Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37352e302f32342d3234203d3e20383334.roa
File: 3231332e3133392e37352e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: 7dyv+lPH5yaUIaHAayCNYyJ3yYtALTUQEGPvzC0eYvg=
Subject key identifier: 87:4F:1B:B5:AB:EC:0D:4E:20:92:15:F2:48:43:10:9C:06:BE:23:C2
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 0E9E0F650A0003C5D582AA263CD5DDDB2D5085C1
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37352e302f32342d3234203d3e20383334.roa
Signing time: Mon 09 Sep 2024 00:00:18 +0000
ROA not before: Sun 08 Sep 2024 23:55:18 +0000
ROA not after: Mon 08 Sep 2025 00:00:18 +0000
asID: 834
IP address blocks: 213.139.75.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Sep 2024 15:35:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:9e:0f:65:0a:00:03:c5:d5:82:aa:26:3c:d5:dd:db:2d:50:85:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Sep 8 23:55:18 2024 GMT
Not After : Sep 8 00:00:18 2025 GMT
Subject: CN=874F1BB5ABEC0D4E209215F24843109C06BE23C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:00:5f:d0:c1:90:91:70:67:40:3e:47:b7:42:
39:60:a8:08:f5:b8:1f:e8:df:73:15:b2:34:5c:1c:
eb:8c:bd:cc:54:71:fd:2e:69:e3:45:fd:a0:4d:d2:
70:f8:cb:7a:cc:30:44:61:60:e3:58:e9:51:cb:f8:
09:53:bf:27:f2:a3:78:5e:4d:ac:7b:e5:f0:a9:71:
78:3c:51:a7:51:87:05:31:5e:26:15:ab:be:ec:ac:
4f:54:11:76:8e:47:ee:00:58:d2:1c:88:39:77:ab:
30:c5:59:4a:72:8c:ed:8b:fe:71:40:43:91:a3:4e:
56:59:81:71:66:4a:9f:8a:fa:a9:65:84:a8:ab:52:
a9:7d:88:e0:46:0d:46:b8:a4:d3:2e:d8:1f:36:67:
68:5f:b8:14:b3:4d:fb:e2:19:b9:6d:ab:6b:26:27:
0f:fc:d7:11:ae:d5:48:09:47:ca:d0:d4:f5:98:ca:
3b:4c:d2:20:50:73:14:4f:9b:ba:c6:80:a4:8e:3d:
f2:d4:12:bd:0e:88:36:16:c6:f2:4b:de:64:67:12:
53:86:af:06:57:9d:e7:d2:d7:ff:ee:5a:fe:cd:6b:
5d:f1:14:a5:fc:40:f9:da:6c:7a:4e:f6:a6:96:ad:
0c:31:1f:52:ec:77:b4:9a:c6:07:6f:b4:3f:80:eb:
2d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:4F:1B:B5:AB:EC:0D:4E:20:92:15:F2:48:43:10:9C:06:BE:23:C2
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37352e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.75.0/24
Signature Algorithm: sha256WithRSAEncryption
39:3c:8b:ba:fc:5c:82:ab:32:9e:97:5d:6b:d7:a0:0c:52:9b:
d9:f6:cb:e3:df:29:62:64:3b:f5:1e:82:a0:00:cb:60:65:6b:
09:86:24:b9:82:c6:61:6f:b7:3c:6d:51:70:9c:5c:e6:28:72:
83:c5:8c:01:b9:c0:5a:e1:b7:75:8c:cd:a9:55:01:a3:6e:6d:
8a:31:ac:bc:96:e3:1a:63:e2:30:92:05:7c:ee:95:56:33:c8:
44:ee:2d:f9:ef:56:15:0e:5c:77:7a:0b:00:bf:9f:c9:e7:24:
84:c0:1f:d0:df:ac:e6:67:9e:30:3e:05:12:98:df:28:e8:c4:
29:1b:f5:0e:37:9a:28:c6:66:24:8c:93:a6:8b:f1:67:90:21:
90:4f:8a:76:3f:dd:07:09:1b:b5:cf:ac:3c:67:38:45:c6:1d:
88:85:fa:01:9c:b2:7b:0f:56:a2:d0:cf:c7:63:78:76:ef:25:
e0:cd:8b:99:b1:58:02:1c:21:a8:13:3d:ca:d5:21:93:2b:e1:
a4:f6:22:91:04:0f:6b:56:9f:db:5e:9e:fd:8a:ee:9c:ea:17:
0e:27:33:7c:a9:3e:ae:ce:50:01:40:53:a6:2e:0b:11:ff:a6:
bb:59:32:56:dd:82:5e:ad:e2:6a:39:c1:51:0f:d1:15:42:7f:
96:d5:79:47
-----BEGIN CERTIFICATE-----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Generated at Tue Sep 10 17:30:57 2024 by rpki-client on console-fra.rpki-client.org