Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36372e302f32342d3234203d3e20383334.roa
File: 3231332e3133392e36372e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: 8msY4Jb0dP6Ttj1yvMCvkyVmx8yCMXXyBT1f+N5338s=
Subject key identifier: 42:E0:12:AA:16:DB:26:51:FC:2E:7B:0E:F6:77:20:FA:ED:1A:94:94
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 0151E6179C1F7FD3882E35501CCE6A79C12CE33D
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36372e302f32342d3234203d3e20383334.roa
Signing time: Fri 04 Aug 2023 11:00:12 +0000
ROA not before: Fri 04 Aug 2023 10:55:12 +0000
ROA not after: Fri 02 Aug 2024 11:00:12 +0000
asID: 834
IP address blocks: 213.139.67.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:51:e6:17:9c:1f:7f:d3:88:2e:35:50:1c:ce:6a:79:c1:2c:e3:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Aug 4 10:55:12 2023 GMT
Not After : Aug 2 11:00:12 2024 GMT
Subject: CN=42E012AA16DB2651FC2E7B0EF67720FAED1A9494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:56:ad:41:e3:c1:ef:4c:4b:51:a7:59:0c:3d:
5f:ef:6a:6e:af:1e:8e:27:6e:2a:c6:d3:2a:0b:c3:
22:50:8c:12:42:55:56:64:71:45:02:33:00:7c:cb:
70:5c:86:ac:80:a6:f9:5d:62:c6:6d:d9:46:71:6d:
cc:6c:74:37:2e:c2:76:3b:67:a3:6f:1f:25:92:6d:
53:c5:95:4a:25:36:af:61:79:28:6a:b6:57:9d:e3:
cd:45:f9:98:1f:ce:65:d4:a8:ab:ec:11:67:c2:b5:
de:79:00:56:dc:e6:49:7b:14:66:0d:f7:12:00:d0:
73:f0:c1:81:5c:0c:c5:62:23:65:33:83:0d:1a:13:
aa:77:48:3f:e7:51:58:af:c3:de:bf:16:4e:e9:30:
37:1f:4c:d6:0d:be:48:86:3d:ca:f8:b7:2c:c1:0c:
d9:d0:fb:fa:2f:54:72:c6:08:0f:09:4f:5a:de:66:
9b:f9:13:a4:56:d6:e9:b8:c2:19:5e:2e:41:a4:54:
c5:29:9e:76:cc:d7:51:d4:bc:6c:f9:8e:ad:4d:93:
b3:01:74:5b:9c:71:6c:af:ad:2f:b1:18:83:a9:0d:
ce:98:a5:e8:2d:16:50:d7:ff:f5:aa:f1:4d:c5:c8:
be:ac:85:e9:a4:36:57:3a:69:05:d1:68:df:39:3c:
5a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:E0:12:AA:16:DB:26:51:FC:2E:7B:0E:F6:77:20:FA:ED:1A:94:94
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e36372e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.67.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:1b:76:40:48:64:a7:d1:82:67:f4:b2:7f:f1:b0:cf:f6:d1:
42:96:76:2b:8a:cf:a0:5e:46:ea:b0:8b:1b:84:c7:6b:f9:92:
64:aa:dd:07:14:17:46:66:7a:72:c1:f3:7a:52:e8:e2:0c:f2:
a5:55:e8:65:60:e9:98:10:bd:55:30:d9:18:35:83:83:c7:9b:
00:3b:5f:7a:9d:2e:52:bf:f5:de:54:2b:53:b1:cf:b5:56:18:
d3:88:2d:16:cd:de:a2:85:db:30:03:30:b6:a3:d7:c5:27:3b:
07:3d:25:4b:7a:22:ca:ab:76:2b:04:01:73:74:e6:a8:e8:3a:
cf:24:99:c6:7c:ae:9a:bc:d0:71:26:8b:79:81:dc:b7:2c:f2:
ae:1c:b9:30:0c:85:0c:6f:75:7d:bb:9b:c1:dc:8b:79:bf:1d:
5f:43:27:b0:50:15:3d:78:03:e1:08:d2:7e:06:41:19:6d:90:
92:cd:19:e3:dc:a5:bc:db:35:9e:e2:31:30:fe:4c:1f:a8:e1:
75:0d:33:de:60:7c:d9:04:9f:3e:a9:b4:ac:49:fd:80:e0:07:
14:e6:99:f2:ae:23:d8:d5:51:22:d0:5b:66:88:17:60:31:ec:
65:ec:20:10:69:70:4d:35:81:e8:46:32:13:bb:65:91:69:0b:
45:7e:ec:ed
-----BEGIN CERTIFICATE-----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Generated at Thu Nov 30 07:08:51 2023 by rpki-client on console-fra.rpki-client.org