Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3231322e3130332e34362e302f32342d3234203d3e20323134363534.roa
File: 3231322e3130332e34362e302f32342d3234203d3e20323134363534.roa (raw, json)
Hash identifier: giItWdgsE7yWexPIKe97URGAOm6cZvCTKiNZ9i0NMhU=
Subject key identifier: 0A:1A:90:0D:05:34:F6:50:4D:1F:1A:09:6C:54:79:7E:11:EE:F1:A3
Certificate issuer: /CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b
Certificate serial: 60518E60EB60CB6B36A6B45B4A020B1AC0B999EF
Authority key identifier: 8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3231322e3130332e34362e302f32342d3234203d3e20323134363534.roa
Signing time: Tue 31 Dec 2024 13:22:16 +0000
ROA not before: Tue 31 Dec 2024 13:17:16 +0000
ROA not after: Tue 30 Dec 2025 13:22:16 +0000
asID: 214654
IP address blocks: 212.103.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 31 Mar 2025 00:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:51:8e:60:eb:60:cb:6b:36:a6:b4:5b:4a:02:0b:1a:c0:b9:99:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b
Validity
Not Before: Dec 31 13:17:16 2024 GMT
Not After : Dec 30 13:22:16 2025 GMT
Subject: CN=0A1A900D0534F6504D1F1A096C54797E11EEF1A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:21:2d:55:a9:6a:b9:20:a5:df:44:62:a0:19:
36:2f:1c:3d:bb:63:30:f6:85:50:74:f6:b3:f1:14:
73:50:99:a4:d7:77:9e:48:00:ce:a4:27:f0:63:a7:
07:bf:7d:79:ba:d3:a4:25:c7:ff:76:58:79:1c:50:
8b:72:53:66:5e:fc:a7:08:36:98:f8:05:42:88:f3:
3b:9c:39:61:61:f2:3c:f3:b8:7f:17:ed:b1:42:91:
31:3b:4f:86:f2:23:ff:1a:c1:ef:57:f3:d6:4d:2f:
35:c9:f5:20:81:79:c9:9b:d4:ab:66:8d:4b:3e:07:
1a:10:14:f2:a8:f1:3b:b2:e1:08:e1:1a:2e:a6:d9:
a2:87:81:9a:8d:ec:0c:1a:8b:99:dc:be:29:6b:d1:
50:26:45:2d:32:a8:0c:dc:65:92:c4:25:72:bb:71:
46:b7:39:ef:a0:d3:d2:6c:38:ef:11:01:2a:0c:b9:
d8:0c:15:f6:b5:cc:6e:5f:59:78:83:18:be:35:f1:
30:ce:23:f4:dc:63:11:dc:db:0a:84:e5:fa:15:fb:
34:28:97:c5:d0:4b:8c:f4:28:94:3f:77:4b:43:cd:
ac:a8:33:b2:3d:05:6a:44:33:65:8d:14:09:2e:8a:
8b:10:1f:a1:8a:c6:90:5c:cd:cd:2c:39:91:6d:3a:
61:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:1A:90:0D:05:34:F6:50:4D:1F:1A:09:6C:54:79:7E:11:EE:F1:A3
X509v3 Authority Key Identifier:
keyid:8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/3231322e3130332e34362e302f32342d3234203d3e20323134363534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.103.46.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:25:02:23:d3:df:92:90:b4:47:9c:8f:8c:28:5b:55:a3:59:
ab:4d:4d:d6:d6:3b:0c:c0:73:e2:84:3a:8a:db:53:cf:d0:b5:
52:ca:79:58:ba:8d:0c:81:86:8e:33:2b:f6:07:17:40:b1:12:
56:a3:47:8a:ca:3e:3f:e4:49:40:6e:6d:af:bf:22:53:b5:27:
91:ed:94:8c:2d:7f:9f:12:7f:8d:2c:e5:cf:9c:89:dd:da:d9:
d0:5a:af:c3:f9:47:e3:10:b8:ea:fc:51:12:22:76:cd:27:3e:
1c:f7:23:f4:42:9e:27:66:17:3a:1a:58:fa:a0:8e:9c:5d:db:
fc:ab:08:8d:87:2f:bd:0a:0a:a4:86:01:16:f6:01:21:17:d6:
a3:ce:4d:73:70:01:0f:18:bc:e5:7a:0c:fb:97:e2:1b:f3:09:
37:9e:ee:e9:62:76:53:ea:0f:c6:23:b6:4a:05:94:a8:d0:98:
bf:b4:f1:8f:9e:5d:dd:7b:bc:14:3c:62:34:ae:fc:29:b3:76:
59:f2:fb:b3:9b:e2:b6:7b:be:64:a7:1a:95:a9:09:2a:7c:f2:
51:1d:da:9c:2b:15:09:80:79:e8:5e:65:77:b5:fc:d1:1c:02:
54:1f:b5:16:0a:8b:ab:36:6c:fd:63:9d:be:30:b2:67:63:65:
a4:4f:9d:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:45:32 2025 by rpki-client