Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e36332e302f32342d3234203d3e20383334.roa
File: 33312e362e36332e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: amr+uAzR56QhDyP3BsKD88GpJG0IcUwasT2pToSqBvo=
Subject key identifier: FB:76:B5:26:2C:DC:39:B8:93:F0:96:61:9A:1F:ED:30:56:B4:FC:A5
Certificate issuer: /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial: 16F8779A0CA9D4DC5493B5791F213FFB7D1DE753
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e36332e302f32342d3234203d3e20383334.roa
Signing time: Fri 03 Jan 2025 00:04:03 +0000
ROA not before: Thu 02 Jan 2025 23:59:03 +0000
ROA not after: Fri 02 Jan 2026 00:04:03 +0000
asID: 834
IP address blocks: 31.6.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 Jan 2025 13:28:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:f8:77:9a:0c:a9:d4:dc:54:93:b5:79:1f:21:3f:fb:7d:1d:e7:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
Validity
Not Before: Jan 2 23:59:03 2025 GMT
Not After : Jan 2 00:04:03 2026 GMT
Subject: CN=FB76B5262CDC39B893F096619A1FED3056B4FCA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b1:14:ac:c3:97:85:b6:8e:6f:28:15:90:ff:
08:7b:9c:92:7c:e4:93:59:61:4d:80:a4:2b:fe:b8:
21:fc:cf:95:ef:b3:1b:8d:ee:4d:4e:6e:d3:e4:97:
1f:0f:02:cc:fe:8d:4e:83:7a:5f:1f:10:47:d8:ac:
b8:7d:12:4a:9d:c1:86:62:41:7c:40:72:2c:6c:2e:
c2:c7:e2:f9:a1:83:92:e3:81:36:f6:fe:29:32:89:
0e:8b:e6:7a:fe:14:b5:cf:2b:ca:db:14:dd:29:03:
98:a0:60:e1:a3:da:9b:0d:9c:48:bc:17:4e:e2:64:
a8:ab:c8:f5:bc:c7:7b:da:52:de:02:c8:2c:9d:c4:
a6:f8:3d:dc:a3:be:8b:34:70:c6:c0:d1:c9:b0:bb:
e4:60:9a:29:08:b7:88:63:52:84:fe:2f:33:ed:d5:
31:1a:2c:3e:16:ee:39:d4:ec:b7:72:ff:c0:b4:1b:
b5:3b:e6:d3:6d:03:d0:14:1a:2c:b9:14:eb:82:57:
3e:a9:ee:94:6b:03:d6:ba:30:74:53:43:ab:23:d5:
c2:82:ad:29:37:f0:86:3c:db:da:cf:24:4c:c6:41:
97:ad:db:64:fa:99:82:0f:47:81:c7:cf:3f:86:70:
42:5b:52:fb:a0:8a:f4:b8:8b:28:bd:04:fc:e3:bc:
a3:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:76:B5:26:2C:DC:39:B8:93:F0:96:61:9A:1F:ED:30:56:B4:FC:A5
X509v3 Authority Key Identifier:
keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/33312e362e36332e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.6.63.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:4c:52:b3:c3:6b:ac:0c:86:68:13:26:c3:29:95:e8:d0:d4:
cf:86:8e:62:a4:84:52:f5:ff:e7:1d:83:4b:ba:a7:ea:a0:e4:
54:d7:71:c9:07:c7:34:83:74:b3:89:0c:f5:bb:fd:e9:c8:6c:
3a:fd:01:5a:f1:59:43:12:fd:5a:43:1a:91:54:cb:19:6c:46:
83:d5:b3:dd:a9:0a:68:c8:15:d4:40:4f:33:d5:63:c9:1d:70:
36:0c:32:8f:36:f7:5c:9c:98:92:78:c9:de:8e:34:31:ca:d0:
cb:39:b6:dd:82:b5:82:68:f5:25:3c:b4:c0:28:27:b4:99:75:
69:45:28:ab:41:e2:4b:ad:3e:d7:ab:6d:eb:8a:0f:a0:b4:58:
23:b4:e2:79:e7:32:7d:19:cb:e1:37:c1:e9:06:9c:f7:57:70:
0c:e3:db:90:17:8d:78:c4:72:76:66:d6:2d:00:c7:50:e3:99:
3a:1b:4a:17:8c:1b:e4:5b:28:91:a7:ec:cd:15:63:43:ba:0c:
ca:ff:d4:22:17:d9:e3:a9:b6:8b:34:24:42:d7:3f:9a:e4:27:
86:45:0e:db:55:d9:14:87:1c:2e:21:d5:14:4c:29:f1:bc:de:
ad:19:a8:66:a5:4b:8d:62:3e:c8:5c:27:42:d2:3b:6f:5e:fa:
db:e1:11:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:54:50 2025 by rpki-client