Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e35342e302f32342d3234203d3e20333937363330.roa
File: 33312e362e35342e302f32342d3234203d3e20333937363330.roa (raw, json)
Hash identifier: jAU9kmfaxmuLtpjnHzed7FO62y1MCnbLCzQ4jDsmIC4=
Subject key identifier: A9:4A:5A:B8:34:EA:A1:C3:A9:CD:D2:60:4D:CB:5D:52:77:8E:99:36
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 587829B98AF2467DF7DE82527D9FA079F86F5458
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e35342e302f32342d3234203d3e20333937363330.roa
Signing time: Tue 15 Oct 2024 15:43:25 +0000
ROA not before: Tue 15 Oct 2024 15:38:25 +0000
ROA not after: Tue 14 Oct 2025 15:43:25 +0000
asID: 397630
IP address blocks: 31.6.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Nov 2024 00:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:78:29:b9:8a:f2:46:7d:f7:de:82:52:7d:9f:a0:79:f8:6f:54:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Oct 15 15:38:25 2024 GMT
Not After : Oct 14 15:43:25 2025 GMT
Subject: CN=A94A5AB834EAA1C3A9CDD2604DCB5D52778E9936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f5:f0:a7:9d:f0:ef:9d:64:22:4a:17:ce:8a:
63:77:7b:da:15:b0:23:4c:7d:cc:14:09:77:80:5a:
7b:d9:eb:eb:43:12:3e:9e:95:ee:c0:f0:83:ab:ad:
11:03:8a:75:63:f1:f3:3b:07:a7:24:3e:bb:e9:f3:
48:f0:0c:a9:9f:f8:00:38:f2:a9:48:8a:18:76:a2:
a7:b3:ef:35:e4:52:02:05:ec:47:14:b6:1d:34:a4:
cf:43:76:f0:c1:62:db:3d:f7:b7:3d:73:45:10:c6:
d8:17:51:2a:f0:dd:11:1f:fe:2e:37:14:26:0a:77:
6a:8f:fc:38:7e:57:a2:ca:df:7d:bb:50:6d:13:55:
c5:2a:6e:d9:e6:da:f7:c9:48:4c:d7:5f:3b:89:ee:
8d:a4:03:66:0c:17:ff:dc:61:e7:4a:ff:b4:2f:cb:
c8:33:92:f3:26:2e:13:a1:e6:9a:e0:d0:7c:73:cc:
37:af:a6:48:59:0e:e2:0f:fc:05:17:a7:4f:7f:e5:
0f:b0:ed:0a:5d:ce:9b:10:5c:88:f2:d7:fc:c7:5a:
e9:5e:21:47:cc:fc:04:ce:8c:27:2d:ba:d0:53:34:
a6:c1:44:2d:9a:04:9d:9c:13:b2:20:09:c5:91:c1:
86:3a:78:de:97:93:3a:19:7b:ed:dd:1f:6a:54:ce:
dc:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:4A:5A:B8:34:EA:A1:C3:A9:CD:D2:60:4D:CB:5D:52:77:8E:99:36
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e35342e302f32342d3234203d3e20333937363330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.54.0/24
Signature Algorithm: sha256WithRSAEncryption
91:b6:d4:66:71:f9:42:be:2d:c1:16:e6:4e:32:1b:73:d8:af:
04:29:4b:06:cd:8c:62:d4:93:72:74:c9:a6:a3:b9:36:b5:1a:
f2:ad:2e:f1:78:5b:33:86:fb:0a:0b:1c:b0:c7:a0:2a:c5:73:
3f:7d:e2:41:d6:c1:a2:6f:a4:c3:4b:51:62:ff:9b:4f:3e:a4:
f4:18:44:cd:98:1f:c5:ed:ea:b0:fc:54:8e:20:0a:3e:47:2f:
f2:26:47:de:d3:5b:b7:2c:c9:29:4c:6c:a5:26:b7:93:87:8a:
b8:82:48:dc:9b:a9:67:6e:93:6e:4a:0a:ab:9c:2a:a6:8e:2a:
44:89:ff:9e:4e:b4:69:bc:63:24:78:84:a2:40:72:9a:77:28:
3b:98:f3:02:28:a4:ec:23:72:42:2d:96:dc:3d:e7:54:c0:d4:
e2:be:be:0d:9d:ab:8f:11:b9:df:62:26:cb:aa:24:6a:1f:80:
6c:95:22:18:86:7a:4c:99:50:0d:04:0c:cd:5c:d5:53:34:8b:
29:48:01:f5:ef:94:fd:49:62:6f:54:65:63:d6:98:13:88:6e:
cb:5b:3e:c2:89:fb:cd:f1:0c:65:cd:99:0d:99:e4:d9:f3:7e:
d5:5a:ba:bf:e2:ce:23:e2:b9:26:d9:cb:50:76:7a:08:49:f8:
96:a3:6e:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:41:32 2025 by rpki-client