Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36352e302f32342d3234203d3e20383334.roa
File: 3231332e3133392e36352e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: fQ2GkaumBcJQNDRzJFVrenWPNKegN/H7MVQhNjZJm/g=
Subject key identifier: 9D:00:C8:CE:20:06:38:5C:EB:98:37:0E:C1:1E:5B:0E:95:06:66:75
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 1CB3342780FF96AC5BE8C2D28F1D4B8B05D07A5D
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36352e302f32342d3234203d3e20383334.roa
Signing time: Mon 25 Sep 2023 12:01:31 +0000
ROA not before: Mon 25 Sep 2023 11:56:31 +0000
ROA not after: Mon 23 Sep 2024 12:01:31 +0000
asID: 834
IP address blocks: 213.139.65.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:b3:34:27:80:ff:96:ac:5b:e8:c2:d2:8f:1d:4b:8b:05:d0:7a:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Sep 25 11:56:31 2023 GMT
Not After : Sep 23 12:01:31 2024 GMT
Subject: CN=9D00C8CE2006385CEB98370EC11E5B0E95066675
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d3:8b:ea:43:14:db:3f:89:a5:3d:cf:9e:98:
2b:06:ae:ac:48:ab:4d:4e:a6:cf:98:9d:a2:01:9c:
ba:80:53:8e:e6:89:01:37:36:62:83:57:ca:36:32:
34:11:ac:03:ee:b9:9d:5f:12:5b:ad:e7:da:7d:7e:
b9:ae:ec:dd:f6:7d:fb:68:91:ac:a9:80:6e:c0:39:
30:7d:bc:ac:c9:49:9f:2f:b2:b1:66:0c:4e:cd:00:
4f:a9:be:c0:f1:36:b8:e1:c5:ec:b6:31:8c:9c:ad:
e6:fa:8f:38:93:fd:2b:d2:42:18:be:5c:75:47:20:
bd:ac:42:6f:8f:b3:db:17:6b:b4:82:71:82:10:8b:
43:85:a2:14:45:ee:4c:3a:77:b1:5e:d2:42:91:7e:
90:af:1c:fb:f1:d2:da:09:1f:ff:42:9e:d0:79:2e:
5d:71:48:a5:f2:3a:c9:48:f9:da:e8:48:12:ad:f5:
5d:d4:c3:cd:c2:42:05:95:0f:04:c4:f6:92:1f:c5:
4d:0e:06:bb:b8:9f:36:cd:8c:f3:cb:39:73:7e:45:
5e:28:17:54:7b:8c:e7:3b:dd:7f:e4:08:02:d9:bc:
a2:1f:05:52:8a:cf:5e:77:d0:4f:08:2e:d3:6b:ad:
57:3a:34:b2:b4:09:24:df:c6:fb:33:71:64:75:44:
d6:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:00:C8:CE:20:06:38:5C:EB:98:37:0E:C1:1E:5B:0E:95:06:66:75
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36352e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.65.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:7f:37:9b:3d:34:be:48:31:87:3f:f6:46:09:7d:49:99:16:
8d:6a:b6:8a:e0:fd:29:d3:3d:96:a2:2d:41:2b:df:8e:ed:94:
8c:25:24:90:ea:55:36:13:13:c5:ee:e8:71:51:04:fc:9a:03:
87:e5:fc:19:09:8b:7d:c7:2d:16:6b:d4:65:bf:10:6e:ee:a0:
55:61:22:49:62:de:52:83:ac:a8:61:86:e0:66:8c:45:45:73:
fa:11:50:a8:85:f6:01:f1:6f:00:35:d6:3a:36:0f:fb:e2:8e:
12:80:1a:1a:0d:16:4d:37:fd:24:40:59:00:9b:0d:e3:3e:c0:
d9:7a:cb:63:42:ae:41:d0:fc:97:0a:ec:b8:d7:f6:89:03:b2:
d2:a8:32:3e:4f:7b:52:72:70:96:f9:f1:44:70:ce:32:ae:92:
a8:9b:6e:9f:96:d4:bf:ae:f1:b2:2e:05:d1:fa:a3:5f:b4:35:
d0:bd:ec:19:39:74:4d:9f:96:00:3d:80:9f:3d:3b:e0:4e:4a:
da:43:4d:89:2f:0c:9d:b3:a8:60:4f:4e:31:6c:e0:48:54:6e:
5a:51:cc:3d:49:d7:48:87:4c:29:7d:f6:c3:7e:fe:6a:1b:c2:
39:00:65:52:3e:1d:a1:3e:9e:5e:40:1a:d5:0b:bf:7c:f4:3a:
10:d3:f9:02
-----BEGIN CERTIFICATE-----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Generated at Mon Sep 25 13:02:43 2023 by rpki-client on console-fra.rpki-client.org