Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36362e302f32342d3234203d3e20383334.roa
File: 3231332e3133392e36362e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: kD3VO/O8ROD/j0H5+w3bl+hFjvYlKYBfDjdFm/viYtM=
Subject key identifier: DC:B3:01:B7:C9:F9:14:CF:E9:D1:8B:99:C5:B9:9E:1D:1A:D2:0D:31
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 47E4A30DFC33B22525B187DE6FDF41E7E6C8C86C
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36362e302f32342d3234203d3e20383334.roa
Signing time: Wed 27 Nov 2024 00:01:03 +0000
ROA not before: Tue 26 Nov 2024 23:56:03 +0000
ROA not after: Wed 26 Nov 2025 00:01:03 +0000
asID: 834
IP address blocks: 213.139.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Nov 2024 06:40:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:e4:a3:0d:fc:33:b2:25:25:b1:87:de:6f:df:41:e7:e6:c8:c8:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Nov 26 23:56:03 2024 GMT
Not After : Nov 26 00:01:03 2025 GMT
Subject: CN=DCB301B7C9F914CFE9D18B99C5B99E1D1AD20D31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:02:0d:fd:14:30:a3:58:fb:7f:03:60:62:66:
f7:c4:10:bd:22:a1:ad:4c:71:36:cc:ba:74:9b:4b:
b8:90:01:3e:ea:ac:5e:6c:5b:65:b4:92:b0:38:16:
f8:9d:74:89:91:02:dd:05:a0:7d:41:43:fa:0b:4b:
e9:d8:5c:c7:26:7d:51:84:06:93:23:7a:de:83:28:
ca:86:fc:69:89:57:bb:09:cb:88:5b:0f:fc:e2:a7:
fc:5b:9c:85:50:ae:5e:71:22:d2:ba:24:8f:03:11:
c5:45:0f:85:86:0f:d0:bb:eb:3a:24:ac:56:32:c6:
d8:ab:89:83:3b:de:d1:c1:1b:a1:73:9d:18:60:48:
7b:82:74:aa:b6:f7:66:28:fa:ef:02:19:db:3e:e1:
70:ef:bf:29:71:fe:3a:bb:20:08:cb:04:f3:e5:d1:
cb:98:02:bd:0e:16:91:a2:88:ad:65:8c:3d:32:26:
a1:43:b5:df:28:d6:2a:8b:53:74:2b:b8:fe:4b:d8:
74:a6:6d:1c:15:8b:e2:e4:a1:b5:5d:b1:73:da:15:
51:d1:20:ca:4e:db:85:03:85:e1:16:2d:be:fa:95:
2e:da:55:11:bd:6e:af:18:26:53:fb:a5:01:33:8c:
0c:0f:23:5c:ea:3e:cd:69:41:7f:16:36:f7:a6:73:
2b:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:B3:01:B7:C9:F9:14:CF:E9:D1:8B:99:C5:B9:9E:1D:1A:D2:0D:31
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36362e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.66.0/24
Signature Algorithm: sha256WithRSAEncryption
81:fb:d3:62:13:77:88:7b:26:f9:4e:5d:26:58:ef:75:61:04:
d3:e6:cd:ae:14:f6:66:a6:a1:fe:7f:f1:ca:68:4d:8d:a7:07:
b9:87:11:80:4d:72:7d:fd:89:4e:a0:77:b3:bd:fa:c9:ff:df:
10:d2:c1:66:6d:5e:d0:2a:80:a5:c7:36:c8:13:60:83:0b:28:
3a:ae:47:da:9e:64:07:63:9f:0c:c6:98:04:83:57:40:7a:dd:
52:80:35:42:89:15:c1:f8:ed:83:cb:7e:39:4b:f0:96:55:60:
d3:56:7f:0a:e2:a4:8e:7c:ef:cb:36:fc:c9:b6:85:2f:4c:fb:
87:c5:74:bb:60:66:76:6e:78:69:dd:83:b1:64:ec:5e:c9:8b:
98:29:f0:54:db:6b:c6:a8:c0:04:2d:b4:1e:81:0d:9c:e2:38:
6b:a9:bf:30:b7:22:d6:b1:a9:01:54:c2:c5:37:c6:5c:7e:e6:
34:00:bb:e8:87:8c:e8:bb:bb:60:d6:58:05:44:c5:24:5b:2d:
bc:78:57:97:35:41:7e:3a:00:1f:9d:e0:66:14:18:d6:1b:77:
4b:f4:e7:df:8b:e8:90:48:98:6a:ea:20:07:e4:26:b3:df:7c:
35:6c:4e:17:a6:33:20:f8:c4:9c:fb:f1:88:1c:d2:65:a9:f8:
86:67:82:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:24:17 2025 by rpki-client