f:6c:2f:
e0:c3:9a:93:95:f7:7a:73:ce:0c:d5:93:1e:81:c6:
8e:c8:b1:9a:75:e4:cc:5e:50:1b:ab:95:de:90:8b:
3b:45:a8:81:91:ba:84:08:7d:73:09:45:62:d7:fb:
9e:62:34:82:0d:b4:87:a5:3c:58:70:65:4d:fa:60:
13:3c:e6:19:fa:c5:06:7a:c5:ef:5b:1e:7b:0c:e3:
d3:e7:fb:23:4d:cb:40:a3:fc:2d:9d:28:71:ab:8a:
c4:55:58:7c:1e:11:9d:c6:74:04:01:33:89:91:88:
5d:ad:f8:38:90:7e:de:74:75:c5:69:88:70:30:30:
79:e7:23:e8:1c:65:6b:16:72:36:f8:cd:83:16:c2:
af:10:a9:c7:f2:69:98:d0:a2:11:58:9c:c6:9f:74:
c1:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:75:23:39:80:82:B4:01:FC:A0:12:4E:CD:10:0F:B2:0B:AE:8F:E8
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e33362e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.36.0/24
Signature Algorithm: sha256WithRSAEncryption
11:b5:93:ea:3f:c7:50:3c:7b:e4:fd:95:b9:4e:01:9e:d9:e4:
eb:89:a0:37:96:9e:27:19:13:98:2e:a4:d1:02:3b:90:bd:72:
80:ab:e4:44:2c:d6:df:9c:69:46:4b:1d:d8:7e:df:44:76:3b:
9c:4f:0c:d6:fa:61:f2:26:71:f4:3d:91:ed:83:a6:cc:a5:bb:
f5:a1:4a:10:f8:70:be:c0:5a:3c:e8:e2:76:43:9f:8c:9a:3a:
04:1a:82:0f:0d:10:2f:ce:70:0f:81:6d:ae:10:6b:94:9e:23:
b7:f3:e2:de:a2:90:66:d2:3a:04:dc:9f:cc:8b:20:a7:0d:00:
c6:31:20:4d:6c:27:92:58:1c:62:33:ef:51:fa:a4:48:31:0e:
e6:ea:61:36:d8:49:7c:9c:5b:1d:90:16:a6:f0:bf:93:3f:44:
29:87:ca:87:98:0d:e5:79:17:ae:80:70:bb:0e:92:62:e9:da:
fd:02:ae:f7:ba:64:2b:68:40:02:5f:7d:0b:6b:d2:f4:49:8b:
32:e7:f5:26:b0:63:15:c0:62:32:5e:1d:7c:99:c6:c2:39:79:
26:ed:14:d0:0b:71:ae:18:ae:85:71:f6:91:e2:89:e2:fa:be:
e4:d3:da:df:db:e9:c7:a6:f3:e5:69:e8:5b:91:40:d1:b5:27:
5e:24:4d:45
-----BEGIN CERTIFICATE-----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Generated at Wed Jun 5 21:04:19 2024 by rpki-client on console-ams.rpki-client.org