Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37362e302f32342d3234203d3e20383334.roa
File: 3231332e3133392e37362e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: 2HCMuLDIOn6J14r3M6sQ2oNn5Q9/LAk2aNd0+Len0Hk=
Subject key identifier: 83:AD:5F:ED:82:86:F4:09:5E:B4:66:AD:DB:08:AB:E8:2C:13:F9:F3
Certificate issuer: /CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Certificate serial: 709CC013744F8B0EDC6C2202975CF658D862ECFA
Authority key identifier: B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37362e302f32342d3234203d3e20383334.roa
Signing time: Tue 05 Mar 2024 15:10:38 +0000
ROA not before: Tue 05 Mar 2024 15:05:38 +0000
ROA not after: Tue 04 Mar 2025 15:10:38 +0000
asID: 834
IP address blocks: 213.139.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Mar 2024 07:17:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:9c:c0:13:74:4f:8b:0e:dc:6c:22:02:97:5c:f6:58:d8:62:ec:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b683f2eb50c5999a77456e8826831609d48c7d3e
Validity
Not Before: Mar 5 15:05:38 2024 GMT
Not After : Mar 4 15:10:38 2025 GMT
Subject: CN=83AD5FED8286F4095EB466ADDB08ABE82C13F9F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2f:54:7e:9b:53:b9:e3:1f:29:ee:9a:b7:48:
66:b5:5d:19:84:47:28:31:18:12:37:86:c9:b6:2a:
ee:a3:e9:19:68:ff:f8:0f:ff:01:c9:ad:88:1b:ba:
93:69:ac:76:43:dd:c1:ca:d1:b2:89:d4:e0:c4:da:
df:c8:e5:45:f6:70:69:83:4c:53:ca:d4:6c:23:7b:
d6:2d:2f:de:54:d2:53:19:09:ee:7f:21:16:8e:fd:
39:9f:17:b9:60:93:3f:56:25:09:78:ec:f6:23:19:
69:df:94:10:85:ba:2c:9f:cc:33:0e:54:b1:c0:01:
ae:5d:b4:d0:cc:8d:20:f2:0c:88:bf:fb:4c:f2:90:
c5:69:5f:bf:56:c0:91:9b:3c:d0:33:f4:72:a9:6f:
f3:6b:fb:e6:86:10:a4:8c:23:72:ea:6c:26:3d:d2:
2c:e2:70:f3:9b:24:28:fd:a0:90:4d:13:54:c5:32:
6f:c7:df:2d:dc:dc:b5:32:03:56:d5:36:0a:32:ff:
4c:1e:21:b7:12:45:8d:e0:cb:da:af:76:37:0b:86:
88:01:37:21:25:1f:9d:77:af:c6:60:9b:b0:4b:3e:
80:ed:73:be:f2:b0:d8:56:c0:4d:87:d4:fe:39:9e:
da:75:01:c3:8c:fd:9d:48:8a:6b:03:b4:86:d4:89:
3b:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:AD:5F:ED:82:86:F4:09:5E:B4:66:AD:DB:08:AB:E8:2C:13:F9:F3
X509v3 Authority Key Identifier:
keyid:B6:83:F2:EB:50:C5:99:9A:77:45:6E:88:26:83:16:09:D4:8C:7D:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/B683F2EB50C5999A77456E8826831609D48C7D3E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toPy61DFmZp3RW6IJoMWCdSMfT4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a01c14fb-b660-489d-9e9f-9402e9e2c2e2/0/3231332e3133392e37362e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.76.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:1c:c6:5a:37:56:64:7e:57:4c:fc:a3:bc:62:51:e4:b6:28:
df:ed:b0:aa:b9:53:9d:fb:0b:98:f3:1f:84:fd:80:d4:01:d0:
ba:93:0b:9f:39:f2:6d:de:90:02:ff:6f:f2:f8:d9:3f:f6:9e:
66:d6:5c:eb:13:cf:a6:ae:ea:68:d1:15:06:dc:11:0b:a0:47:
a4:dc:00:99:7a:5e:3b:90:a8:d8:ab:56:b8:0c:b9:f2:ea:9f:
60:08:af:8e:02:83:4a:97:3c:8b:39:55:c6:2c:f3:27:03:84:
70:e0:b0:0f:81:86:c7:fe:4b:83:2c:4d:6f:3a:f0:0d:69:2b:
f8:ab:39:ec:df:a9:67:26:55:1f:e3:3e:5c:dc:21:51:02:e5:
b7:08:d3:bb:fa:0d:d5:c7:2d:5e:c1:f0:94:05:50:25:26:bd:
d8:1e:f6:24:68:65:b0:17:f9:91:58:b2:3f:fe:68:5b:fe:8d:
92:3d:88:a1:40:42:c4:6c:40:44:83:47:c6:06:56:bb:01:ba:
d4:f5:68:11:04:4c:26:7c:fc:3b:1e:ff:11:10:a1:cf:17:2c:
1f:ab:e3:c1:83:6a:ac:0d:e6:df:c3:aa:63:25:1e:14:a4:20:
2d:3f:86:6e:5f:49:31:a5:9d:69:2b:a7:5d:b1:e8:be:6c:0f:
1c:59:dc:1a
-----BEGIN CERTIFICATE-----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Generated at Thu Mar 7 11:00:39 2024 by rpki-client on console-fra.rpki-client.org