Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36362e302f32342d3234203d3e203330383233.roa
File: 3231332e3133392e36362e302f32342d3234203d3e203330383233.roa (raw, json)
Hash identifier: nJHzymRDfmoaG8bT6XiW2ap5dSOvY3eB0SO2eltlcb8=
Subject key identifier: 72:59:6D:0E:BD:FD:1B:D9:CC:CE:90:10:6B:0A:A6:AC:F5:1F:62:B0
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 20DCC493A711582C11FE3C8722FFCD059BF5B5E4
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36362e302f32342d3234203d3e203330383233.roa
Signing time: Sun 27 Oct 2024 17:18:41 +0000
ROA not before: Sun 27 Oct 2024 17:13:41 +0000
ROA not after: Sun 26 Oct 2025 17:18:41 +0000
asID: 30823
IP address blocks: 213.139.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 27 Oct 2024 18:28:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:dc:c4:93:a7:11:58:2c:11:fe:3c:87:22:ff:cd:05:9b:f5:b5:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Oct 27 17:13:41 2024 GMT
Not After : Oct 26 17:18:41 2025 GMT
Subject: CN=72596D0EBDFD1BD9CCCE90106B0AA6ACF51F62B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:56:d7:4e:eb:e6:96:79:b7:2e:67:32:fb:74:
6e:29:d9:ea:b7:0e:7b:b2:fb:01:b3:90:36:a5:d9:
67:ac:a7:2d:11:1b:46:bf:de:65:0c:17:88:f9:46:
21:de:21:b7:da:ec:2a:0b:0c:b4:71:3a:6c:8a:2c:
fb:f1:38:e0:27:4d:55:76:f8:67:f6:58:64:66:b5:
c6:e8:2a:a7:4e:f7:2a:1c:1a:4e:81:78:a4:0e:48:
48:5b:db:69:96:75:99:c7:58:15:30:5f:8c:63:4e:
02:5a:86:d0:2b:af:5a:2e:9e:c1:f5:25:ea:ff:01:
92:07:3a:cb:0a:de:3b:c8:bf:56:37:b2:02:42:ce:
17:b2:6a:60:3f:24:86:d3:72:ff:f6:d6:8e:ef:ef:
a5:2d:c8:e1:6b:56:5b:97:79:6e:96:42:58:8d:c5:
c0:6f:72:bd:97:ed:1d:40:e4:5e:61:74:cf:3e:df:
21:b4:88:08:64:f2:17:a0:5c:d6:95:53:5f:53:4d:
31:4d:68:ec:27:cf:be:9b:a8:bb:f3:b2:b5:9a:26:
9b:b3:fe:8e:33:02:b1:2e:e4:d8:32:e7:a2:75:86:
2f:d4:ca:33:29:b0:ab:73:76:40:63:2e:58:a8:bd:
08:3f:9d:19:9e:a1:dd:8f:90:85:5e:b4:7f:61:52:
5f:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:59:6D:0E:BD:FD:1B:D9:CC:CE:90:10:6B:0A:A6:AC:F5:1F:62:B0
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36362e302f32342d3234203d3e203330383233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.66.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:f8:a3:22:61:15:07:b6:60:cd:76:6d:77:19:ff:04:5d:46:
f6:f8:af:7b:45:b3:0e:b4:df:67:6b:12:68:78:dc:b2:51:c9:
18:c5:ab:02:61:ab:b1:9b:cb:43:1c:d6:fa:87:33:6c:c2:7e:
87:a3:b3:1a:e4:2e:8b:6e:5e:d2:8a:10:40:1d:33:95:6b:7a:
2f:9b:08:b9:fc:17:2d:29:c2:00:c9:c0:98:66:13:ad:66:48:
eb:24:18:7f:1b:df:21:2d:db:a2:e9:e0:cd:9a:08:39:d2:d3:
7a:93:3d:d7:83:53:1f:ee:a6:60:1f:60:ae:37:c4:8f:a8:04:
76:f1:73:4b:54:03:bf:0f:7f:cd:08:e2:5c:c9:32:ea:0c:37:
cc:20:71:1c:9a:a9:b2:90:d5:4a:b8:83:a2:0f:51:22:4f:ae:
c1:74:72:5f:d0:b3:46:69:1b:2b:3e:ed:a0:2a:28:c8:04:4b:
9f:28:e6:15:71:87:6f:70:64:de:33:4e:f6:f3:ed:45:8d:a5:
e6:82:40:55:20:63:dd:6a:e1:56:09:5c:a9:35:b3:28:27:6a:
6f:56:d8:23:75:41:c1:1f:fa:64:d0:48:a2:69:c1:c4:93:2c:
cf:02:d8:0d:2b:2b:be:ce:cd:b6:43:92:a8:6d:54:06:03:3b:
1e:c5:e2:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:35:55 2025 by rpki-client